Jump to content


Photo
* * * * * 2 votes

USB Pocket-Knife Development


  • Please log in to reply
818 replies to this topic

#801 Jen

Jen

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 205 posts

Posted 29 July 2010 - 01:26 AM

Everyone thinks we have to, but no one wants to do it

#802 trialqw

trialqw

    Newbie

  • Members
  • 4 posts

Posted 04 September 2010 - 12:29 PM

Slurp2 doesn't work when tried on windows 7...
It copies the desktop but not the My Documents...
Or did I just miss something?

Edit: Oh it's (Project) dead....

Edited by trialqw, 04 September 2010 - 12:31 PM.


#803 Gn0m3

Gn0m3

    Newbie

  • Members
  • 1 posts

Posted 01 February 2011 - 04:37 PM

It would be nice if you could post the source of all regarding this project so I and whoever is willing may continue with it.
It's a nice set so I wouldn't like it dying...


Sorry for my english I'm Argentinian...

Regards.

Gn0m3

#804 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 05 February 2011 - 02:52 AM

So far what AVs have you managed to disable? Just wondering cause some AVs have protection that prevents them from being disabled in the first place.
Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#805 Josh_Soka80

Josh_Soka80

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 245 posts
  • Gender:Male
  • Interests:Hacking, Information Security, Wireless, 2600, Social Engineering, Phreaking, Lock picking, Linux, Gaming.

Posted 27 April 2011 - 10:19 PM

So far what AVs have you managed to disable? Just wondering cause some AVs have protection that prevents them from being disabled in the first place.

:( dead project infiltrator, its good work, needs to be resurrected.
http://soka80.com/ <--- my site, not much on it yet, working on documenting some of my past projects to get some content going.

need tech support?
http://xkcd.com/627/

#806 0hWhatsH1sFace

0hWhatsH1sFace

    Hackling

  • Active Members
  • Pip
  • 8 posts

Posted 04 October 2011 - 07:07 PM

I did this on a computer and now I can't get it off. How would I do so? I can't even get the Anti-Virus to turn back on. Please help asap

#807 razorlala

razorlala

    Newbie

  • Active Members
  • 6 posts

Posted 07 December 2011 - 12:25 PM

I did this on a computer and now I can't get it off. How would I do so? I can't even get the Anti-Virus to turn back on. Please help asap


u remind me of myself years back where i made a dos virus and open it, resulting in my bios being flashed with virus. lolol. did u try registry? considering its been 2 months, perhaps u alr got it fixed. well, watever.


really appreciate it if the source could be up lol.

#808 dnv

dnv

    Newbie

  • Active Members
  • 1 posts

Posted 11 December 2011 - 10:44 PM

They should revive this project man B)

- Why did it stop?

#809 0xPHK

0xPHK

    Hak5 Fan

  • Active Members
  • PipPip
  • 19 posts
  • Gender:Male
  • Location:/dev/hal
  • Interests:IT, hacking, wardriving, making music, mixing, gaming, beer, beer, beer...and soup.io

Posted 26 January 2012 - 04:03 PM

because the ducky has pwned the autorun function ;)
boot error - no coffee found - operator halted!

chdk - Canon Hacker Development Kit
Firmware hack that adds DSLR features to Canon compact cameras incl. raw support

wardriving statistics

#810 powerkickeR

powerkickeR

    Newbie

  • Members
  • 2 posts

Posted 27 January 2012 - 01:15 AM

Hey guys, does this still work? If so, I have so questions. Thanks ;p.

#811 powerkickeR

powerkickeR

    Newbie

  • Members
  • 2 posts

Posted 27 January 2012 - 01:25 AM

I can't find the edit button...sorry.

Every time I try to install or enable a module, it says "The system cannot find the file specified", T_T.

#812 Tox1k

Tox1k

    Hak5 Fan

  • Active Members
  • PipPip
  • 16 posts

Posted 17 February 2012 - 12:12 AM

No, it is picked up by AV's a lot. However, I've been recently messing around with what I'll call "GhostPad" for now, and I'm making one that doesn't get picked up by most AVs, so it's undetectable, and is just to recover info from computers, no PWdump because it's detected by most AVs.

GhostPad. If you want it truely undetectable, IE your victim won't get any warnings no matter what, delete everything from nirsoft (chromepass, iehv, iepv, mailpv, mspass, produkey).

Yeah, but this stuff is mainly dead. What might interest the OP is this if you throw on a command line switch, then you can have your keylogger write and hide in a "ghosted" folder.

Also, use this in a .vbs file and open it with a batch file referencing your start, and it'll run without a window.
CreateObject("Wscript.Shell").Run """" & WScript.Arguments(0) & """", 0, False

Also, making something similar to USB 3.0 (so AVs can't delete files):
Download, make a CD partition, add your ISO. Make an ISO with MagicISO or some other software.

:P What I had planned was a Swiss Army Knife, includes ByteSpy, Cain, Cheat Engine, md5 Hash Changer, IP Changer, PortBlocker, Mac Address Changer, Trainer Maker, UDP-Unicorn, WireShark, Panther, smsniff, LanSchool Crasher, VirtualBox, and uTorrent and that with the payload was all under 150 mb.

batch file for payload:
Spoiler


#813 iknuts

iknuts

    Newbie

  • Members
  • 2 posts

Posted 19 March 2012 - 02:24 AM

Hi guys... i still have know idea how to install this... i realize its been 3years since anyone responeded to this topic, but i'm hoping someone can help me out.
my USB is NON U3, i've got the payload, but everytime i run the menu.bat and try and enable modules, the command result is 'File not found'... what am i doing wrong?


thanks

#814 iknuts

iknuts

    Newbie

  • Members
  • 2 posts

Posted 19 March 2012 - 02:29 AM

No, it is picked up by AV's a lot. However, I've been recently messing around with what I'll call "GhostPad" for now, and I'm making one that doesn't get picked up by most AVs, so it's undetectable, and is just to recover info from computers, no PWdump because it's detected by most AVs.

GhostPad. If you want it truely undetectable, IE your victim won't get any warnings no matter what, delete everything from nirsoft (chromepass, iehv, iepv, mailpv, mspass, produkey).

Yeah, but this stuff is mainly dead. What might interest the OP is this if you throw on a command line switch, then you can have your keylogger write and hide in a "ghosted" folder.

Also, use this in a .vbs file and open it with a batch file referencing your start, and it'll run without a window.

CreateObject("Wscript.Shell").Run """" & WScript.Arguments(0) & """", 0, False

Also, making something similar to USB 3.0 (so AVs can't delete files):
Download, make a CD partition, add your ISO. Make an ISO with MagicISO or some other software.

:P What I had planned was a Swiss Army Knife, includes ByteSpy, Cain, Cheat Engine, md5 Hash Changer, IP Changer, PortBlocker, Mac Address Changer, Trainer Maker, UDP-Unicorn, WireShark, Panther, smsniff, LanSchool Crasher, VirtualBox, and uTorrent and that with the payload was all under 150 mb.

batch file for payload:
Spoiler


i jus downloaded the Ghostpad... how do i install(sorry if i annoy you with my newbie questions)

#815 Tox1k

Tox1k

    Hak5 Fan

  • Active Members
  • PipPip
  • 16 posts

Posted 19 March 2012 - 11:24 PM

Lol don't use my payload, I never finished it. Use someone like Gonzor's, just look at the topics within the thread. As for mounting it, you'll need to put an autorun.inf file in it that runs start.bat, (google), and then either follow this tut or download this which has instructions and all the tools you need included.[/url]

#816 kira

kira

    Newbie

  • Members
  • 1 posts

Posted 07 June 2012 - 03:07 PM

Hello all :)
ive got a really BIG problem when attempting to use this 'stealthy' attack....
On windows 7 I get ALOT of UAC, meaning even when admin, it asks whether i would like to let this program make changes to the computer.
It does somewhat defeat the point :P it works fine on XP, though. Is it meant to do this? Im most likely doing something wrong if it inst meant to show the 7 displays of UAC :P
thankyou for reading :)

#817 Ethan Hunt

Ethan Hunt

    Hak.5 Fan

  • Active Members
  • PipPipPipPip
  • 97 posts
  • Gender:Male
  • Location:Macedonia

Posted 30 August 2012 - 02:22 PM

Massive, perhaps pointless, bump on this topic, but do you guys have the payloads archived somewhere? I'm looking for both the U3 and Non-U3 versions.

Played with this ages ago, and something interested me in this again, but I lost my backups like 4 years ago :)

So if anyone could upload them somewhere I would be very grateful!

Thanks!

#818 lmgonza

lmgonza

    Hak5 Fan

  • Active Members
  • PipPip
  • 19 posts

Posted 12 September 2012 - 10:44 PM

Well if anyone can send me to a payload like the first one id be appreciated thanks!

#819 toruguen42

toruguen42

    Newbie

  • Members
  • 1 posts

Posted 28 January 2013 - 08:56 PM

All mirrors are down??.. any word or work on setting up a new mirror? used to have the tool till my AV killed my copy..... put the wrong drive in.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users