DEV Community

Cover image for Password Exfiltration With Bash Bunny
Sampreeth Nataraj
Sampreeth Nataraj

Posted on

1

Password Exfiltration With Bash Bunny

In this project I have used the Bash Bunny "Getting Started With Bash Bunny" and used one of hak 5's payload to show a simple password grabber and how it works.

Author : Sampreeth.Nataraj
Creds : Hak5Darren, AlessandroZ, TeCHemically, dragmus13, RazerBlade, Jdebetaz
Firmware support : 1.1 and higher
Target version : Windows 7 and higher

Description:

Grabs password from chrome, internet explorer, Firefox, FileZilla and more... This payload makes use of AleZssandroZ's awesome LaZagne password recovery tool.

Grab some passwords

  1. Download the latest lazagne zip file from .

  2. Turn off the antivirus and malware detection .
    Unzip the zip file and place the exe file in the tools folder.

  3. Place the payload.ps1 and payload.txt files along with the lazagne folder in the preferred payload switch eg: switch1 or switch2.

  4. Plug in the bash bunny (placed in the switch mode which contains the payload) in the windows machine and enjoy

  5. The passwords grabbed will be placed in the passwords.txt file of the tools folder.

Heroku

Build apps, not infrastructure.

Dealing with servers, hardware, and infrastructure can take up your valuable time. Discover the benefits of Heroku, the PaaS of choice for developers since 2007.

Visit Site

Top comments (1)

Collapse
 
pnatraj profile image
Nataraj

Great going on your fist article in dev.to

A Workflow Copilot. Tailored to You.

Pieces.app image

Our desktop app, with its intelligent copilot, streamlines coding by generating snippets, extracting code from screenshots, and accelerating problem-solving.

Read the docs

👋 Kindness is contagious

Please leave a ❤️ or a friendly comment on this post if you found it helpful!

Okay