Search the Community
Showing results for tags 'generate'.
-
TLDR: https://github.com/ThoughtfulDev/PyDuckGen Hey, since the Simple-Ducky Payload Generator is discontinued i think.. i just wanted to create an easy way to generate existing payloads and move the needed files to the Rubber Ducky. PyDuck is a Python Script which helps you to get your once written USB Rubber Ducky Payloads onto your Duck's SDCard quickly. You can even change variable components by using a simple set <attribute> <val> command. All of this is made easy with a Metasploit like interface. Simply choose your payload with use <payload> configure it and there you go :) Have a look into the bundled modules in the module folder to understand the attributes but here is a quick explanation. Your duckscript is: ... STRING <replacable_text> ... In your module.json just add you attribute to the attributes tree like this: "attributes": { "replacable_text": "The default value" } If you know load your payload with 'use <your_payload>' you can now use the following: set replacable_text Hak5 is awesome :) If you then generate the inject.bin using: gen or generate the <replacable_text> will be replaced with Hak5 is awesome. Isn't that...awesome? :D You can even add folder/files to your module.json which are needed for you payload (have a look at the mimikatz_lazagne payloads to see how this works.) I really suggest that you have a look at the existing payloads to figure out how this works :D More Information can be found on the Github Repo: https://github.com/ThoughtfulDev/PyDuckGen Let me know what you think.
-
So the pineapple has an APP in the android market. Anyone thought of making an app for the Ducky? Would be nice to be able to flash and adjust payloads on the go with an android device. Select the payloads through the app, dl them to our android device and flash them to the duck at will. Could also have a live editor to compile our own payloads. 1. could android flash the duck? / drivers out there for it? 2. anyone want to write the app? -thought process here is that we are mobile most of the time. half or our gear is ready to go. Using our mobile device vs a computer would make more sense to me to be less visible when it comes down to blending in on a pen test. Don't have to stop there, could be all the Hak5 tools wrapped into one app that have an interface. Lan turtle, etc. --- anyone? --- thoughts?