Android_Hid: Android for Rubber Ducky attacks!

That particular already exists in Kali Nethunter and what it actually does is through one Android device, to access another device.

We are given the opportunity to do so much the lock screen, as well as taking full control of a device and for future use.

How to avoid such an attack

  1. We always charge it us with our own charger
  2. We always use a complex screen lock code or a complex pattern
  3. We use protection on our device and more specifically programs that detect and prevent exploits.

PoC

What we need

  • A rooted Android device with support for HID attacks in Kernel settings (eg NetHunter ROM)
  • OTG cable

The script may not work every time. Therefore, we have to play with the keys we send to our target and change it if it doesn't work the first time. A list of all possible keys can be found at the link below.

 

HID support in custom ROM

https://github.com/pelya/android-keyboard-gadget

Brute-force attack using our Android

https://github.com/urbanadventurer/Android-PIN-Bruteforce

List of all available keys

https://github.com/anbud/DroidDucky/blob/master/droidducky.sh

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.087 registrants.

androiddroidgithubrubber ducky

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).