(idea) Badusb/fake keyboard integration

[Rubenoo]

It would be great to have this feature. Basicly you connect your phone to a laptop and the phone pretents to be a keyboard and you can open cmd and like open exploits and disconnect your phone and then pwn the machine with csploit

[ghost]

Holy crap this would be so cool. This is a really good idea

[maddog9696]

Theres the USB rubber ducky and bad USB drive etc. However, most of those drives are comparable with USB rubber ducky payloads. You can even make your own with an old flash drive and use ducky payloads. If this is the case and this feature was implemented I hope it would be able to use ducky payloads as it is very easy to craft them and there are ample amount of scripts already floating around! This would be an AMAZING feature!

[fat-tire]

As far as I remember, using the phone as a HID was one of those things that required kernel modifications. That said, this is currently something that Nethunter ie, kali for Android, does, and there is a UI for running Rubberducky attacks in Nethunter (called Duckhunter).

This tool converts USB Rubber Ducky scripts for use w/nethunter. (initial code/concept by @binkybear). Incidentally Nethunter's app beta, which I've been contributing to-- is here.

I'll direct @binkybear to this issue, maybe he can chime in.

[binkybear]

Just chiming in but all the features mentioned above are including in Nethunter. You need a custom kernel with hid patches. The Nethunter app has an option called "Duckhunter" which allows you to use duckyscript along with your HID attacks. It's possible, but I haven't tested, to maybe combine that with drivedroid to also emulate a usb drive.

If anyone would like more details I can go a bit more into it, but I would hate to see everyone reinvent the wheel.

[ghost]

I absolutely love this idea. Sadly nethunter is only for Nexus so I cannot use it, so it would be great if this was in csploit.

[fat-tire]

It's not only for Nexus. Nethunter is moving from being a full ROM to being an .apk+kernel (installed via an update.zip) See this thread.

[ghost]

@fat-tire wow I had no idea, thanks for the info, I'll check that out.