You can get a 'USB rubber ducky' [1] which emulates both a USB memory stick and ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

michaelt on Aug 6, 2020 | parent | context | favorite | on: Usbkill – anti-forensic tool to halt computer when...

You can get a 'USB rubber ducky' [1] which emulates both a USB memory stick and a USB keyboard, allowing you to script keystrokes for the keyboard [2]

So it can do anything a newly plugged in keyboard can do. Which, if the user is already logged in, makes grabbing the user's files easy.

[1] https://shop.hak5.org/collections/usb-rubber-ducky/products/... [2] https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Payloads

daffy on Aug 6, 2020 [–]

This will only work, I suppose, if the attacker knows beforehand a keychord that will focus a terminal.

DarkWiiPlayer on Aug 6, 2020 | [–]

on most desktop linux distros: <windows>terminal<enter> is enough

jonathanstrange on Aug 6, 2020 | | [–]

Hehehe...on my machine that selects "Emacs (Terminal)". Good luck with those key combos...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact