Hello guys!
it's been a while since I post blog about anything, hope you guys are good and enjoy reading this blog.
in this blog I want to discuss about what is rubber ducky and how it is used and prevention of that.
USB Rubber Ducky
The USB Rubber Ducky is a keystroke injection tool disguised as a generic flash drive. Computers recognize it as a regular keyboard and automatically accept its pre-programmed keystroke payloads at over 1000 words per minute.
The main important thing about USB Rubber ducky is that it cannot be detected by any Anti-Virus or Firewall as it acts as an HID devices.
Features
USB Rubber ducky is a kind of key injection tool, can be used as malicious or non-malicious keystroke.
It is one of the favorite devices of hackers penetration testers as it is very fast and did not detect by ant PC.
USB Rubber Ducky can also be used for targeting vulnerable systems or programming processes and save times.
Working
With a few well crafted keystrokes anything is possible. If only you had a few minutes, a photographic memory and perfect typing accuracy.
The USB Rubber Ducky injects keystrokes at superhuman speeds, violating the inherent trust computers have in humans by posing as a keyboard.
USB rubber ducky acts as a keyboard and has keystrokes installed in it
When we connect it to PC the keystrokes run automatically.
It has a high speed of approx. 1000 words per minute. So those works which can be done by keyboard can also be done by USB rubber ducky
When ever it is connected to a System it acts as a keyboard and executes the command which is uploaded on it.
The commands used in this are known as payloads and written in Ducky script. One basic script is written below.
Rubber ducky is used in famous web series (Mr. robot)
It can pull all password caches and domain info in
There is a guide to use rubber ducky
Example: Anyone who wants to steal the data from other computers has just to command the keystrokes into the rubber ducky and has to plug-in the device to the victim’s computer, then the device automatically runs a command and steals the data at a very high speed.
The payload used in this device has its payload script known as Ducky Script, And we can write this script in Notepad.
TEST Code:
REM Type Hello World into Windows notepad. Target: Windows 95 and beyond
DELAY 500
GUI r
DELAY 50
STRING c:\windows\notepad.exe
ENTER
DELAY 500
STRING Hello World
You can even make your own rubber ducky if u want to
USB Rubber Ducky Parts
The microSD card: This is a storage device in which all your payloads are saved, so when you attach a device to the victim’s system it will steal data. The keyboard adapter used microSD card to send the payloads.
microSD-to-USB adapter: This is a simple plastic Dongle which is used to mount the SD card to machine.
mini “keyboard” adapter: This is a silicon chip to insert a micro SD card to it. This is the main part and sends the keystrokes to the computer.
USB Rubber Ducky costs around 45$ but you can make it at a cheap rate at home also. You can buy this Device Online.
Prevention:-A USB is a really universal interface. Just think how many devices we connect it to and how many devices it works with! Mouse's, keyboards, printers, scanners, gamepads, modems, access points, web cameras, telephones, etc. Without thinking, we plug the USB into the socket and the OS automatically determines the type of device and loads the required drivers.
I hope you enjoy reading this blog,
share and follow us .
Credits:
Vardan
0 Comments