Want to own any unlocked computer in just a few seconds?

You can now own a unlocked computer in seconds with a $20 teensy or a couple of doller arduino micro and a bit of time with a badusb type firmware.
What is bad usb?
BadUSB is a dangerous USB security flaw that allows attackers to turn a simple USB device into a keyboard, which can then be used to type malicious commands into the victim's computer at super speeds.

There has been a script written called usb driveby

I often wear a microcontroller around my neck, and have a few for a various fun tasks. One that's more interesting is this, USBdriveby, which emulates a keyboard and mouse when plugged into a machine, exploiting the blind trust machines give USB devices.

Specifically, when you normally plug in a mouse or keyboard into a machine, no authorization is required to begin using them. The devices can simply begin typing and clicking. We exploit this fact by sending arbitrary keystrokes meant to launch specific applications (via Spotlight/Alfred/Quicksilver), permanently evade a local firewall (Little Snitch), install a reverse shell in crontab, and even modify DNS settings without any additional permissions.

While this example is on OS X, it is easily extendable to Windows and *nix.

We even evade OS X's security - while they attempt to prevent network changes being done by just a "keyboard", and even prevent most applications from changing position (special authorized accessibility features must be enabled which we don't have authorization for), we evade both of these with some unprotected applescript and carefully planned mouse movements. While a device like Rubber Ducky is similar, it's unable to mount the same attacks as it lacks HID Mouse emulation.

Sources:
https://github.com/samyk/usbdriveby
Custom spoilers do not work here at totseans. (Well properly):
.
Custom spoiler tags:
[spoiler=name me]
What you want in the spoiler then close with [\spoiler]
OK so it "kinda" works in code tags (cannot see whats inside though)
Also seems it only kind of works in message preview not in actual posted information.
We don't need to but for research sake,
let's try something else .
[pooiler=name me]
What you want in the spoiler then close with [\pooiler]
**should be spoiler not pooiler
And because
Print (" this will show up"); 
<p> So will this. </p>
// This is not meant to show up
  <!-- this shouldn't show either -->
/*Technically this 
shouldn't either*/
Printgln (" but this should ");

"Safely Deposited Box" or "STOP BOX (storage off property)" of successful author:
E5PLXD2TZ4.jpg

A few people have asked so.
The meaning behind the word enso:
ensō, are symbols of teaching, reality, enlightenment, and a myriad of things in between.

Seemingly perfect in their continuity, balance, and sense of completeness, and yet often irregular in execution, ensō are at once the most fundamentally simple and the most complex shape.
They seem to leave little room for variation, and yet in the hands of Zen masters, the varieties of personal expression are endless.
Ensō evoke power, dynamism, charm, humor, drama, and stillness.
Sign In or Register to comment.