Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

  • Days Won


Everything posted by Broti

  1. Though I don't own a BB (I know, shame on me) I instantly thought about this could be great combined with either: grabbing BitLocker keys deploy reverse shell
  2. I use the included 128MB card. Size would only matter if you use one of the custom firmwares. But it all depends on your planned usage.
  3. Not exactly a bank, but still interesting: https://www.youtube.com/watch?v=pL9q2lOZ1Fw
  4. Sometimes I can understand why we still use pen and paper instead of insecure voting machines :D
  5. The encoder (online & offline) has an option to compile the payload for a specific keyboard layout.
  6. You mean the "Disc Label" of the ISO? There's no need for that, if you're writing the file to USB.
  7. I read an article about this project on Hackaday this morning. Always fun to see those DIY projects emerge ?
  8. I have a similar setup here - just vice versa: German OS, UK keyboard. And the Ducky works fine. Is there a certain part that won't work or the whole script? Maybe post it here so we can check it
  9. What exactly do you mean? Are the installed Operating systems in English? Was genau meinst du? Sind die Betriebssysteme auf englisch?
  10. And there's always the possibility the cryptor itself gets flagged by AV
  11. Have you checked the logs for anything suspicious? Is the system reachable from somewhere outside its LAN? By the way, which OS exactly?
  12. What about a Port Scanner? It's fairly easy to code.
  13. I never had problems with given spoken consent since I personally knew the "client" or a person I know knew and introduced me, but yes it only counts in written form. Especially in business
  14. Did you try to contact them directly? https://hakshop.zendesk.com/hc/en-us/requests/new
  15. Like a school network? I think I can answer that best with a movie quote: "Don't tempt me, Frodo." Stay local (as @GarrukApex said too). If you have the possibility (free space, equipment and/or financial resources) to set up a second isolated LAN at home just for pentesting/hacking. Perhaps the cheapest way is using virtual machines.
  16. "Unauthorized" can be simulated of course. Same do pentester at presentations. If you hack around your own devices/local network, you don't have to worry. Even breaking into systems of friends (with their consents) is acceptable. As long as the target owner knows and approves there's nothing to worry about.
  17. Remember to have an inject.bin on your card. And the slot can be a bit bitchy (at least on my ducky,) so I have to fiddle around with the card while duccky plugged in. worked fine here. But when in doubt (and still have warranty): contact hak5
  18. It generates the text-file android_brute-force_0000-9999.txt which you have to encode. The script you posted has to be executed in a shell
  19. The Ducky Script 101 can answer that question: https://www.hak5.org/gear/duck/ducky-script-usb-rubber-ducky-101 GUI/WINDOWS simulates a hold key. So CONTROL ESCAPE is the right choice for start menu.
  20. That's kinda strange. What version of Windows do you have and could you test the attached inject.bin? DELAY 3000 GUI r DELAY 500 STRING notepad.exe ENTER DELAY 500 STRING Hello World ENTER REPEAT 2 inject.bin
  21. Try GUI r instead if you want to get the "Run" dialog ;) CONTROL ESCAPE only opens the start menu.
  22. To clean up I'd recommend the following steps: Check for firmware updates (if possible: download it at your friends house/at work) Factory reset modem Connect it to LAN only Update firmware (if no update: Skip 4.) Configure modem Connect to the internet again Have you scanned your PC for any malicous software, yet?
  • Create New...