Jump to content

[Question] Waiting for Drivers to Load


Arkanian
 Share

Recommended Posts

Just to be clear I did search these forums. I saw one person give C code to detect if NUMLOCK is on but I am not sure where this code would go since the payload is not C. Just need clear direction on what to do here.

Edited by Arkanian
Link to comment
Share on other sites

Depends on the HID Injection (m_duck.hex) or composite (c_duck.hex) the c_duck wants to mount the mass_storage parition, whereas you could wait (m_duck.hex) then use a keyboard trigger (CAPS/NUM/SCROLL Lock).

Alternativley, if your using the HID injection modules version 2 fimrware (m_duck.hex or duck.hex) you can edit vidpid.bin to spoof the identifier of the current keyboard - thus bypassing the need to wait for drivers to install as their already loaded. This additionally works for the USB and Composite devices (USB.hex and c_duck.hex) where you can spoof the VID and PID of an already allowed/authorised device; this not only bypasses device control software but the installation of drivers.

Check out ducky-decode website. Its in my signature.

Edited by midnitesnake
Link to comment
Share on other sites

Well this is odd. I put in a sleep of 30 seconds and the drivers were well loaded after it was suspose to execute but nothing ever happened. If I take it back out and put it in it works or if I turn off\on the numlock key it works. Not sure what is going on. Again this is only on a PC that it has never been plugged into.

Edited by Arkanian
Link to comment
Share on other sites

There might not be an autotrigger but C_duck_v2_s001 appears to execute the inject.bin after the drivers are loaded. I slept on it and test Windows XP again and this time it worked. Drivers took around 30 seconds to load for the first time and around 15 seconds later (have a delay of 15000) my script ran. Maybe the new firmware is just better than the default when it comes to driver load times and execution of inject.bin?

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...