Jump to content

Decoy

Active Members
  • Posts

    248
  • Joined

  • Last visited

  • Days Won

    2

Everything posted by Decoy

  1. Hi Everyone, Are there any links for documentation related to each module for the Pineapple? I see the module page, which contains the author, but no GitHub links or anything. Thanks, D
  2. She's already mad I bought the Nano so close to Christmas because she knows how badly I wanted it. I told her I still needed the Tetra though...
  3. If they were I'd buy every piece of hardware I don't yet have. And my wife would kill me for ruining Christmas.
  4. OK awesome. I figured I could that, but wasn't sure about the max for one line. Thanks for the info. D
  5. Yeah, it's definitely odd. My Alfa works great, I usually don't have too many problems, and I only power mine through USB on my laptop.
  6. I had a lot of problems using that, from what I hear it hasn't been updated in a long time. Try using the duck encoder locally, and define your keyboard resource when you do - and it will most likely fix your problem. I'm willing to bet it's a keyboard character conversion issue of some sort.
  7. Are your Access Points behind any mind of concrete, fireplaces, etc? Definitely odd. Is it just your house? What if you point it at another house, same thing?
  8. Have you tried using any type of directional antennas? Typically you get more gain with those if you know the direction of the network you're trying to connect to. You can see it obviously if you're parked in your driveway right?
  9. Are you using the DuckToolKit by chance? What are you using to Encode your script?
  10. Hi Everyone, Is there a Max Delay for the Rubber Ducky? Let's say I wanted to give the rubbery ducky a 5 minute delayed start, a locked PC for instance, but I know someone will be back in 5 minutes. Can I put a DELAY 300000? What's the max? Thanks, D
  11. This is unbelievably fast... and quiet :) Great payload.
  12. As an example, GUI r STRING chrome https://www.somesite.com/ ENTER Also, have you played around with the TAB key at all? Count how many TABs it takes to get the focus where you want it. Assuming it's always in the same place, that would work too. A little cumbersome, but it would work.
  13. Servers went down last night - and it looks like they had to restore from a backup.
  14. The only thing a stock reverse tcp payload is doing is firing off a reverse shell and potentially binding to another process. You're going to have to get creative with Ruby if you want to design your own payload; however in my experience Pentesting shouldn't destroy anything on the target system(s).
  15. If you're comfortable with Ruby, I think you can modify the payload session time out here: https://github.com/rapid7/metasploit-framework/blob/cac890a797d0d770260074dfe703eb5cfb63bd46/lib/msf/core/payload/python/meterpreter_loader.rb met.sub!('SESSION_EXPIRATION_TIMEOUT = 604800', "SESSION_EXPIRATION_TIMEOUT = #{datastore['SessionExpirationTimeout']}") met.sub!('SESSION_COMMUNICATION_TIMEOUT = 300', "SESSION_COMMUNICATION_TIMEOUT = #{datastore['SessionCommunicationTimeout']}") met.sub!('SESSION_RETRY_TOTAL = 3600', "SESSION_RETRY_TOTAL = #{datastore['SessionRetryTotal']}") met.sub!('SESSION_RETRY_WAIT = 10', "SESSION_RETRY_WAIT = #{datastore['SessionRetryWait']}") I'm not 100% on this, someone more familiar with the framework might know better. But it looks like each payload references SessionCommunicationTimeout. So adjusting that might work. If your pentest requires a persistent shell, it might be better to try forwarding some ports on the target machine. Also - if you haven't already, test your payload exe file on VirusTotal - as typically a generic meterpreter payload will be flagged by most AV software. You might be better off designing your exploit from scratch if your pentest requires you to remain undetected.
  16. OK good. I think the problem with the command line is you might be missing the keyboard layout. Try doing this whenever you get the chance: jar duckencode.jar -i script.txt -o inject.bin -l resources/us.properties Obviously the above line assumes you're in the US, so change it to whatever keyboard makes the most sense. I eventually ran into a problem with certain characters not converting correctly with the ducktoolkit. Good luck, D
  17. No, that's exactly right. That's the purpose of having a service like that, for when you don't have a static IP. There are some more details here: https://help.dyn.com/remote-access/getting-started-with-remote-access/ There are some other alternatives that accept bitcoin and such if you're concerned about privacy: https://www.noip.com/ Also, I know there are some VPN services that offer port forwarding. So if you have AirVPN or something similar, you just connect to your VPN. Your payload would then point to the hostname/port provided by your VPN service. It's all a matter of preference.
  18. Did you try the DuckToolKit? See if that makes a difference. If the inject.bin runs from that, then I would try cloning the repository again. Also, are you defining your keyboard? I don't see a resource in your command line.
  19. Yeah, I couldn't get in at all last night. The whole server must've gone down.
  20. Decoy

    Hacknet

    else Heart.Break() http://elseheartbreak.com/ There was another great game I played at Pax East last year that was a lot of fun - but can't remember the name of it for the life of me. You actually played a government agent trying to catch darknet criminals. Great idea, and the terminal commands used in-game are legit.
  21. Decoy

    Hotline Miami

    Great game. I think Hotline Miami 2 is coming out soon (if it hasn't already?).
  22. If you are doing this from the command line, make sure you're using the correct repository from github: https://github.com/hak5darren/USB-Rubber-Ducky From the ReadMe: This new version allows you to use alternative layout. It supports ASCII, ISO-8859-1 and unicode. $java -jar duckencode.jar -i script.txt -o inject.bin -l fr or $java -jar duckencode.jar -i script.txt -o inject.bin -l resources/mylayout.properties (mylayout.properties = keyboard layout - so us.properties if in US) Alternatively, you can use the DuckToolKit - which is what I used for my first few scripts: https://ducktoolkit.com/encoder/ See if the toolkit resolves you're issues; however at this point I prefer the actual duck encoder. D
  23. Can you tell me your process for encoding? Are you using windows? linux?
×
×
  • Create New...