bashbunny-payloads/payloads/library/recon/LinuxInfoGrabber/recon.sh

#!/usr/bin/env bash

# Data collection script
# Similar to InfoGrabber for Windows

# First parameter is path of log file to create


echo "Linux system info grabber" > $@
echo "" >> $@

echo "Interfaces" >> $@
echo "##############" >> $@
ifconfig -a >> $@
echo "" >> $@


echo "Mounted FS" >> $@
echo "##############" >> $@
findmnt -A >> $@
echo "" >> $@

# TODO wifi
# TODO local user
echo "Processes" >> $@
echo "##############" >> $@
ps -ax >> $@
echo "" >> $@

echo "Interfaces (netstat)" >> $@
echo "##############" >> $@
netstat --interfaces >> $@
echo "" >> $@

echo "Routes" >> $@
echo "##############" >> $@
netstat --route >> $@
echo "" >> $@

# This one slow, uncomment if needed
echo "Netstat" >> $@
echo "##############" >> $@
netstat >> $@
echo "" >> $@

echo "Services" >> $@
echo "##############" >> $@
service --status-all >> $@
echo "" >> $@

echo "Installed software" >> $@
echo "##############" >> $@
apt list --installed >> $@
echo "" >> $@

echo "Loaded drivers" >> $@
echo "##############" >> $@
lsmod >> $@
echo "" >> $@

echo "PCI Hardware" >> $@
echo "##############" >> $@
lspci -vv >> $@
echo "" >> $@

echo "USB hardware" >> $@
echo "##############" >> $@
lsusb -v >> $@
echo "" >> $@

# TODO passwords
Added "Info Grabber for Linux" payload (#299) 2017-12-07 20:13:14 +00:00			`#!/usr/bin/env bash`

			`# Data collection script`
			`# Similar to InfoGrabber for Windows`

			`# First parameter is path of log file to create`


			`echo "Linux system info grabber" > $@`
			`echo "" >> $@`

			`echo "Interfaces" >> $@`
			`echo "##############" >> $@`
			`ifconfig -a >> $@`
			`echo "" >> $@`


			`echo "Mounted FS" >> $@`
			`echo "##############" >> $@`
			`findmnt -A >> $@`
			`echo "" >> $@`

			`# TODO wifi`
			`# TODO local user`
			`echo "Processes" >> $@`
			`echo "##############" >> $@`
			`ps -ax >> $@`
			`echo "" >> $@`

			`echo "Interfaces (netstat)" >> $@`
			`echo "##############" >> $@`
			`netstat --interfaces >> $@`
			`echo "" >> $@`

			`echo "Routes" >> $@`
			`echo "##############" >> $@`
			`netstat --route >> $@`
			`echo "" >> $@`

			`# This one slow, uncomment if needed`
			`echo "Netstat" >> $@`
			`echo "##############" >> $@`
			`netstat >> $@`
			`echo "" >> $@`

			`echo "Services" >> $@`
			`echo "##############" >> $@`
			`service --status-all >> $@`
			`echo "" >> $@`

			`echo "Installed software" >> $@`
			`echo "##############" >> $@`
			`apt list --installed >> $@`
			`echo "" >> $@`

			`echo "Loaded drivers" >> $@`
			`echo "##############" >> $@`
			`lsmod >> $@`
			`echo "" >> $@`

			`echo "PCI Hardware" >> $@`
			`echo "##############" >> $@`
			`lspci -vv >> $@`
			`echo "" >> $@`

			`echo "USB hardware" >> $@`
			`echo "##############" >> $@`
			`lsusb -v >> $@`
			`echo "" >> $@`

			`# TODO passwords`