USB “Rubber Ducky” Attack Tool

KEEPNET LABS > Blog > USB “Rubber Ducky” Attack Tool

USB “Rubber Ducky” Attack Tool

Rubber Ducky can inject commands that a USB device will inject into the target machine. DuckyScript 3.0 is a feature-rich language that allows users to write functions and store variables. It can perform a test to check whether a device is connected to a Windows or Mac computer.

Aug 21, 2022 12:07 pm

The USB rubber duckling is getting better and better. Previous versions of Rubber Ducky may have carried out attacks such as creating a fake Windows pop-up window to collect the user’s credentials or forcing Chrome to send all saved passwords to the attacker’s web server. But these attacks had to be carefully designed for specific operating systems and software versions, and they lacked the flexibility to work across platforms. Dec. The newest rubber ducklings are designed to overcome these limitations.

It comes with a serious update to the DuckyScript programming language, which is used to create commands that a Rubber duck will inject into the target machine. Although previous versions were mostly limited to writing sequences of keystrokes, DuckyScript 3.0 is a feature-rich language that allows users to write functions, store variables, and use logical flow controls (for example, like this one)… then like this). This means that, for example, the new Ducky can perform a test to check whether it is connected to a Windows or Mac computer and run the appropriate conditional code for any device or disconnect if it is connected to the wrong destination.

Cyber attack

Keepnet Labs’ Threat Sharing Module: How to identify attackers in reconnaissance stage

Fewer and fewer businesses can protect themselves and the sensitive data under their control as a result of the rapid pace of digitalization, increased attack surfaces, and variety of vulnerabilities and attack methodologies. To stop the attacks, several successful and effective recent cyberattacks brought up the question of sharing threat intelligence once more. The government […]

Cyber attack

The last hunt of social engineering: Uber

“Hi @here I announce I am a hacker and Uber has suffered a data breach” was the message that appeared in a channel on Uber’s Slack. After the message, the ride-share giant confirmed that it was responding to “a cybersecurity incident” in cooperation with law enforcement. An 18-year-old hacker reportedly took responsibility for the attack […]

Cyber attack

Black Hat Fireside Chat: Deploying ‘AI’ as a weapon to win the ‘attack surface management’ war

An advanced weapon is emerging that uses data analysis to hone systems and suppress attacks. Darktrace's artificial intelligence solutions can help companies restrict access to APIs, neutralize shady IT, protect supply chains and even improve the efficiency of DEVSECOPYRIGHTs.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.