amateur Posted October 25, 2023 Share Posted October 25, 2023 I am using theĀ the android brutforce script on the usual paylods github repository. I have already compiled the scripts using the studio then downloaded the inject.bin to the sd card. However when I plug it into my pixel 6, nothing happens. I noticed if ii press the button twice the led turns red but still it does nothing. Has Google fixed the HID keyboard exploit? Quote Link to comment Share on other sites More sharing options...
dark_pyrro Posted October 25, 2023 Share Posted October 25, 2023 Can you use an ordinary wired keyboard along with the phone (i.e. writing on the phone with a keyboard connected using USB)? Did you try with an OTG adapter? Even if you successfully get the Ducky to identify itself on the device, that payload will probably not be successful due to the fact that brute forcing the PIN on an Android device most likely will lock down the phone after a certain number of tries. There are a lot of years since the brute force method was successful and I don't think there has been any new attack vector revealed to circumvent this. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.