🏆 by 0i41E March 23, 2022
General OMG
A small message box, telling the user that he violated the security policy. The hostname of the user will be send to a webhook to report the incident. Fill i...
by drapl0n March 23, 2022
Bash Bunny Execution
Exploit for a new Linux vulnerability known as 'Dirty Pipe(CVE-2022-0847)' allows local users to gain root privileges. The vulnerability is tracked as CVE-20...
by drapl0n March 23, 2022
Credentials USB Rubber Ducky
sudoSnatch payload grabs sudo password in plain text, immediately after target uses `sudo` command and sends it back to attacker remotely/locally..
by drapl0n March 22, 2022
Bash Bunny Credentials
sudoSnatch payload grabs sudo password in plain text, immediately after target uses sudo command and sends it back to attacker remotely/locally.
🏆 by Cribbit March 16, 2022
Bash Bunny General
Downloads a list of Hak5 vids from YouTube (about 15 in the rss feed).
Then pick one at random, then opens it in the browser.
by 0i41E March 14, 2022
Bash Bunny Credentials
MiniDumpBunny uses Powersploits Out-MiniDump script to dump lsass. The script was rewritten, adapted for BashBunny usage and obfuscated in multiple ways to e...
🏆 by Maker March 13, 2022
Credentials USB Rubber Ducky
A variant of Win_Pass_Grabber by makozort but not reliant on Internet potentially ignoring any server-side-issues with Downloading/Uploading Files and Logs.
by drapl0n March 12, 2022
Bash Bunny Remote Access
LinuxPreter injects meterpreter payload, make it persistent and triggers payload on launch of terminal/shell.
by drapl0n March 08, 2022
Bash Bunny Exfiltration
intel(intelligence) payload collects detailed information of victims machine.
1. Prevent storing history.
2. Fetching BashBunny's block device.
3. Mounting B...
by Nils Streedain March 07, 2022
Exfiltration USB Rubber Ducky
Opens a rickroll in YouTube in full screen at maximum volume as a distraction while another command is run in terminal.
🏆 by drapl0n March 07, 2022
Bash Bunny Credentials
Keylogger which sends each and every keystroke of target remotely/locally.
Features:
- Live keystroke capturing.
- Detailed key logs.
...
by drapl0n March 04, 2022
Bash Bunny Credentials
Taking advantage of plain stored ssh private keys in home dir, sshDump grabs them for you.
by Matthew Kayne March 03, 2022
Exfiltration USB Rubber Ducky
iMessages the last received email in the Mail app to an iMessage device of your choice
by Nils Streedain March 03, 2022
Prank USB Rubber Ducky
Opens a rickroll in YouTube in full screen at maximum volume.
by drapl0n March 02, 2022
Execution USB Rubber Ducky
termBomb prompts message "!!!!!!YOU HAVE BEEN HACKED!!!!!!" and executes fork bomb on launching shell/terminal.
🏆 by Matthew Kayne March 01, 2022
Exfiltration USB Rubber Ducky
Sends any command output to an iMessage receiving number (this example grabs the devices IP)
by Matthew Kayne February 28, 2022
Exfiltration USB Rubber Ducky
Extracts the terminal history of the device onto the ducky.
by Cribbit February 27, 2022
Bash Bunny General
Creates a hidden link file that override the ctrl+c functionality. So, where the use press ctrl+c it lunches the first sign-in animation.
Notes: to kill the...
Leaderboard
Get Rewarded
Contribute
Collaborate
Caution
Disclaimer
Stats
