• Stars
    star
    218
  • Rank 181,805 (Top 4 %)
  • Language
    C++
  • License
    MIT License
  • Created over 7 years ago
  • Updated 10 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

USB keystroke injector controlled by smartphone.

title-image

What is it?

It's a device that can be connected to a PC and pretend to be keyboard and mouse, allowing the user to trigger specific actions using smartphone through wifi or bluetooth.

What can you do with it?

Plug it in to your friend's PC and by pressing a button on your smartphone:

  • πŸ“‘ access a website
  • πŸ“Ί play a youtube video
  • πŸ”  type pre-defined text of your choice
  • πŸ“‚ download and execute file
  • :squirrel: exfiltrate files to Dropbox and Gmail
  • πŸ’  move mouse cursor
  • πŸ¦† run ducky script
  • and much more

Notable features

  • Automatic OS detection, allowing it to work on Windows, Linux, and macOS.
    os logos image
  • Built-in presets with funny/weird videos and images.
  • Preview feature, it allows to see what youtube video, wallpaper or website will be launched on the target PC.
    Preview-feature-gif
  • Option to use alt+numpad combinations on Windows (to type correct characters regardless of system language)
  • Language switching to match the language setting on target machine without the need to reprogram the device. Supported settings are:
Belgian Brazilian Canadian Switzerland Czech German
Danish Spanish Finnish French UK Croatian
Italian Norwegian Portuguese Slovenian El Salvador US

You can see how reliable are some of these settings here

  • "Live text execution" checkbox

Video

Review and presentation video thanks to:
image

Edit: Unfortunately Jacks youtube channel got closed (because it had educational hacking videos).

Is it going to work on any PC and work instantly?

It was tested and working well with Windows 10 βœ”οΈ, Windows 8 βœ”οΈ, Lubuntu 18.10 βœ”οΈ, Ubuntu 18.04 βœ”οΈ, straight after pluggin-in. On macOS 10.12⚑ it prompted the user to setup the keyboard, after that it worked well, see macOS setup for details. It is problematic on Windows 7⚑ (driver installation popup takes long time and sometimes requires replugging device, after that it usually works).

Implementation details

The smartphone application was made using "MIT App Inventor 2" and is open source. Initially it was made with Arduino Pro Micro and HC-06 bluetooth module. Currently it can also be made and used with Esp8266 wi-fi module instead of HC-06 using the same hardware setup spacehuhn used in wifi_ducky, see the guide for more details. It can be also made with JDY-10 and JDY-08 (BLE) modules (more details below).

Resources

Future

According to MIT App Inventor Team it will be possible to run application made using App Inventor on iOS soon which means that the supremeDuck application will not be limited to Android only.

As of March 2021, it seems that MIT App Inventor application is available for iOS (as mentioned in this article), however there is no way to compile apps for iOS yet. As mentioned in this post, it will be possible when MIT finishes testng the iOS compiler.

Credits / thanks to / kudos

⭐ HAK5 and ⭐ mame82 - encoding for different languages used in this project is in 99% based on their work. This project was created thanks to the long chain of people building on top of other people's ideas. If HAK5 did not popularize HID attacks with Rubber Ducky then most of projects like this would not exist. Thanks to ⭐ authors of ducky scripts posted on HAK5Darren's page with payloads this project is richer in features. Thanks to ⭐ Darren Kitchen for Dropbox Exfiltration and similar videos that all contributed in one way or another to this project.
⭐ Seytonic - in a series of youtube tutorials presented how to use cheap Arduino Pro Micro as "Rubber ducky". It's worth to mention that ⭐ Samy Kamkar also presented this kind of functionality with Teensy in 2014.
⭐ Dejan from howtomechatronics.com - thanks for the tutorials about using Arduino with bluetooth module and App inventor.
⭐ Mr Jesse Vincent who created FingerprintUSBHost which allows to recognize operating system of the target machine. Noteworthy is that ⭐ gloglas used it in WifiDuckV2 (giving me idea to use it too) which is rewrite of ⭐ spacehuhns's wifi_ducky.
⭐ JackkTutorials - thanks for presenting this project in a video.
⭐ Taifun - thanks for great App Inventor resources and extensions, this project is using few of them.
⭐ Mr Martyn Currey for excellent BLE tutorial and resources.

Similar projects

Offensive MG Cables (O.MG) - the smallest of all publicly available wireless HID devices (based on espusb), resembles NSA tools with its' compactness.
wifi_ducky - very similar project to this but using browser instead of application.
WiFiDuck - the improved successor of wifi_ducky
Modified wifi_ducky versions - 4 different implementations.
ESPloitV2 - similar to wifi_ducky but has built-in exfiltration/phishing methods (browser based).
WiDucky - similar to wifi_ducky but has various ways of controlling it (Python, Windows program, Android app).
WHID - cheap board that can be used with various projects (e.g. wifi_ducky, ESPloitV2, supremeDuck).
WHID_elite - SMS based HID with neat exfiltration method, mousejacking and other features.
Bluetooth Rubber Duck - Digispark + HC-06 + application wireless HID.
The Darkwing Duck - Pro Micro + HC-06 + App inventor application wireless HID.
badusb.pw - I can't understand much but there are some relevant designs (of a board like WHID).

More Repositories

1

RFID-cloner

Handy device for cloning RFID chips/cards.
C++
73
star
2

CSV-Parser-for-Arduino

It turns CSV string into an associative array (like dict in python)
C++
57
star
3

fast_map

Python library combining multiprocessing and multithreading for fast computation.
Python
24
star
4

Hardware-keyloggers

Different implementations of existing projects.
C++
24
star
5

keyLogger

Keylogger using FTP server as an intermediate with some cool additional functions
Python
20
star
6

WiFi-Locator

Locating WiFi Access Points with RSSI using Esp8266 and NEO-M8N modules.
C++
4
star
7

smart_home_simulator

Qt based graphical editor/simulator (created for "CE292 Team Project" module)
C++
4
star
8

Program-Behaviour-Anomaly-Detection-Benchmark

Jupyter Notebook
3
star
9

decryptCleo

Personal and untidy set of functions used to decrypt Cleo mods.
Python
3
star
10

CheriBSD-on-minimal-hardware

Files and instructions for running CheriBSD using Flute processor implemented on ZC706 board.
Verilog
2
star
11

xohw23-121

PYNQ wrapper for Flute RISC-V: Anomaly detection oriented runtime monitoring system
Verilog
2
star
12

samp_commands

Register GTA_SA-MP commands to labels in Cleo library mods
C++
1
star
13

discordBot_NicolasCage

User based discord bot and a good web scrapping/automation learning resource.
Python
1
star
14

RGB_rainbowLoop

Looping through RGB to make rainbow-like effect
Python
1
star
15

betting_system

Semi-automatic football betting system.
Python
1
star
16

remoteSwitch

Bluetooth controlled AC 230V switch.
C++
1
star
17

continuous_monitoring_system

SystemVerilog
1
star
18

sim_racing_arduino_controller

Arduino adapter for multiple input devices (pedals, shifter, handbrake, possibly more).
C++
1
star