**Noob** Using USB Rubber Ducky to gain Remote Access to MacBook Pro

[heavenPawn]

Hello all, I am very *very* new to computer security/pen testing, so please excuse me if I’m not describing what I’m hoping to accomplish effectively.

So I’m trying to use my USB rubber ducky to discreetly gain remote access to the target device (a MacBook Pro) as well as install a keylogger, if possible. My understanding is that I may need the IP address of the target device (which I don’t have) to gain remote access.

Since I do not have access to the target device, the device owner would be the one plugging the usb drive into the laptop, so ideally the payloads would be executed without the knowledge of the user. I also wanted to know if it would be possible to have remote access to the device with the lid closed.

Since a majority of community-made payloads I’ve been seeing are targeted towards windows devices, I was hoping to get some assistance with doing this on a macOS device.

I would greatly appreciate any advice or assistance, thank you!

[dark_pyrro]

Ask yourself how you would do it all using an ordinary external keyboard and an ordinary USB storage device, then start to implement it all using the available features of the Ducky.

[DramaKing]

6 hours ago, heavenPawn said:

Hello all, I am very *very* new to computer security/pen testing, so please excuse me if I’m not describing what I’m hoping to accomplish effectively.

So I’m trying to use my USB rubber ducky to discreetly gain remote access to the target device (a MacBook Pro) as well as install a keylogger, if possible. My understanding is that I may need the IP address of the target device (which I don’t have) to gain remote access.

Since I do not have access to the target device, the device owner would be the one plugging the usb drive into the laptop, so ideally the payloads would be executed without the knowledge of the user. I also wanted to know if it would be possible to have remote access to the device with the lid closed.

Since a majority of community-made payloads I’ve been seeing are targeted towards windows devices, I was hoping to get some assistance with doing this on a macOS device.

I would greatly appreciate any advice or assistance, thank you!

If the lid is closed, the MacBook can be woken up, but it will probably be locked.

First of all, you're probably not going to be using a bind shell, so the IP address will appear when the target connects. Study firewalls and NAT so that you know a little of what you're doing. 

Second, if you do have permission, I can translate DOS/PowerShell commands to Mac zsh. Message me if you want resources on networking and/or ethical hacking.