no42
-
Posts
925 -
Joined
-
Last visited
-
Days Won
17
Posts posted by no42
-
-
Midnight snake showed me an improvement to the command line drive finding code;
J:\>for /f %d in ('wmic volume get driveletter^, label ^| findstr "DUCKY"') do set myd=%d J:\>echo %myd% J:
This was part of what one of his firmware versions would automatically type in. So instead of using my for loop, we can use this loop which looks for a volume labeled "DUCKY". This means we don't need the text file on the root of the drive anymore.
Just remember to label the sdcard to "DUCKY" for this to work.....
their not labelled by default (if they are its usually some pseudo-random code eg "23AF-3DDE")
-
Your help is welcomed!
General Instructions are below:
Make sure your using the latest encoder (currently v2.2).
You best option is download the ducky-decode svn
inside the svn is the Folder
Encoder/v2/resources
This is the location of all the language maps.
keyboard.properties is the main file, it maps ascii characters to their HID values. Do not edit this file.
You probably now want to read a non-english language french (fr.properties)/italian(it.properties)/german (de.properties) to see how special characters are mapped.
An example from de.properties:
ISO_8859_1_A7 = KEY3, MODIFIER_SHIFT
This website http://www.charset.org/charactersets.php is good for finding your character map and ISO codes.
Basically, you need to create a new file es.properties, and build lines similar to:
ISO_8859_1_code = key_located_on_US_QWERTY_keyboard ISO_8859_1_code = key_x, modifierkey_y
It may be a long process, but do this for all the characters you need.
You can probably cheat and start using it.properties - and make necessary changes!
Edit:
If a character is missing a warning is prompted when you run the encoder. Example:
Char not found:ASCII_72 Char not found:ASCII_70 Char not found:ASCII_6F
This will help identify gaps in keyboard mappings
Also, when your sure you've got a working es.properties add it on the ducky-decode website under Issues, and label as Patch - it will then be added into the main repository.
This is a brief post, if you need clarification, ask questions, and I'll edit this post to make things clearer.
-
USB transfer rates are known to be slow, because we're limited to using the open-source SPI protocol.
The SD-transfer protocol is faster but this is proprietary, so we would have to
- spend a lot of money for the SD code
- spend time integrating the code into the ducky's firmware (ducky has a small amount of memory? no guarantees)
- charge all you ducky followers a lot more for the firmware updates
For now the slow speeds are acceptable, considering the firmware is opensource & freeware.
As to wiring up the button - this was in the demo firmware, quite easily to bring back. UPDATE: See c_duck_v2_S0002.hex on ducky-decode
The driver delay only happens the first time you insert in Windows - its the way windows handles drivers - cant be helped! Version 2 firmware supports easy manipulation of the VID & PID, if you find one that doesn't require a driver-install, please feedback.
Different payloads by key-press combo's - not sure how the ducky would detect this??? currently the ducky only detects keyboard LED status: this is how we detect all the *_LOCK keys.
-
Little bits kit from adafruit.
http://adafruit.com/products/745
Good starting point for kids... less of the programming, if she finds this too easy jump to
Hummingbird is a bit pricy, but aimed at kids http://www.hummingbirdkit.com/
Another alternative is the raspberry pi http://www.adafruit.com/category/105
Adafruit has a good section on using the GPIO pins for different projects, theres scratch for introductory programming, and she'll be learning linux. Best of all this is relatively quite cheap
Special adafruit electonics distro for Pi: http://learn.adafruit.com/adafruit-raspberry-pi-educational-linux-distro
-
If you've re-flashed the Ducky and tried other sdcards, and the sdcards are known to function correctly. The sdcard reader on the ducky might be at fault (I personally have never encountered this problem before, theres always a first time)
I just want to check that the sdcard is inserted, and that the end of the card is flush with the end of the ducky. As the firmware cant read the sdcard (what the red led means).
If in doubt.... Contact the hak5 shop shop@hak5.org subject:"Exchange USB Rubber Ducky Request", they're very good at exchanges.
The gang was all at CES, i think they have returned???
You might have a small delay, but they're always quick on dealing with problems, I had to exchange my first duck(no leds, no dfu-mode - completely dead duck!) the turn around time for exchange was 4 working days.
-
Just watch the ducky forum, and the Firmware/Encoder development on http://code.google.com/p/ducky-decode.
I think for 4+ keystrokes we have to change the way the whole process works.
Unsual combo, is that for DeepFreeze?
-
Not sure how accurate but i typically use:
http://en.wikipedia.org/wiki/Comparison_of_web_server_software
-
Dnucna found that 2x modifiers can be OR'd together, currently supported are CTRL-ALT and CTRL-SHIFT (as of Duck Encoder V2.2)
this allows CTRL-ATL DEL, and CTRL-SHIFT Enter
} else if (instruction[0].equals("CTRL-ALT")) { if (instruction.length != 1) { file.add(strInstrToByte(instruction[1])); file.add((byte) (strToByte(keyboardProps.getProperty("MODIFIERKEY_CTRL")) | strToByte(keyboardProps.getProperty("MODIFIERKEY_ALT")))); } else { continue; } } else if (instruction[0].equals("CTRL-SHIFT")) { if (instruction.length != 1) { file.add(strInstrToByte(instruction[1])); file.add((byte) (strToByte(keyboardProps.getProperty("MODIFIERKEY_CTRL")) | strToByte(keyboardProps.getProperty("MODIFIERKEY_SHIFT")))); } else { continue; }
More research with a usb sniffer is needed for other combo's.
-
CTRL-SHIFT Enter is for Vista + (including Win 7/8/2008/2012)
It tells the system you want to run the program as Administrator (even if your Administrator), this is becuase of UAC (User Access Control), if you get the UAC box, confirming you wish to load said program as admin, this needs to be followed with
ALT Y
This is Vista +, NOT XP or below.
-
apt-get build-essentials ???
-
For those interested the project website is: http://ubertooth.sourceforge.net/usage/start/
it contains basic information, to get you started, its very community driven, so I would additionally join the mailing list.
https://lists.sourceforge.net/lists/listinfo/ubertooth-general
-
The bus pirate is good for talking to chips
-
You may want to look at the following:
The Car Kracker http://www.gadgetgangster.com/news/54/556
OpenXC (Ford Cars) http://openxcplatform.com/
-
Sadly - looks like the answer is no.
Atmel Codebase:
bool sd_mmc_spi_wr_protect(void) This function returns the write protected status of the memory. Only used by memory removal with a HARDWARE SPECIFIC write protected detection ! The user must unplug the memory to change this write protected status, which cannot be for a SD_MMC. Returns:false -> the memory is not write-protected (always) /
Looks like write-protect is permanently disabled on sdcards
-
If its not the U3 model, then you have the DTSecure one.
From Kingston:
I kindly inform that we are unable to remove software from DTVP. It is Firmware partition and it can not be removed. We do not recommend this product for bootable purposes. It is a security USB rather than anything else.
We apologise for inconveniences. -
Does the following work (Linux)?
java -jar encoder.jar -l ./resources/de.properties -i myfile.txt -o inject.bin
Windows:
java -jar encoder.jar -l resources\de.properties -i myfile.txt -o inject.bin
-
cant you use http://www.kingston.com/us/support/technical/downloads?product=dtiu3&filename=U3update
to alter the U3 partition????
-
i ran the commands from a prompt with administrator privs and it worked fine.
Have not tried on a ducky yet need to upgrade my firmware.
Should work fine on stock firmware!
Encoder and firmware are separate developments - this takes advantage of encoder enhancements.
-
Are you getting any errors?
Have you tried this, if so is the page source available?
Basically, its replacing <p> with <p>my text ....
if there is no <p> tag, it wont do the replace
http://www.irongeek.com/i.php?page=backtrack-3-man/etterfilter
-
You can always try http://extundelete.sourceforge.net
There is no guarantee, this will be successful!
Fairly good walkthrough http://garbers.co.za/2010/12/15/recovering-recently-deleted-files-from-an-ext3ext4-with-journaling-partition/
-
Worth an investigation....
-
Basically its Irongeek's PHUKED library.
What do you mean make one with an 8GB USB?
You either have a Teensy, Arduino or a Ducky.
Think best idea is invest in a USB Rubber Ducky, double the price :( but quadruple the fun :) (the more you buy, the cheaper we can make them)
- HID Attacks
- Mass Storage - based on size of sdcard (easily upgradable)
- Composite Device
- Bypass Device Control S/W
- Flexible Firmware (reprogrammable)
- Totally Programable
- Multi-Lingual (Keyboard layout is different with languages/countries)
-
Processors are normally 3v, so Im inclined to go for the 3V3
-
you must be using an old version of metasploit, they use postgres now.
Python learning materials
in Applications & Coding
Posted
I give beginners:
http://learnpythonthehardway.org/book/
http://www.learnpython.org
You may be looking for something more advanced? but the basics are always a good place to start!
You'll probably fly through these sites really quickly, and start looking for bigger challenges.