Reverse Shell - $3 Arduino BadUSB

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hi guys so by popular demand here is the video on the reverse shell USB reri scripts that I demonstrated in my first video I'm going to be using an aduino Pro micro though you can follow along with an actual robed ducky or a Digis spark I just wanted to take a second to say thanks for the 1K Subs in 2 weeks that's pretty cool I've got loads of new stuff coming up soon I'm going to be doing a video on poison tap I'm actually going to be getting a hack five field kit courtesy of Daren overa heck 5 so I'm really looking forward to that also that self-destructing SSD project will be reaching it denar very soon so there's a lot to look forward to follow me on Twitter I am@ satanic so you don't miss a second of it anyhow back to the reverse shell so for a demonstration as you can see the command prompt pops up though only momentarily before it then closes and then I have the reverse shell all in a couple of seconds right so let's have a look at the scripts we're going to be using so this link is going to be in the description so you can just go to this link and copy and paste the uh ducky script if you want to so let's have a look at it so firstly there's going to be a 400 millisecond Delay from when you plug the rubber ducky into your computer and then it's going to hold down Windows key and R though here it's called gy so that's going to open run it's going to wait a little bit and then it's going to type CMD and then enter so this is obviously going to open up a command prompt then it's going to wait another little while and then it's going to type all of this and press enter so what I've done here is instead of typing commands by commands by commands and then having delays in between them that could take up a little extra time so here I've shaved off 100 a few 100 milliseconds by putting everything on line so I'll open this up so it's just easier to explain so essentially what we're doing in this bit here is we're going to the root directory and then we're creating a folder called win and then we're going into that folder and then we're creating a Powershell file called b. PS1 so essentially what this Powershell file is going to do it's going to get uh netcat which is the uh program we're going to be using to establish the reverse shell so I obviously haven't put a link in here but you can just put one in yourself W get netcat and then it's going to save it to a.exe so this is just making the file this isn't actually downloading it until it gets the next line which will actually run that Powershell file which will download the exe so then after that enter delay 50 so this is on the separate line because if you put it in here because obviously downloading a file can take a couple of seconds maybe so this will run uh a little bit later so this is going to start a.exe and then you can put in your Port your IP rather and your Port so essentially that's it you have to have your netcat listener on another computer and just enter the IPM Port you're connecting to so hyphen e because of course we want to run the executable cmd.exe and hyphen D because we're going to be run running it in Demon mode which means that it's not going to actually open up on the screen it's going to run minimized and kind of in the background and then once that is done we're going to exit so next in order to set this up you're going to want to download netcat I'll put this link in the description you can download it from here so you're going to want to go into it and find constructing the ducky script so you can go ahead and just copy all this from my website and paste it in notepad so you're going to want to get your direct download link for netcat and paste it where it says netcat DL link and then where it says IP and Port you're going to want to go ahead and put the IP that you're going to want to use in so I'm going to put 192.168.1 181 yeah I think that's right and Port is arbitrary really so I'm just going to put um actually let's go full m mcraft on this 25565 okay so let's just check that's right yep and if you're using real roboduck you can go ahead and just paste this into whatever the real Robuck uses but since I'm using this on on an uino Pro micro I'm going to use the ducky scripts converter that's hosted on my website so I want to paste this in here compile okay so I've got all this code I'm going to copy that and I'm going to paste it into to an Arduino sketch here you'll probably notice that the Arduino sketch will or rather the compiler will automatically add in a 500 millisecond delay so I'm going to get rid of that okay so now I'm ready to upload it to my promicro I'll just make sure that the settings are correct do leado good so upload and I'll pull it out as soon as it's done compiling so it doesn't run on this system okay there we go it's done so the last step you're going to need to do is is set up your netcat listener I'm doing this on Carly just because it's easier so you're going to want to open up a terminal window type NC and then hyphen listen port and then the port you're going to be listening on for me it's 2565 and then press enter and now you're listenting on the port and you can plug your USB Rober ducky into a Windows computer and you should get a reverse shell on it so that's that for this video guys I hope you found it useful if you have any questions whatsoever just leave them in the comment section down below remember to like And subscribe and as always thanks for watching

Info

Channel: Seytonic

Views: 97,729

Rating: undefined out of 5

Keywords: hacking, hack, hacker, pentester, hak5, rubber ducky, programming, c++, howto, tutorial, diy, make, kali, usb, reverse shell, arduino pro micro, pro micro, duckuino, bad, badusb

Id: 1ZyNU-RmBIs

Channel Id: undefined

Length: 5min 33sec (333 seconds)

Published: Sun Nov 20 2016