Hello all, been just watching hak 5 for a while now, finally signed up for an account recently. I was just wondering if anyone had thought of implementing more payloads, possably using Java, or Python as the target for the USB rubber duckey.
-Could use the FTP Download / Upload payload to download the interpreter setup.exe
-Silent flag for command line would need to be used to install the interpreter, if it exists in the setup,
-A java program could be compiled/interpreted/run using the compiler/interpreter,
-javaw.exe that is provided in the JDK could be used to run java code withoud a black box showing up.
-Apparently use of java GUI stuff would be counter productive, and tip user off that something is up.
-Java can be used to implement system stuff like moving/copying files which could be used in an info theft class()
Im just getting a little tired of running batch cmds, they just arent very intuitive. There is usually much more control and clarity in a programming language. (Can obfuscate later either in the java/python code using some kind of a syntax scrambler, or at a lower level, like java or python byte code using a downloadable obfuscator. )
***I do not think I will have time to implement this idea, but wanted to know what the rest of the Hak 5 community thought of it. ***
PS.. Havent taken Assembly class yet, so though I understand the concept of buffer overflow, format string exploit, ect I couldnt find exploitable code without the source code.