HAK5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2026-02-14 23:18:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
d39b7124340f6c25b8c82dcc144bb12709bbd636
bashbunny-payloads/payloads/library/recon/NullSec-System-Recon/readme.md
bad-antics 525eae96cd Add NullSec payloads (WiFi Harvester, System Recon) 
Added 2 Bash Bunny payloads:

1. NullSec-WiFi-Harvester (credentials/)
   - Extracts all saved WiFi passwords
   - Saves to loot with hostname prefix
   - Uses netsh for profile enumeration
   - ~8-10 second execution

2. NullSec-System-Recon (recon/)
   - Comprehensive system reconnaissance
   - OS, users, network, AV status
   - Saves detailed report to loot
   - ~15-20 second execution

Both payloads:
- Use HID + STORAGE attack modes
- Include proper LED status indicators
- Have complete readme documentation
- Target Windows 10/11
2026-02-01 13:24:08 -08:00

790 B
Raw Blame History

NullSec System Recon 🔍

Comprehensive Windows system reconnaissance saved to Bash Bunny loot.

Description

Silently gathers detailed system information and saves to the Bash Bunny's loot folder:

  • OS version and system specs
  • Current user and domain info
  • Local user accounts
  • Network configuration (IP, gateway, DNS, MAC)
  • Windows Defender/AV status

Requirements

  • Windows 10/11
  • PowerShell (default on Windows)

Status LEDs

LED Status
SETUP Initializing attack modes
ATTACK Running reconnaissance
FINISH Complete, safe to unplug

Output

Loot saved to: /root/udisk/loot/NullSec-System-Recon/<HOSTNAME>_recon.txt

Execution Time

~15-20 seconds

Author

Reference in New Issue View Git Blame Copy Permalink