Jump to content

Recommended Posts

Posted

Hello,

I'm brazilian and have a doubt.

No one of the *.properties file we have in /resource folder is usefull for us. We have some special caracters that arent found when creating a payload.

I tryed pt.properties (portuguese from portugal) and didnt work as well.

Where I can find a pt-br.properties file?

Thank you!

Ex.: Tried this payload:

DELAY 4200
GUI r
DELAY 450
STRING notepad.exe
ENTER
DELAY 400
STRING Hello World! Ç á ê! :::

Enconding:

root@kali:~/Desktop/Rubber_Duck# java -jar encoder.jar -i hello_world -o inject.bin -l resources/pt.properties
Hak5 Duck Encoder 2.6

Loading File .....        [ OK ]
Loading Keyboard File .....    [ OK ]
Loading Language File .....    [ OK ]
Loading DuckyScript .....    [ OK ]
Char not found:ISO_8859_1_E1
Char not found:ISO_8859_1_EA
DuckyScript Complete.....    [ OK ]

Result on my notepad.exe:

Hello World! Ç  ! >>>
Posted

if you know what is wrong, and can correct pt.properties, we can stick a renamed pt.properties "br.properties" into the main source tree.

What keypresses do you need for:

Char not found:ISO_8859_1_E1

Char not found:ISO_8859_1_EA

Im guessing ISO_8859_1_E1 = KEY_RIGHT_BRACE, MODIFIERKEY_RIGHT_ALT ????

Posted (edited)

if you know what is wrong, and can correct pt.properties, we can stick a renamed pt.properties "br.properties" into the main source tree.

What keypresses do you need for:

Char not found:ISO_8859_1_E1

Char not found:ISO_8859_1_EA

Im guessing ISO_8859_1_E1 = KEY_RIGHT_BRACE, MODIFIERKEY_RIGHT_ALT ????

Well, there are few keypresses I already identified.

I'm doing a table pt to br:

pt-pt -> pt-br

( -> )

) -> =

: -> _

\ -> <

But there are many others I need to identify. As soon as I get the keyboard mapped I'll post here. If someone else want to help me please feel free xD

Edited by andrecvnt
Posted

if you know what is wrong, and can correct pt.properties, we can stick a renamed pt.properties "br.properties" into the main source tree.

What keypresses do you need for:

Char not found:ISO_8859_1_E1

Char not found:ISO_8859_1_EA

Im guessing ISO_8859_1_E1 = KEY_RIGHT_BRACE, MODIFIERKEY_RIGHT_ALT ????

Could you give me a little hand? I need the key names to map brazilian keyboard.

KEY_SLASH in my keyboard its different from your keyboards.

I'm having problem to map the KEY_SLASH on my keyboard.

When I map the ASCII_2F to the key KEY_SLASH it doesnt work. Our (brazilian) slash key should have other name.

This is a picture of my keyboard: 70l6pe.jpg

  • 3 months later...
Posted (edited)

As a start try adding the commands below to pt.properties

ISO_8859_1_E1 = KEY_RIGHT_BRACE, MODIFIERKEY_RIGHT_ALT

ISO_8859_1_EA = KEY_RIGHT_ASH, MODIFIERKEY_RIGHT_ALT

Also try:

ASCII_28 = KEY_9, MODIFIERKEY_SHIFT

ASCII_29 = KEY_0, MODIFIERKEY_SHIFT

ASCII_3D = KEY_EQUALS, MODIFIERKEY_SHIFT

Ideally, I need you to run a plug in a usb keyboard , run a usb sniffer (usblyzer) press each key that is missing 5x, and record the order you pressed the keys. Then mail me the results.

Thanks

Edited by midnitesnake
  • 4 months later...
Posted

Ok, so I am almost finishing the pt-br.properties. But I have some key to fix, I need help.

I did the following script:

DELAY 3000
STRING \
ENTER
STRING |
ENTER
STRING Ç
ENTER
STRING ç
ENTER
STRING ;
ENTER
STRING :
ENTER
STRING `
ENTER
STRING ´
ENTER

After complied, I got the following error msg:

Char not found:ISO_8859_1_C7
Char not found:ISO_8859_1_E7
Char not found:ASCII_60
Char not found:ISO_8859_1_B4

And the result of the ducky is:

//didnt return nothing
{
//didnt return nothing
//didnt return nothing
ç
Ç
//didnt return nothing
//didnt return nothing

So, from here I don't know how to map the missing keys. What I need to know is the name of the key (I mean.. KEY_what?) of the highlighted keys below:

2ign683.jpg

Here is the br-pt.properties I made so far.

https://drive.google.com/file/d/0B8jX0_eI2P43MVFwYlRsTVlfazA/edit?usp=sharing

Anyone can help with?

We are almost there!!

Posted (edited)

can you use usblyzer to capture those keystrokes from a USB Keyboard (the keyboard on your laptop is probably PS2, we need to make sure we are capturing data from a USB keyboard) - tap each key 5x and record the order, post on this thread, your order and the usblyzer file-capture.

thanks

Edited by midnitesnake
Posted

Hmm, tricky - it requires a 3rd byte. (Current Ducky works off a 2-byte statemachine)

It involves altering the firmware, and the encoder, I'm also not sure how to do this as ATMEL have no info that I can find on extended keyboard charsets.

This requires more research and digging into the ATMEL AVR Keyboard guides.

Even I require help for this one.

Posted

Thanks for helping. So we need help from rubber ducky stuff, anyone able to do it for us?

The main problem is that this key (pipe/backslash) is very important to build efficient payloads.

Posted (edited)

Do the keys / ? work on the ducky?

If not i think their base key code may = 0x87

Edited by midnitesnake
  • 8 months later...
Posted

Hi there i'm from Brazil as well and would like to know if there is any updates on this?

I notice you missed the key, "W" on the BR.properties. We don't have this on alphabet but we will certanly use it for some payload ;)

  • 1 month later...
  • 11 months later...
Posted

hi everyone im brazilian also , have received my rubber duck i am not able to make any payload works :S they keyboard doesn't looks to be the same?

can some on help me whit this?

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...