All Activity

When did you get your eyes checked? 11 years later...

Please talk to me about this program how it works and what I need for it to work thank you

This is not a forum for the Flipper. It's about the official Hak5 USB Rubber Ducky "classic"/Gen1. Use forums or other kinds of places that offers support for the Flipper specifically.

Just got the flipper and have been making some fun scripts. I used the win key as "WIN" to open the app search on android but my flipper said it wasn't a command. Did I get the command wrong, is there a diffrent command to open an app search bar or is this just not an option on flipper? Thanks!

how does it work

Haven't seen support for that over the years for the classic/1st gen Ducky. The 2nd gen Ducky has a type of "human emulation" feature when using jitter, but not exactly 60 wpm. Perhaps if STRING_DELAY is used but I guess that needs to be calculated to land close to 60 wpm.

Im trying to make a script where my rubber ducky feels like an actual human is typing rather than a bot but I can't seem to find anything online, does anyone have any ideas?

Hacking nearby wi-fi password with zero internet required and boost up the wi-fi speed

I re-attempted and now it’s working. I did not change anything other than the power source. So it’s possible that had something to do with it.

LANSweeper can't scan for IMEIs. But if you know that much, then surely you've reported all this to the police?

I have had similar instances of my TVs being hacked. In my case I had a work colleague who utilized LANSweeper app which was installed on with laptop to get all serial numbers, MAC addresses and IMEI addresses of everything on my home network. Once the CEO asked me to find someone to replace him that’s when I became targeted. He was able to gain access to my personal laptop and then access to my Samsung account as it is required to have one in order to add apps to your Samsung TV. With that information he added my account to a Samsung Hub. I have 3 TVs and tried in the TV settings I tried resetting the Hub, resetting the TV to factory settings after which I was able to successfully turn off WiFi. I went to the TVs hidden menu to attempt to disable BlueTooth and discovered that the Knox Security app (Built in to Frame TVs) was missing several configuration items including the one which would allow me to Turn off Bluetooth. By the time I returned to the main screen the WIFI settings no longer showed as disabled and the only connection option that was available was to connect via WIFI even though I use LAN for my TVs. I believe in my case the hacking is tied to the Samsung account and Potentially Device Management via Knox Security. In my testing I would log in to the Samsung account, configure the TV and then immediately sign out of the account on the TV and then delete the account. I found that they moved from using my account to using my partner’s account which we’ve been trying to regain access to so we can delete that and determine whether we are dealing strictly with Samsung account being utilized via a hub or whether it is Knox Security via Managed Device. Nonetheless, TVs can be hacked and/or compromised either by the account used to configure it, a Hub application managing it, a Device Management software that the TV may have been enrolled in or by malware. In my case I’ve narrowed it down to Samsung account or Knox Security Mobile Device Management think of (Sidestepper vulnerability).

Thank you, Korben and dark_pyrro.

C2 3.4.0 should address any concerns here.

wipe is for wiping the remote device, not deleting data in C2. The docs describe this. https://docs.hak5.org/cloud-c2/getting-started/managing-devices We are very active on discord https://hak5.org/pages/community, as well as the official support channel https://hak5.org/pages/support

it is not customizable currently

Embedded in the binary I guess. Not sure if it's possible to change in the db file directly, it was a while since I browsed the full contents of the db structure. Not an option to change it in the web UI at least (if I remember it correctly), just the site image and any image for each user added to the server.

Happy Friday! The default login page has a blue background with the cloud/thunderbolt image named brand-solid-blue.svg. Where is that located and how can I customize my login page? I am using Ubuntu 20.04.6 LTS. I tried using the find command and found some image files but was not able to locate brand-solid-blue.svg. Any guidance would be appreciated!

My bad - thanks for moving it @Irukandji. I did try a different browser, but had the same problem reseting it there too. For anyone with a similar problem, I worked around this problem by logging in with the old password, and going to the config page (http://172.16.42.1:1471/#!/modules/Configuration) and then clicking the little drop down which allows you to select "Reset to factory config". Then I started over.

Moved..

Since it's about the Nano, it should be posted in the Nano section of the forums. However, things you could try is to use another browser, or try and incognito window. This should be no issue (tried it now on my Nano just to be sure and it works as expected).

For the removal of doubt I should have mentioned I've also tried the obvious "un plug it from the PC and plug it back in again", without success!

Hi, I'm trying to reset the root password on my original Pineapple Nano via the configuration page (http://172.16.42.1:1471/#!/modules/Configuration). It says that "Password changed successfully", but when I log out it won't accept the new password, and will accept the original unchanged one. I've tried pressing and holding reset, but that seemed to make no difference. Any idea what I'm doing wrong?

What book says anything about ICS and what does it say? Using a VM won't make it easier, on the contrary.

Yes I agree, support is very minimal to none it seems, it's too bad because this product could be so much better with a bit of support/dev involved. I ended up writing my own 'Wipe' Module which uses their API to remove the data (whatever is available with the API) and for others files i wanted to remove/clear I used python. Also, I added a download file feature in my module since I do not see anywhere in the UI to download files from the pineapple (besides a git push/pull). There was a new CloudC2 update which helped a little for the syncing issues (sometimes causing some sort of DDoS in our case, before the update). I did not retest the Wipe feature of the CloudC2 since the devices are currently in use.