Foundation Level With USB Rubber Ducky Now With Less Than 10
Foundation Level With USB Rubber Ducky Now With Less Than 10, Foundation Level With Physical Hacking Device cheap microcontroller and Arduino IDE to write your own HID Do It Yourself.
Course Description
Learn How to Use MicroController in Real-World Hacking Scenario
In this course, I’m going to show you how we can use a tiny 1$ microcontroller to hack any PC on your local network and anywhere in the world using public IP. This Microcontroller is called DigiSpark. It is a microcontroller based on the Attiny85 development board. It is similar to Arduino but smaller and more powerful in terms of hacking.
Installing backdoors, exfiltrating documents, or capturing credentials is incredibly easy with a seemingly innocent USB drive called the USB Rubber Ducky. An Expert hacker with a few minutes, photographic memory, and perfect typing accuracy can use a few well-crafted keystrokes to hack virtually anything they have physical access to. However, the proper hardware can do the same thing every time on demand without fail. That’s where the Rubber Ducky and other Human Interface Devices (HID) come into play. They inject keystrokes at superhuman speeds, violating computers’ inherent trust in humans by posing as a keyboard.
In this class, we’ll learn more about what HID attacks are, how they work, the social engineering that can be involved in their deployment, and how to use them in your Pen-testing engagements. Keyboards announce themselves to computers as HID devices and are in turn automatically recognized and accepted. We’ll program a microcontroller in Arduino to take advantage of this by acting as an HID device. We can then create scripts that run when the device is plugged into a target computer. All at only a fraction of the cost of the more well-branded USB Rubber Ducky!
Students will learn to use a low-cost Digispark to program their payloads for use in Ethical Hacking and Penetration testing. We’ll go over creating more advanced loads, including tracking payloads that run in the background, as well as Rickroll payloads that can be used with permission from friends and family to demonstrate how HID attacks work. Additionally, students learn to automate nearly anything on an unattended device which can be extremely useful when you need to run the same commands on a series of computers. That’s how the Original USB Ruber Ducky was invented. Hak5 founder Darren Kitchen, while working as a sysadmin, got tired of typing the same commands to fix printers and network shares, again and again, and the device evolved out of laziness. He programmed a development board to emulate the typing for him – and thus the keystroke injection attack was born.