Jump to content

[Suggestion][Payload] Ducky DoS


overwraith
 Share

Recommended Posts

Had an idea for the USB rubber ducky. Apparently if you know someone's account name on some networks and you type their password incorrectly several times, the system will sometimes lock out that particular user for a period of time. The USB rubber ducky could theoretically be used to exacerbate this issue if you know a few users names, and type in their passwords incorrectly repeatedly. Thoughts?

Link to comment
Share on other sites

Its a possibility, but then depending on the network/application this could easily be scripted (and scripts tend to be faster).

Eg. samba logins to lock out windows domain credentials.

Sorry, if I'm shooting your plan down, but keep them ideas coming!

Edited by midnitesnake
Link to comment
Share on other sites

Read the source Luke.

Bad pun, but its all about learning USB descriptors and manipulating the fields; insanely large numbers for size fields, insanely long strings in text/unicode fields. Its been done in the past with other chips (teensy and PS3, Arduino & caiaq audio)

Heres some info to start you off:

http://labs.mwrinfosecurity.com/assets/135/mwri_t2-usb-fun-with-plug-and-0wn_2009-10-29.pdf

http://labs.mwrinfosecurity.com/blog/2011/07/14/usb-fuzzing-for-the-masses/

Edited by midnitesnake
Link to comment
Share on other sites

I have written a script much the same as what you have described. It entered a username on the active directory at a windows logon screen and continually entered the wrong password. In theory it will lock out the account. The only issue i came across was trying to get the delays right between the "Welcome" message and the actual login screen after each attempt.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...