Yes

😂😂😂😂😂😂😂😂

Me too it was awesome :)

+Joost Blok can't wait for next week

I'm thinking of getting one now. I dislike how TV makes me want to buy things.

Yeay I want to buy one too now haha

Lord Sacha how?

Chase Haddleton are you an IT now?

:O

Well now u probably 22 and in it field I am 15 now and I am really interested in this stuff do you have any advice

@@alimerchant7947 you could find hm on other social media if he doesn't answer 😂

@@gwebo4645 good question. Wonder where he's at now...

Well... I thought this wasn't possible / practical. It's okay though, because apparently Microsoft "fixed" users inability to bypass UAC and gain root access when they aren't authorised for it in Windows 10. www.bleepingcomputer.com/news/security/windows-10-uac-bypass-uses-backup-and-restore-utility/ Thanks Microsoft! :(

Your Scenario is oddly specific and weird! lol

watercoconut13 Take the sd card out and plug it into your pc not the usb itself

Clorox Bleach oh i see thank u

+Bryant G It should be back in stock in the next week or so. We're waiting on the shipment. - Shannon

+Hak5 Yay. Thanks!

There is no Windows 9. Technically you are operating Windows 9, but it has been renamed to Windows 10 because some "old" programs for Windows XP would query the Operating System's Name and compare it against "Windows 9" to block being installed on Windows 95 and Windows 98. Microsoft got aware of that, and renamed Windows 9 to Windows 10 before they released it. But, to answer your question, it only *might* work on Windows 10, though it is "only" a simulated Human Interface Device, i.e. keyboard. (Microsoft seem to have added a "malicious devices" filter to their Windows 10 hardware recognition, so it *might* block the Rubber Ducky out of the system) Just a lay's opinion, no guarantee. and, for the iOS part of your question, i own an Android device and have no experience with the tree-growing fruit stuff ;)

whenever I try to flash my usb, it says windows cannot find the driver software for the device...

You can download Windows 9 on Microsofts website, you need some weird dev thing.

this still work in 2020 ??

This was supposed to be substitute for field hacking, he explains it in the video when the victim leaves plug it in them get away, from there on you can either take the laptop and leave without having to worry about the pass or follow the victim home and break into their house etc etc. You can't hack a device from nothing. You either need remote access or physical access. Not useless at all, just have to play your cards right. This was made in 2013 so ofc it is not as good but you can modify it I am sure and as well as there are still people who do have a laptop/PC like this

or is there something better besides those two ?

Tesla reference?!?!

Well there always has to be a port for the keyboard so you could probably just plug it into that one

No. It cannot unless it can get to the run prompts

no

If you want to be a hacker get off windows now

+Cain Pusa I'm assuming for remote login in the future. And there are some people who use the same passwords in different places. So having passwords is nice.

yepp

I mean the guy in the video mentioned spoofing the device as they all have the same ID; Windows has most probably copped onto this and blocked the device as a whole. Use Twin Duckie to turn it into a mass storage device also.

Have the ducky turn off antivirus/malware with cmd commands

Can't it acts and is detected as a keyboard

It doesn't work on windows 10

Does it consume system resources??

What if we stop auto play?? Can it protect us from rubber ducky

It doesn't matter if you have anti-virus because the script would've already ran. Just don't plug in random USB drives you find into your PC.

***** guess it could work in an automation usb like the usb rubber duck

George Dietrich II i just copied the code he had on his laptop and posted it here so i could find it easy

+Will A yes. For more reasons than I would care to go into here. The obvious one is, in order to use these tools you need to BE an ADMIN, and if you are an ADMIN then it's trivial to reenable cmd.exe. It's more important that you not run as an administrator. All the tools in this video are considered post-exploitation. You must run them as a privileged user. On a personal note, I found that quite annoying about this video. For example, "oh beep bop boop beep disable UAC auto-magically and no big deal nothing to see here". You cannot just "disable" UAC magically. You must have privileges! The only time you would actually use mimikatz in a real-world pentest (or "hack", and believe me some malware is using mimikatz otherwise Benjamin would not have written Yara rules for it) is when you have managed to escalate to a local administrator (via other more complex methods/exploits), but you want to nab a domain account (or better, a domain admin). This video fails entirely at educating people about how windows credentials are handled, why there is a plain-text version stored in LSASS (or any hash for that matter), and what SPs (security providers) are guilty of doing so (wdigest primarily, which is used to pass your account credentials in plain text to browsers for "single sign on" functionality), but also CredSSP which does the same for RDP/powershell. There are ways (in business networks) to prevent SPs from storing data insecurely in LSA (stopping any plain text from being stored), enforcing NTMLv2 (harder to crack if you use long enough passwords), or anything in LSA for privileged accounts (making them unattainable using these methods even if you already have local admin). I hope this helps to actually educate someone who might have come here thinking they were learning some dark magic.... :D

kuyaya nope. It hasn’t even been ok for a long time.

kuyaya before they did hack. Darren actually showed cool stuff and how to bypass controls, besides going into the needy greedy details of protocols and stuff. Now, it is basically Shannon Morse reading a teleprompter.

@@adrianopinaffo lol, too true

+O.T. Powell Twin duck wouldn't work with a bootable iso like kon boot, you would need a secondary flash drive. Also you would need bios access to boot from a kon boot drive

I like the fact it all seems to all work off the Duck.

yes

Psst. Here's a hint. Temporarily disable your AV.

Those are false positives, because of what wce can be use for.

Don't download it... Antivirus programs recognize it as a potentially harmful tool that can be used to extract passwords in clear text...*cough* well unless thats what are trying to do, then it should be okay.

It is because "Dev" is a custom folder he created on his PC meaning you will not have it.

script kiddy

+DEADD TEEDD No it will not. What you probably want to do is run ophcrack livecd and crack the hashes for the users, that way you could get an admin account. The rubber ducky simply acts like a keyboard, so what you can do on a keyboard the rubberducky can do.

How do I dlthis thung you are talking about

Google opchrack livecd. There are videos explaining what it does

+DEADD TEEDD What i did at my school was bypass local account authentication which allowed me to install steam ect. This does not generate a network token, buy allows you to have administrator access to the local machine with no network access (you still have internet). From there you can run ducky scripts if you wanted. I did this by booting from a disk with Kon Boot iso (Bios disabled booting from usb but not disk for some reason, also you could use any password changing iso) and clearing the password for the account "Administrator". (This is the local account every windows has by defualt, there is also "guest"). You dont get network access but you have c drive access so you can edit files for any users that log in to that computer (Desktop and downloads folder mainly). If you wanted you could add shortcuts to steam ect in your user's desktop. Thats why we can play tf2 and rocket league in study hall :D

Yes because it acts as an keyboard you use your keyboard to type the password so YES

But it won’t be able to access cmd when locked

i know how to unblock it you open a notepade type cmd.exe and save the file as a bat your welcome :)

Or download portable cmd and put it onto usb

buzzsaw161 No.