Jump to content


Active Members
  • Posts

  • Joined

  • Days Won


Everything posted by kdodge

  1. It's possible, depending on how abused the USB port is, however unlikely. But I have repaired computers so badly abused that it wouldn't even start up because the 5V line was shorting out to ground, I had to bend the whole computer USB port back in shape just to stop the short. Usually things are not that bad, but sometimes people bend those USB drives every which way. It's usually not hard to move them to a different port just to see if that is a problem or not. A simple test.
  2. One other thing to try, if possible, try a different USB port on your computer. and sometimes switch the USB2.0/USB3.X port as well
  3. so i believe mac addresses cannot be forwarded, and switches (typically) have 2 networks that they normally bounce data across (usually one WAN and one LAN). is it possible that the ARP packet i s coming from the side that is not connected to the E3000? Or is it a static ARP entry being added by the switch's OS?
  4. this is maybe not exactly what you are looking for, but the "arping" took is also very handy to interact with the ARP level
  5. In my experience, SD cards are quite fragile, and can get messed up very easily. Do you have an extra one lying around you could try? Or maybe a brand new one? It's something simple to try to see if that might be the problem.
  6. for the error "solid red light", according to the stock firmware here: https://github.com/hak5darren/USB-Rubber-Ducky/blob/master/Firmware/Source/Ducky_HID/src/main.c line 225 appears to be where it could be getting hung up at. mem_test_unit_ready(LUN_ID_SD_MMC_SPI_MEM) appears to not work for some reason. some kind of memory problem. question, what size SD card are you running in the ducky?
  7. This is an experiment, i don't know if this will work or not, because I don't have a way to test it, but I added in a CTRL+ALT+SHIFT feature to the DuckiesqueUI IDE: https://github.com/slacker69/DuckiesqueUI the release v0.2.1b has the new feature
  8. Can I add your powershell script to the quick scripts? Is there any other short codes you would like me to add?
  9. Yep, I got the slash and backslash keys reversed. Thank you. New version is up
  10. Cool, I'm glad it helps! I have plans to add a new feature too, some quick script buttons that allow loading of basic functions at the current cursors location, like GUI r for instance. If you have any ideas you would like me to add, I will do my best to see if I can implement them (as long as it's not too difficult, lol)
  11. I have fixed the problem of + for =. Thank you for discovering it!
  12. No problem. It was in the works when you first posted this message and I kinda had to race to get it released, if there are bugs or something's not working the way it should let me know so I can update and fix the bus. Thanks!
  13. A DuckyScript IDE, with syntax highlighting, code execution and testing, and inject.bin file generation. Windows, MacOS, and Linux compatible. Rapid Protocoding Toolkit for the USB Rubber Ducky https://github.com/slacker69/DuckiesqueUI Releases are here: https://github.com/slacker69/DuckiesqueUI/releases
  14. The source says version 2 main.c: line 37, static char *vidpidFile = "A:\\vidpid.bin"; https://github.com/hak5darren/USB-Rubber-Ducky/blob/master/Firmware/Source/Ducky_HID/src/main.c maybe try "USB_v2.1.hex"
  15. There are 2 PreSharedKeyInstance entries, and it appears that they are uuencoded hashes, which decode to: 0bcc1b7b16ce1f01e65833b13e8f5c0c1d27 Cisco Type 7 / BigCrypt Hash 615a61997d9a79b7be10ac00525df175e96f Cisco Type 7 / BigCrypt Hash But you will have to figure it out from there.
  16. One thing that I can think of is sometimes VM's don't network properly the way a real computer networks. It might be more of a pain, but try to setup a real Win10 over a real test network with a real network hub/switch. VM's are a really convenient system for lab work but they might be the reason for your current problems. Maybe not, but it's worth checking out.
  17. Technically, the packet shouldn't be more that 0xffff(65535) in size, but this is what the man page looks like for tcpdump: 0x40000(262144) is greater than 0xffff(65535), so you might be cutting off packets if you limit yourself to 65535. try using -s 0 which is setting it to the max size.
  18. And if they wont redirect it, you could have a little fun with them by buying an outdoor electric heating pad and leave it on your property, and turn it on an off at random, at all hours of the night. After a while they won't want it pointed at your property anymore.
  19. if you want to really get rid of anything left on the drive, you should zero it out first, then partition/format it to NTFS $ lsblk ### find the /dev/sdX of the usb drive $ sudo dd if=/dev/zero bs=512 of=/path/to/usb/drive status=progress just change the "/path/to/usb/drive" to what ever /dev/sdX your usb drive is at
  20. If you are deciding to "smash it", it might be a candidate to experiment with it a little bit Bus Pirate v3 might allow you to do some lower level testing. I've always wanted to buy one and play around with it but never have.
  21. Any chance you could create a OpenPGP cert and make some .sig file for the various firmwares? Hashes are great to verify if it downloaded completely/correctly but a .sig helps allow verification of authenticity.
  22. I'm hoping this is also their website, but I can't be certain. The SHA256 hash matches the listed hash on the downloads.hak5.org site https://www.wifipineapple.com/downloads/nano/2.7.0
  23. can you try: $ ls -l ~/Downloads/inject.bin or C:\> dir C:\Users\%USERNAME%\Downloads\inject.bin ?
  24. Oh i see, option 224 is a "reserved" space. https://www.iana.org/assignments/bootp-dhcp-parameters/bootp-dhcp-parameters.xhtml Its probably blocked normally, that's why you need to force it. I'm not sure how/if you can force something like that from uci, but I have not looked too deeply into that. I'm kind of curious if you tried uci add_list dhcp.lan.dhcp_option_force='224,"my_payload_string"' what would happen, if part of the uci configure would work like that.
  • Create New...