secret4all Posted November 15, 2013 Share Posted November 15, 2013 I'm a penetrater. I just bought Rubber Ducky. My situation I want to test is: the user ran out and his screen is locked. I need to unlock the PC without change his password (I dont know his password). Is it possible to use ducky for this purpose? Is yes, any guide to do it? Quote Link to comment Share on other sites More sharing options...
Mr-Protocol Posted November 15, 2013 Share Posted November 15, 2013 I dont think so. That would be more of a USB Switchblade type attack which no longer works (as far as I know). There is however a firewire exploit which works similar to how USB Autorun worked that can be used to run scripts to kill the lock screen I would imagine. Quote Link to comment Share on other sites More sharing options...
br0k3nilluzion Posted November 15, 2013 Share Posted November 15, 2013 You could something like Konboot.. even the free one should work if its windows 7 and under...;p Quote Link to comment Share on other sites More sharing options...
Mr-Protocol Posted November 15, 2013 Share Posted November 15, 2013 You could something like Konboot.. even the free one should work if its windows 7 and under...;p As far as I know, Konboot is a boot cd. Doesn't really fit for a running system. Quote Link to comment Share on other sites More sharing options...
secret4all Posted November 20, 2013 Author Share Posted November 20, 2013 You can use konboot as USB to bypass, except that it require to reboot for BIOS injecting. Rebooting is not enough as it make user suspect. Quote Link to comment Share on other sites More sharing options...
crackruckles Posted November 29, 2013 Share Posted November 29, 2013 The only thing i could think of is a firewire attack something like project inception www.breaknenter.org/projects/inception/ you could put this on a pi with a usb to firewire adapter cable and attack that way, ive been using that for a while now but i can tell you it is not easy getting the pi version of linux to like the old firewire module as the code for firewire got updated a while back for linux and renders this attack impossible at the moment. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.