Over Employed Rubber Ducky
Created on Fri. 25 aug 2022
Consider this post as a big joke I don't condone being lazy at work :). I had a reputation in my old company to have automated a lot of their processes and was able to mess around for most of my days doing pentesting instead of actual SOC work with the use of selenium. One day I will do a blog post about selenium and using it for profit but this one is going to be different.
After receiving a meme from a friend of mine about your boss catching you away on MS teams while working from home and then installing a mouse randomiser on your computer to randomly move your mouse around to "fake" work. I had the brilliant of using the USB rubber ducky to spit out a bunch of Lorem Ipsum so that the computer never turns off.
Planning
When I start working on this kind of project I will always start by google-ing stuff randomly up until I have a point of entry. I do know about the rubber ducky I did actually build a library for arduino uno as a young hacker does when he is broke and cant buy a rubber ducky. I just never worked with an actual rubber ducky before this project. Here is a video of me showcasing my library :) FYI: I did enable privacy enhanced mode so that the only way google is legally allowed to store your information from this page is if you click play
I did decide to buy one for last Christmas but never thought on how to use it other than for a red team engagement.
So after looking through the internet about the rubber ducky most of the information I could find was about the new USB rubber ducky it is a bit of a shame because I have the old model and not the new one. This did make 1 hour of my research useless, but you know you live you learn. After reading through some documentation I learned about ducky script again 2 simple commands that can be used for this to work.
Ducky Script
The main two commands that I found useful for this engagement where the following:
STRING
The string command is used to type a specified string with the ducky:
STRING Lorem ipsum dolor
DELAY
The delay command is used to way a certain amount of time in milliseconds:
DELAY 1000
Programming
Using this knowledge I can write a simple routine that will last 15min to type in some lorem ipsum and basically keep the session on the computer online:
Now because this routine lasts around 58 minutes with all of the delays you would need 7 of them to represent a full day of work. The full script if uploaded to a github gist and can be found below:
| REM Title: no_work.txt - a script to fake work | |
| REM Author: p4p1 | |
| DELAY 1000 | |
| REM The following chuck of code is repeated for around 1hour and then needs to | |
| REM be manually replayed | |
| STRING Lorem ipsum dolor sit amet, consectetur adipiscing elit, | |
| DELAY 100000 | |
| STRING sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. | |
| DELAY 300000 | |
| STRING Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi | |
| DELAY 400000 | |
| STRING ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit | |
| DELAY 500000 | |
| STRING in voluptate velit esse cillum dolore eu fugiat nulla pariatur. | |
| DELAY 600000 | |
| STRING Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia | |
| DELAY 700000 | |
| STRING deserunt mollit anim id est laborum. | |
| DELAY 900000 | |
| SPACE | |
| SPACE | |
| REM --------------------------------------------------------- | |
| REM --------- code repeat to make 4hour long script --------- | |
| REM --------------------------------------------------------- | |
| STRING Lorem ipsum dolor sit amet, consectetur adipiscing elit, | |
| DELAY 100000 | |
| STRING sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. | |
| DELAY 300000 | |
| STRING Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi | |
| DELAY 400000 | |
| STRING ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit | |
| DELAY 500000 | |
| STRING in voluptate velit esse cillum dolore eu fugiat nulla pariatur. | |
| DELAY 600000 | |
| STRING Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia | |
| DELAY 700000 | |
| STRING deserunt mollit anim id est laborum. | |
| DELAY 900000 | |
| SPACE | |
| SPACE | |
| STRING Lorem ipsum dolor sit amet, consectetur adipiscing elit, | |
| DELAY 100000 | |
| STRING sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. | |
| DELAY 300000 | |
| STRING Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi | |
| DELAY 400000 | |
| STRING ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit | |
| DELAY 500000 | |
| STRING in voluptate velit esse cillum dolore eu fugiat nulla pariatur. | |
| DELAY 600000 | |
| STRING Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia | |
| DELAY 700000 | |
| STRING deserunt mollit anim id est laborum. | |
| DELAY 900000 | |
| SPACE | |
| SPACE | |
| STRING Lorem ipsum dolor sit amet, consectetur adipiscing elit, | |
| DELAY 100000 | |
| STRING sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. | |
| DELAY 300000 | |
| STRING Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi | |
| DELAY 400000 | |
| STRING ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit | |
| DELAY 500000 | |
| STRING in voluptate velit esse cillum dolore eu fugiat nulla pariatur. | |
| DELAY 600000 | |
| STRING Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia | |
| DELAY 700000 | |
| STRING deserunt mollit anim id est laborum. | |
| DELAY 900000 | |
| SPACE | |
| SPACE | |
| STRING Lorem ipsum dolor sit amet, consectetur adipiscing elit, | |
| DELAY 100000 | |
| STRING sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. | |
| DELAY 300000 | |
| STRING Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi | |
| DELAY 400000 | |
| STRING ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit | |
| DELAY 500000 | |
| STRING in voluptate velit esse cillum dolore eu fugiat nulla pariatur. | |
| DELAY 600000 | |
| STRING Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia | |
| DELAY 700000 | |
| STRING deserunt mollit anim id est laborum. | |
| DELAY 900000 | |
| SPACE | |
| SPACE |
Compiling
To save this script to the rubber ducky I then needed to compile it using the duckencoder java program because the new web portal does not function properly with my old rubber ducky.
Here is the command I used so that it can be copy pasted:
$ java -jar duckencoder.jar -i ./payload.txt -o inject.bin
Using that bin file you can now transfer it to the USB rubber ducky sd-card and have fun :)
I hope you enjoyed this little post it is currently 2 am and I am exhausted even though I'll mess around making "fake" work programs I do have a job that just nuked my brain today :). This entire project did remind me of this website I found a while ago called overemployed.com I found the concept hilarious of using tricks like that to work 2 full time jobs at the same time I probably could have with my last job seeing I managed to automate everything :).
Categories
Questions / Feedback
Donate
If you like the content of my website you can help me out by donating through my github sponsors page.