Skip to content
This repository has been archived by the owner on Oct 28, 2023. It is now read-only.
/ EthicalHacker-EDC Public archive

a collection of payloads and scripts from my "Building an Ethical Hacker EDC" YouTube Series

License

View license
20 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

PrettyBoyCosmo/EthicalHacker-EDC

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

bashbunny

bashbunny

 
 

rubberducky/wifi-exfiltrate

rubberducky/wifi-exfiltrate

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

Building an Ethical Hacker Every Day Carry [EDC]

Created by : Chris Taylor [Blue Cosmo]

Resources:

Part 1 | Overview

in this part, we discussed what tools we will [probably] use for this project.

Here is the list:

  • USB RubberDucky
  • Shark Jack
  • Bash Bunny
  • USB A - Micro USB adapter
  • USB A - USB C adapter
  • USB C - USB A adapter
  • Custom Malware Drive
  • Parrot Security OS bootable drive
  • TP Link - Wireless Network Adapter
  • Micro SD Card adapter
  • 64GB USB Drive
  • 2200mAh Portable Charger
  • USB C - USB A cord
  • USB Ethernet Adapter Stickers
  • Hak5 Information Cards
  • KNIFE PEN!!!
  • Screw Driver
    • SIM Bit
    • 0.8 Bit [I-PHONE]
    • 1.2 Bit [MACBOOK]
    • PZ0 Bit [WINDOWS]

Part 2 | USB RubberDucky Wifi Exfiltration

in this part, we built a payload for exfiltrating wifi passwords from Windows 10 coputers
all code for this project is in the 'usbrd-wifi' directory
  • we took 'inspiration' from a script developed by 'brain eater'
  • in our modifications we:
    • allowed twinduck functionality
    • allowed for different file names for each computer we interact with
      • this lets us 'backup' multiple wifi passwords from multiple computers without overwriting the file
  • we then flashed the 'twinduck' firmware on to our USB RubberDucky

Links:

Part 3 | BashBunny Web Credential Stealer

in this part, we built a payload for exfiltrating saved 
wifi passwords from the users computer
  • we used a web browser password "recovery tool" in order to grab passwords saved by the browser
  • we then built a 'payload.txt' to run our duckyscript file [ducky-script.txt]
  • this duckyscript file will run our P.exe file, steal the creds, and save them to our loot directory
  • BY DEFAULT, THE SCRIPT WILL ONLY WORK IN SWITCH ONE
    • view "ducky-script.txt" on how to change this

About

a collection of payloads and scripts from my "Building an Ethical Hacker EDC" YouTube Series

Topics

hak5 ethical-hacking edc

Resources

Readme

License

View license
Activity

Stars

20 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published