I have tried multiple scrips but for some reason they all dont work, i dont know if im picking the wrong IP, the wrong networking for my virtual machine or what. But can someone please give me a script that might work, I have tried scripts from hak5 but they dont seem to work.

Scripts I’ve used: https://github.com/hak5/usbrubberducky-payloads/tree/master/payloads/library/remote_access/Netcat-Reverseshell-On-Log-In

https://github.com/FreeLesio/Rubber-Ducky-Reverse-Shell

I seem to get this error when using these:

ConPtyShellException: [-] ConPtyShellException: WSAConnect failed with error code: 10061

at ConPtyShell.connectRemote(String remoteIp, Int32 remotePort)

at ConPtyShell.SpawnConPtyShell(String remoteIp, Int32 remotePort, UInt32 rows, UInt32 cols, String commandLine, Boolean upgradeShell)

at ConPtyShellMainClass.ConPtyShellMain(String[] args)

With this script https://github.com/OwNuT/Rubber-Ducky-Scripts/blob/main/ReverseShell/payload everything seems to work fine on the victim machine but it says its connected to local host and when I go on attacker machine (kali linux VM) nothing seems to be connected.

(SORRY FOR SO MUCH I JUST REALLY WANT THIS TO WORK OUT)

Hey there I’m trying to figure out the contents of a file in .vdb (it should be a database file) however whenever I try to open the contents I amgreeted with garbled text and no clear formation

Has anyone had experience with vdb files?

Say someone is using Linux Mint but with a VPN and kill-switch on. Say an adversary is targeting this person for persistent malware and exfiltration of data. Say the adversary has at least one kernel exploit or OS exploit to use on the target but doesn’t have access to the end server or web browsing activity of the target; the attacker only has access to the Wifi network or MITM position. Does their kernel/OS exploit work against the target if the target’s traffic is encrypted with a VPN? Same question for just basic TLS/SSL when browsing the web.

I can’t make the connection. If I make a new file only with weevely backdoor it works fine but if I try to copy and paste the code inside of a existing .php file it doesn’t work although the original part of the .php file stills works.
For example if I put the backdoor inside index.php I cannot get the connection through weevely but on the website the index.php its working fine.

anyone ever managed to do it?

Similar to an earlier post, what would someone need to convert a regular USB or SD/MicroSD card to a USB Rubber Ducky.

I’ve seen several videos and instructions but wanted more first-hand experiences or recommendations on github or other resources to use.

Alternatively, has anyone made their own “OMG cable”? How did it go? And what did you need to do it?

Lastly, cost wise, what’s more effective. Purchasing the pre-made devices, or building your own? Taking into account all of the aspects (security, lack or excess of potentially tracing purchases, knowledge gained and used, time, actual cost, etc.) as “cost”.

I was wondering if there’s a way to monitor the traffic going from/to an app to see if it’s malicious or any good info about that topic?