Download
Upload, save and run keystroke injections remotely with an ESP8266 + ATmega32u4. Using a USB device that act as a keyboard to inject keystrokes is well known these days. The USB Rubber Ducky by Hak5 is THE hacker gadget for this kind of attack. It introduced a simple script language called Ducky Script, which this project uses too. The ESP8266 is a popular Wi-Fi chip used in a lot of projects. Because it's cheap, small, and has its own file system (SPIFFS), it's perfect for enabling an easy remote connection and holding Ducky Script payloads. Although the ESP8266 is awesome, it doesn't have a native USB, which means it can't act as a keyboard. The ESP will open up a Wi-Fi access point and host a web interface from which you can upload and manage your scripts. When you hit run, it will send the script to the ATmega, which then will execute it on the target machine.
Features
- With Wi-Fi you can upload and run your Ducky Script payloads remotely
- You just need to plug the device in, connect to its Wi-Fi network and you have full control over the target machine
- You can test your scripts live
- You don't need to copy them onto a micro-sd card or compile them
- You could make the target download executables from the Wi-Fi chip
- Open up a reverse shell on the ESP8266s Wi-Fi
Project Samples
