Kud0s82

I dont think so, what are you trying to use CTRL ALT DELETE for?

I was total noobing it, i just renamed the script .bin, and did not compile it. I though it was like a VBS script

Its Windows 7, and United states

Nevermind. I got it figured out

I just got the ducky, I tried the hello world payload, no luck. The LED lights up blue, and when I push the button it simulates that I pushed CTRL ALT DELETE.

I am in no way responsible if you use this idea for anything illegal I have thought of a little script that can change proxy servers in Google Chrome. I do not have my Ducky to test it out yet, and have not actually made the code yet. I have just mapped out the steps to get to Chrome, get to the options, and change the proxy server. My reasoning behind this is if you have the proxy set up to go to a computer you own, you could run SSL strip, and get usernames, and passwords to any website they go to. Anyways here are the steps in Google Chrome. I am also making on in IE. I may do Firefox as well. 1. Window+D 2. Window+R 3. String: chrome 4. Alt+F (brings up the settings tab) 5. String: S (goes to actual settings) 6. Tab (18 times) 7. Enter 8. Tab (19 times) 9. String: L (goes to LAN settings) 10. String: X (goes to Proxy settings) 11. Sting C (goes to advanced settings) 12. String: the attackers IP address 13. Tab 14. String: attackers port 15. Enter 16. Escape 17. Escape 18. Alt+F4 19. Window+D I believe this should work, as long as you have the attack computer on the internet, and on running ssl strip. I will be testing it out as soon as I get my Duck

You could possibly make new scripts that could use the power of the twin duck. I think I saw where you could get a password using the twinduck, and have the clear text passcode on the sd card.

Yes, but that would require me getting into an Admin machine. Granted it would not be hard.

I won't be able to do much harm at work since there are only a few computers that have admin rights to them. So the run CMD as admin won't work unless I somehow get the Admin user name, and password.

I plan on staying legal. I have several test computers to use. I would only do harmless pranks to my co-workers. I could probably give the IT guys some scares, but I won't do that.

I have just ordered mine. I mainly bought it as a learning tool. I will be playing pranks, but also want to learn more about pen testing, and learning the ins, and outs of using a reverse shell.