hak5
/
bashbunny-payloads
mirror of https://github.com/hak5/bashbunny-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update readme.md

pull/375/head
WWVB 2019-03-26 08:56:37 -04:00 committed by GitHub
parent 3ee2668f7e
commit d31b0174b7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
payloads/library/remote_access/SSHhhhhh (Linux)/readme.md
View File

@ -9,12 +9,12 @@
Base install of OS, plus OPENSSH-SERVER & NET-TOOLS (if NET-TOOLS is not installed, the route command will not return data [noting major])
## Loot = Contents of ~/$USER/.ssh folder (pub/priv RSA keys, known_hosts, etc..)
whoami
ip addr
route -n
/etc/passwd
/etc/shadow (on the off chance you get a root terminal)
uname -a
whoami
ip addr
route -n
/etc/passwd
/etc/shadow (on the off chance you get a root terminal)
uname -a
Two opportunites for persistence are injected:
Attacker's RSA key is added to ~/$USER/.ssh/authorized_keys (aka I'll Call You)