hak5
/
usbrubberducky-payloads
mirror of https://github.com/hak5/usbrubberducky-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
429 Commits
4 Branches
0 Tags
53 MiB
Commit Graph

341 Commits (dd3bc264c40d389042035e7b066814c1bdd23a70)

Author SHA1 Message Date
HackingMark 1c595e6697
Create payload.txt 
Extracts all Wifi Profiles as XML to Loot Folder on Ducky. Testet on Windows 10 and 11 with German Layout
 2022-08-29 11:29:58 +02:00
HackingMark 9cdaaa9dc8
Create payload.txt 
WifiCredential Stealer via Sidechannel Attack. Testet on Windows 10 and 11 with German Layout.
 2022-08-29 11:24:24 +02:00
0iphor13 64dceed071
Merge branch 'hak5:master' into master 2022-08-28 12:49:01 +02:00
saintcrossbow 529843c7b2 One Duck To Quack Them All 
Initial version of selectable payloads for Hak5 rubber ducky using combination of button toggles and LED indicators with proof-of-concept attacks
 2022-08-27 15:54:44 -04:00
cribb-it 2ba0b3e08c Small Fixes 2022-08-26 18:32:02 +01:00
atomic 22a5f41f2d
Add files via upload 2022-08-23 21:43:25 -04:00
Darren Kitchen 963baf507c
Update Randomization-example2.txt 2022-08-23 15:00:34 -05:00
DIYS.py ef6c38af7a
Added ATTACKMODE and improved comments/info. 2022-08-20 23:30:05 -04:00
DIYS.py a034ebd371
Merge branch 'hak5:master' into master 2022-08-20 23:22:58 -04:00
Darren Kitchen c3ccb28053
Added DuckyCave-Game payload 2022-08-20 14:43:25 -05:00
Darren Kitchen 61c4477957
Rename DuckyCave-Game to oops 2022-08-20 14:42:50 -05:00
Darren Kitchen d82905e641
Create DuckyCave-Game 2022-08-20 14:41:44 -05:00
Darren Kitchen 470dd102d5
Added Android Browse-to-URL-Example payload 2022-08-20 13:48:21 -05:00
Dallas Winger 1d5fd4104e
Add New DuckyScript 3.0 Examples and Extensions 2022-08-19 18:26:02 -04:00
cribb-it a1cb86a9aa Image of Key 2022-08-18 12:17:24 +01:00
DIYS.py 5bbdf34b5c
Update Browser-Passwords-Dropbox-Exfiltration.ps1 
Added a few lines to kill the process for Chrome before extracting the info and then starting the process again (Should work fine but may need updating to be better)
 2022-08-18 01:29:44 -04:00
DIYS.py 4f4e69f7b2
Update ReadMe.md 
Added note about issues.
 2022-08-17 17:20:56 -04:00
MadManwithaBlueBox 3e2d28c449 Moved Files to a Version Folder 
In case I decide to make a local version as well as the online version.
 2022-08-17 17:19:19 -04:00
DIYS.py 81b98adc67
Update ReadMe.md 2022-08-16 11:33:22 -04:00
ph3llin be741790a0
Update payload.txt 2022-08-15 19:56:10 -07:00
0iphor13 eb50b69efa
Update README.md 2022-08-15 11:20:17 +02:00
ph3llin ba0888bbd4
Create payload.txt 2022-08-15 01:16:04 -07:00
Timothy Geirk 5195210fa3
The littlest payload known to duck-kind 
it's f_ing hilarious - works on all windows machines with powershell
 2022-08-13 23:08:49 -07:00
0iphor13 2f3ee66067
Uploaded SoundChangeDuck 
Nothing special. Just a cheap prank. Changing system sounds. In this example device connection.
 2022-08-13 19:09:42 +02:00
DIYS.py 6505a40a33
Update Browser-Passwords-Dropbox-Exfiltration.ps1 2022-08-11 07:18:30 -04:00
DIYS.py c50cfe9a44
Update ReadMe.md 2022-08-10 21:16:17 -04:00
DIYS.py ffc7d1d7af
Add files via upload 2022-08-10 21:10:11 -04:00
DIYS.py 7cdf146afb
Create payload.txt 2022-08-10 21:08:42 -04:00
DIYS.py bf506c8368
Create payload.txt 2022-08-10 21:05:47 -04:00
TW-D 7d4a6ebf55
Add "Microsoft Windows" SMB Backdoor 
1) Adds a user account (RD_User:RD_P@ssW0rD).
2) Adds this local user to local administrator group.
3) Shares "C:" directory (RD_SHARE).
4) Adds a rule to the firewall.
5) Sets a value to "LocalAccountTokenFilterPolicy" to access the "C:" with a local account.
6) Hides this user account.
 2022-08-09 03:42:05 -04:00
atomic 4ffa12e4a8
Update README.md 2022-08-08 22:08:53 -04:00
atomic cd6edb3210
New payload - Bookmark-Hog 2022-08-08 22:04:12 -04:00
FalsePhilosopher 892283e136 added terminal rickroll 2022-07-17 10:43:50 -06:00
Darren Kitchen f68e3bf55a
Merge pull request #106 from 0iphor13/master 
Multiple Updates
 2022-07-14 15:44:51 -05:00
Darren Kitchen 0cc7144ddd
Merge pull request #104 from MocconaCoffee/patch-1 
Create payload.txt
 2022-07-14 15:39:01 -05:00
Darren Kitchen f1cf4ca5a1
Merge pull request #103 from LulzAnarchyAnon/patch-11 
Add_Local_Admin
 2022-07-14 15:33:13 -05:00
0iphor13 633d8015d1
Update ReverseDuckyII.txt 
Changed shell prompt slightly for better visibility
 2022-07-06 19:28:50 +02:00
0iphor13 29cacc0902
Updated ReverseDucky3 
Version number
 2022-07-06 19:25:13 +02:00
0iphor13 86cb97f282
Update ReverseDucky3 
Added Ducky to the powershell prompt
 2022-07-06 19:24:47 +02:00
0iphor13 fb8269a2d4
Update ReverseDuckyII.txt 
Updated shell prompt - looks nicer that way
 2022-07-06 19:23:32 +02:00
R Λ Y 9f2408bbd4
Create README.md 2022-07-04 23:11:47 +10:00
R Λ Y 612de14e61
Create payload.txt 2022-07-04 23:03:55 +10:00
LulzAnarchyAnon 2e77698801
Create payload.txt 2022-07-03 09:19:55 -07:00
UberGuidoZ b827189129
Fixing typo 2022-07-02 21:12:07 -07:00
Darren Kitchen 78fe574c2d
Merge pull request #99 from UberGuidoZ/master 
Added error correction after some feedback
 2022-06-22 14:40:44 -05:00
UberGuidoZ 4f98059604
Added RickRoll ASCII 
Opens Notepad and types out the ASCII art then does a little dance
 2022-06-20 23:51:06 -07:00
UberGuidoZ e212c2d908
Create ReadMe.md 2022-06-20 23:50:34 -07:00
LulzAnarchyAnon 15f45b99ee
Create payload.txt 2022-06-19 00:00:39 -07:00
UberGuidoZ 253f291898
Merge branch 'hak5:master' into master 2022-06-14 19:42:27 -07:00
UberGuidoZ 7ec1e93bb3
Added error correction prior to creating BAT file 2022-06-14 19:42:20 -07:00
Darren Kitchen 62822c76cf
Merge pull request #97 from LulzAnarchyAnon/patch-7 
QuacKed_Again
 2022-06-09 12:39:27 -05:00
LulzAnarchyAnon a9a7197960
Create payload.txt 2022-06-04 16:02:15 -07:00
LulzAnarchyAnon de24c07da7
Rename payload.txt to WindowS_PoP_uP 2022-06-03 16:08:17 -07:00
LulzAnarchyAnon a7e5308545
Create payload.txt 2022-06-03 16:07:02 -07:00
Darren Kitchen 171a6f1a1a
Merge pull request #95 from makozort/master 
I have not seen a ducky phishing script before so I thought id make one
 2022-05-31 09:41:35 -05:00
Jack M 461e9c4e95
Update duckyphish.txt 2022-05-31 20:55:56 +10:00
Jack M 7f2d41dab9
Add files via upload 2022-05-31 20:53:48 +10:00
Darren Kitchen b09f06f876
Merge pull request #93 from UberGuidoZ/master 
Add Rick Rolling Forever
 2022-05-29 16:21:50 -05:00
Robert 0a9849e2d4 Submission 2022-05-29 12:22:21 +10:00
UberGuidoZ 3516624f76
Add Rick Rolling Forever 
Creates a batch file that opens a Rick Roll every 5 mins, using the default browser. The script is self-contained as it creates the batch, starts it, then minimizes the window. Though designed for Windows, it is easily modified for te but easily modified to work on any OS with a browser.
 2022-05-25 18:31:37 -07:00
Hagen 62126cbeaf
Create payload.dd 2022-05-24 14:41:37 +02:00
UberGuidoZ 7957bd3cf1
Merge branch 'hak5:master' into master 2022-05-20 22:45:47 -07:00
UberGuidoZ 82b85202f1
Everyone can be a hacker! 2022-05-20 22:45:30 -07:00
Darren Kitchen a90c2e800b
Merge pull request #85 from I-Am-Jakoby/master 
New Payload - Credz-Plz
 2022-05-19 14:04:28 -05:00
Darren Kitchen 84e43eb0cc
Merge pull request #88 from I-Am-Jakoby/master 
New Payload - SafeHaven
 2022-05-19 13:24:50 -05:00
Darren Kitchen 058b13c59a
Update payload.txt 
fixed comments
 2022-05-19 12:38:43 -05:00
Darren Kitchen 0a9020fef3
Merge pull request #26 from makozort/patch-1 
Reverse Shell
 2022-05-19 12:36:58 -05:00
Darren Kitchen 3029c88a7d
Merge pull request #82 from LulzAnarchyAnon/patch-5 
YouHaveBeenQuacked
 2022-05-19 12:34:33 -05:00
Darren Kitchen 24f45832d9
Merge pull request #87 from naitik27/master 
Add files via upload
 2022-05-19 12:33:22 -05:00
Darren Kitchen b2e0e10818
Merge pull request #90 from MajesticBagel/master 
lol_killer
 2022-05-19 12:31:29 -05:00
Darren Kitchen 8a806cf7a6
Rename payloads/library/incident_response/GoodUSB.txt to payloads/library/incident_response/GoodUSB/payload.txt 2022-05-19 12:30:24 -05:00
MajesticBagel 05ad82f684 Create payload.txt 2022-05-19 09:52:38 -04:00
moosehadley ba06e7b3e9
Add files via upload 2022-05-19 09:28:07 -04:00
I-Am-Jakoby 55b546fb80
Add files via upload 2022-05-19 01:13:10 -05:00
Naitik Joshi be8a63b34c
Add files via upload 2022-05-19 10:25:01 +05:30
I-Am-Jakoby dbf11cb23e
Add files via upload 2022-05-17 08:46:19 -05:00
I-Am-Jakoby 5ea7047b47
Add files via upload 2022-05-12 20:03:27 -05:00
I-Am-Jakoby 81c5772cf3
Update payload.txt 2022-05-10 17:31:26 -05:00
I-Am-Jakoby 239554690d
Add files via upload 2022-05-09 22:44:38 -05:00
I-Am-Jakoby 077172eade
Add files via upload 2022-05-09 22:35:54 -05:00
I-Am-Jakoby e0a20fef7c
Add files via upload 2022-05-09 22:35:22 -05:00
I-Am-Jakoby 6f9e3dae84
Add files via upload 2022-05-09 22:34:57 -05:00
I-Am-Jakoby 9abd68ea66
Add files via upload 2022-05-09 22:34:25 -05:00
I-Am-Jakoby 54222860db
Delete payloads/library/general/RD-PineApple directory 2022-05-09 22:33:31 -05:00
LulzAnarchyAnon f03c8ca757
YouHaveBeenQuacked 
REM Title: YouHaveBeenQuacked
REM Author: LulzAnarchyAnon
REM Description: A speech synthesizer with the volume increased to 100% states "you have been quacked" followed by a browser image "You've Been Quacked!" and a "Quacked" REM Youtube video.
REM Target: Windows 10 (Powershell)
REM Props: Hak5
REM Version: 2.0
REM Category: Prank
REM This payload is based off the original Hak5 "QUACKED" payload, and was created for my own personal amusement 

GUI r
DELAY 200
STRING powershell -windowstyle hidden
ENTER
DELAY 200
STRING $key=[Math]::Ceiling(100/2);$obj=New-Object -ComObject WScript.Shell;for($i=0;$i -lt $key;$i++){$obj.SendKeys([char] 175)}
ENTER
DELAY 500
STRING $sp=New-Object -ComObject SAPI.SpVoice
ENTER
DELAY 500
STRING $sp.Speak("you have been quacked.")
ENTER
DELAY 100
STRING start firefox https://loginportal.funnyjunk.com/pictures/Mytril+urorubragg+taboo+quacked_d7d9b1_6228073.jpg
ENTER
DELAY 2000
GUI r
DELAY 200
STRING powershell -windowstyle hidden
ENTER
DELAY 200
STRING start firefox https://www.youtube.com/watch?v=CRkzItBabzs
ENTER
DELAY 2000
ENTER
 2022-05-09 17:28:52 -07:00
LulzAnarchyAnon 2c55a7fcd6
Update payload.txt 
Updated and Upgraded
 2022-05-09 14:45:39 -07:00
Darren Kitchen 8f52780158
Merge pull request #80 from unknown81311/patch-1 
Created RegDoor under remote access
 2022-05-09 15:01:53 -05:00
Darren Kitchen 0e135b18ad
Merge pull request #77 from UberGuidoZ/master 
Admin Who Never Sleeps
 2022-05-09 14:59:23 -05:00
Darren Kitchen a0e7789723
Merge pull request #79 from ratcode404/patch-1 
create working ratl0ck3r
 2022-05-09 14:55:27 -05:00
Darren Kitchen 147a6868d6
Merge pull request #78 from victor-a-c/patch-2 
silent_rickroll Rev 2
 2022-05-09 14:53:05 -05:00
unknown81311 23d3dc9a82
Create payload.txt 2022-05-08 14:16:02 -06:00
UberGuidoZ f38072c6e2
Initial ReadMe 2022-05-07 18:43:57 -07:00
UberGuidoZ a0c95a2031
Updated to v1.2 2022-05-07 18:37:57 -07:00
ratcode404 d5dea1138a
Update payload.txt 2022-05-06 13:40:52 +02:00
ratcode404 9a0516eb4d
Update README.md 2022-05-06 13:31:09 +02:00
ratcode404 eb877ad07c
Rename rat3ncrypt3r to rat3ncrypt3r.bat 2022-05-06 13:28:58 +02:00
ratcode404 0ae543eab2
Create rat3ncrypt3r 2022-05-06 13:28:45 +02:00
ratcode404 e6a9624193
Update payload.txt 2022-05-06 13:20:54 +02:00
ratcode404 babfc26dfb
Update README.md 2022-05-06 12:37:47 +02:00
ratcode404 dce881aecf
Update README.md 2022-05-06 12:37:10 +02:00
ratcode404 a656cba2ef
Update README.md 2022-05-06 12:19:00 +02:00
ratcode404 3225e74846
Update README.md 2022-05-06 12:15:42 +02:00
ratcode404 cb00087f18
Update README.md 2022-05-06 12:15:31 +02:00
ratcode404 7284eafa25
Create README.md 2022-05-06 12:13:15 +02:00
ratcode404 ae29484e1f
Update payload.txt 2022-05-06 12:09:29 +02:00
ratcode404 91b0da128a
Update payload.txt 2022-05-06 12:09:21 +02:00
ratcode404 63972c3a03
Create payload.txt 2022-05-06 12:09:12 +02:00
ratcode404 47fd2f4e73
Delete ratlocker 2022-05-06 12:08:47 +02:00
ratcode404 12e0179b90
Create ratlocker 2022-05-06 12:08:37 +02:00
TheV fced6b39fb
Fixed and improved 
Fixed folder selection feature that allows batch file to be saved on Documents folder, fixes made to the batch file itself, script runs smoother with new delays and could be made faster with a few adjustments
 2022-05-03 23:36:04 -03:00
TheV 3ed39c78e8
Create README.md 2022-05-03 23:21:12 -03:00
UberGuidoZ e992fcc614
Payload v2.0 
Issues with copy/paste from testing are fixed!
 2022-05-03 17:23:46 -07:00
UberGuidoZ fa5f41670e
Create ReadMe.md 2022-05-03 17:23:08 -07:00
LulzAnarchyAnon 691f7aab0a
Update payload.txt 2022-05-02 16:33:17 -07:00
LulzAnarchyAnon 06fec5bb7f
Create payload.txt 
Based on the original Hak5 "QUACKED payload, but with a twist....
 2022-05-02 15:53:33 -07:00
I-Am-Jakoby 9837f0694c
Update RD-IWR-PineApple.txt 2022-04-29 20:03:33 -05:00
I-Am-Jakoby a84905208b
New Payload RD-PineApple 2022-04-29 20:02:31 -05:00
Darren Kitchen a1a85fe0de
Merge pull request #70 from UberGuidoZ/master 
The Matrix "Wake up Neo" terminal scene recreation
 2022-04-29 18:31:20 -05:00
Darren Kitchen 0b5a31d383
Merge pull request #69 from victor-a-c/patch-1 
silent_rickroll rev 1
 2022-04-29 18:29:48 -05:00
Darren Kitchen 0f4d3c5d80
Merge pull request #66 from the-jcksn/master 
Physical_Rick_Roll
 2022-04-29 18:02:37 -05:00
UberGuidoZ 59a003a27c
Create payload.txt 2022-04-28 22:07:59 -07:00
UberGuidoZ 98e877f703
Create ReadMe.md 2022-04-28 22:07:15 -07:00
TheV d1e8f2f8dd
silent_rickroll rev 1 
unnecessarily long but easy to understand script using simple methods to achieve its goal and getting around some cmd/run dialogue locks
 2022-04-29 01:26:29 -03:00
JoustingZebra aa8dc6f4a3
Automatically close process 
PowerShell process was left open. Script takes approximately 1.5 seconds to scan a host, which means it should take ~27.3 hours to scan a class "B" subnet. Process now automatically closes after ~27.3 hours.
 2022-04-28 10:45:40 -04:00
JoustingZebra 1ca4a60ff2
Fixed script exit 2022-04-28 10:29:31 -04:00
JoustingZebra b8a1ad49c1
Fixed the comments again 2022-04-27 19:04:35 -04:00
JoustingZebra f139e28806
Fixed comment 2022-04-27 19:04:10 -04:00
JoustingZebra 9de6336f13
Create payload.txt 2022-04-27 19:02:02 -04:00
JoustingZebra e56963089e
Delete Poor_Mans_Nmap 2022-04-27 19:01:43 -04:00
JoustingZebra 28fb4cdaf8
Create Poor_Mans_Nmap 2022-04-27 19:01:10 -04:00
JoustingZebra bbfbce2f3d
Moved Poor_Mans_Nmap to exfiltration category 2022-04-27 19:00:32 -04:00
JoustingZebra f4e6492025
Poor_Mans_Nmap 2022-04-27 18:58:46 -04:00
the-jcksn 27c3f95899
Create payload.txt 2022-04-24 10:21:47 +01:00
TW-D 6070f7152e
Add "Microsoft Windows" WinRM Backdoor 
1) Adds a user account (RD_User:RD_P@ssW0rD).
2) Adds this local user to local administrator group.
3) Enables "Windows Remote Management" with default settings.
4) Adds a rule to the firewall.
5) Sets a value to "LocalAccountTokenFilterPolicy" to disable "UAC" remote restrictions.
6) Hides this user account.
 2022-04-20 12:29:52 -04:00
Darren Kitchen fb105c998f
Merge pull request #60 from ratcode404/patch-1 
create new payload
 2022-04-17 14:43:41 -05:00
Darren Kitchen 1b1d0a3f9d
Merge pull request #63 from startrk1995/discord_windows_wifi_ip-info 
Added Discord exfiltration of wifi/info/ipv4 payload
 2022-04-17 10:46:11 -05:00
the-jcksn e55a6b51b2
Update payload.txt 2022-04-16 19:42:46 +01:00
the-jcksn b968787ba2
Create payload.txt 
Prank script to add a custom autocorrect rule to Microsoft Word.
 2022-04-16 13:07:07 +01:00
the-jcksn cca66cbddb
Update payload.txt 2022-04-16 08:07:08 +01:00
the-jcksn 7a23f29015
Update payload.txt 2022-04-15 18:09:37 +01:00
the-jcksn f9915cfa68
Create payload.txt 
A dastardly new script, since Nicolas Cage will accept any script thrown at him.
 2022-04-15 18:07:23 +01:00
Nate Glaser 50f902b3b3 Added Discord exfiltration of wifi/info/ipv4 payload 2022-04-15 11:15:52 -04:00
Darren Kitchen e83e349b02
Merge pull request #61 from drapl0n/master 
Changing systemd Unit
 2022-04-14 16:09:50 -05:00
the-jcksn 6f2521197f
Update payload.txt 2022-04-14 17:23:51 +01:00
the-jcksn 06a3b20775
Rename payloads/library/exfiltration/DUCKY_CRAB/payload.txt to payloads/library/exfiltration/Ducky_Crab/payload.txt 2022-04-14 17:11:35 +01:00
the-jcksn 8baacc9b37
Update payload.txt 2022-04-14 17:10:05 +01:00
the-jcksn 2b56ab0f17
Create payload.txt 2022-04-14 17:07:47 +01:00
the-jcksn 76f7d75529
Delete payload.txt 2022-04-14 16:54:25 +01:00
the-jcksn b444928011
Update payload.txt 
Made it more awesome (yes that is possible apparently).
Script is now faster, and more stealthy (once ducky has done it's bit and then removed, there are no visible windows remaining on target computer).
This took a lot of messing about with environment variables so that the script could run in one line from with run terminal. Was an absolute nightmare to get it just right!
Honestly Darren, you should just send me a Screen Crab so I can stop making my Ducky work overtime trying to be one!
(Maybe I should rename this script to "The poor mans Screen Crab" :D
 2022-04-14 16:53:26 +01:00
drapl0n 5850dac492
Update payload 2022-04-14 20:30:42 +05:30