sudoSnatch

sudoSnatch
Download Copy
Title: sudoSnatch
Author: drapl0n

sudoSnatch payload grabs sudo password in plain text, immediately after target uses sudo command and sends it back to attacker remotely/locally.

Credential harvesting is the method of obtaining credentials — think usernames and passwords. Many techniques are used to obtain credentials, from keylogging to credential dumping. With a set of credentials in hand, red teamers may access systems and make lateral movement across the network, as well as creating their own credentials which may be difficult to detect in a breach. See all credential payloads.

This payload is for the Bash Bunny. Simultaneously mimic multiple trusted devices to trick targets into divulging sensitive information without triggering defenses. The Bash Bunny is truly the world's most advanced USB attack platform.

Submit your own payload, or browse more featured Bash Bunny Payloads.

 

 

Related Payloads

HashMaster
HashMaster
Report captured handshakes using the HashMaster database
Read More
Noise Maker
Noise Maker
Prank-style “Noise Maker” tool that turns pager into a portable chaos machine. It lets you pick from a collection of ann
Read More
Upload Registry Key
Upload Registry Key
Sets a single preconfigured registry key by compounding the individual settings into a PowerShell command. Intended for
Read More