Copies Wifi Keys, and Firefox Password Databases
Adds a physical copy of 'The Best of Rick Astley' CD to the target's Amazon shopping basket/cart. Requires the target to be logged onto amazon with 'remember...
Create a backup of the key manager which stores log-on credentials for servers, websites and programs.
Config: set the password for the backup by setting th...
persistentReverseBunny provides you persistent reverse shell remotely/locally.
screenGrab payload captures snapshots of target's screen periodically and store them into bunny.
Taking advantaged of cached images, imagesOfYore is simple payload which exfiltrates every image that target ever had in his disk.
bunnyDOS payload intelligently search target's network for open http(configurable for https) ports and executes DOS it.
camPeek payload peeks through targets web cam and capture images and stores them in bunny.
Exploit for a new Linux vulnerability known as 'Dirty Pipe(CVE-2022-0847)' allows local users to gain root privileges. The vulnerability is tracked as CVE-20...
sudoSnatch payload grabs sudo password in plain text, immediately after target uses sudo command and sends it back to attacker remotely/locally.
Downloads a list of Hak5 vids from YouTube (about 15 in the rss feed).
Then pick one at random, then opens it in the browser.
MiniDumpBunny uses Powersploits Out-MiniDump script to dump lsass. The script was rewritten, adapted for BashBunny usage and obfuscated in multiple ways to e...
LinuxPreter injects meterpreter payload, make it persistent and triggers payload on launch of terminal/shell.
intel(intelligence) payload collects detailed information of victims machine.
1. Prevent storing history.
2. Fetching BashBunny's block device.
3. Mounting B...
Keylogger which sends each and every keystroke of target remotely/locally.
- Live keystroke capturing.
- Detailed key logs.
Taking advantage of plain stored ssh private keys in home dir, sshDump grabs them for you.
Creates a hidden link file that override the ctrl+c functionality. So, where the use press ctrl+c it lunches the first sign-in animation.
Notes: to kill the...
This payload will run the famous SessionGopher script, which was only slightly modified. Searches for PuTTY, WinSCP, and Remote Desktop saved sessions, decry...