This project provides a python script capable of converting payloads generated by DuckEncoder_ to an Arduino Sketch source targeting DigiSpark. The script solves two problems:
.. _DuckEncoder: https://github.com/hak5darren/USB-Rubber-Ducky/blob/master/Encoder/encoder.jar
Arduino IDE
_ to compile and upload the generated Sketch to DigiSparkmy python port of DuckEncoder <https://github.com/mame82/duckencoder.py>
.. _Arduino IDE: https://www.arduino.cc/en/main/software .. _guide: https://digistump.com/wiki/digispark/tutorials/connecting .. _DuckEncoder: https://github.com/hak5darren/USB-Rubber-Ducky/blob/master/Encoder/encoder.jar
test.duck
you want to use as output::echo "STRING Hello World" > test.duck
my python port <https://github.com/mame82/duckencoder.py>
_::java -jar encoder.jar -i test.duck -o raw.bin -l de
duck2spark.py -i raw.bin -l 1 -f 2000 -o sketch.ino
sketch.ino
.To get help on duck2spark.py run duck2spark.py -h
Here's an introduction_ to DuckyScript
.. _introduction: http://usbrubberducky.com/?duckyscript#!duckyscript.md
DuckEncoder has an issue encoding "GUI" or "WINDOWS" key without an additional key. The common scenario on Windows is a key combination like "GUI r", but using "GUI" alone would produce the incorrect character e
as output. The issue is adressed here <https://github.com/hak5darren/USB-Rubber-Ducky/issues/51>
. As there hopefully will be a patch duck2spark doesn't handle this issue. In fact it isn't possible to distinguish between "GUI" key and "e" key in an already encoded script. A patched version of Encoder.java could be found here <https://github.com/mame82/USB-Rubber-Ducky/tree/GUI-Key-fix/Encoder/src>
.
Using long delays in a DuckyScript results in big payloads, as delays longer than 250 milliseconds are split up into multiple delays, with a maximum of 250 milliseconds each. Each of these delays consumes 2 bytes in the final payload. As the memory of digispark is far more limited, it is suggested to use duck2spark's
delay options instead. Duck2spark relies on DigiKeyboard.delay() and is more friendly in terms of memory consumption.
Using the "PREPEAT duck2spark's
loop option whenever possible. Printing out a 10 character string 500 times by using "REPEAT 500" results in a payload 10000 bytes in size, which is to large for Digispark. Encoding a DuckyScript with a single 10 character string consumes only 20 bytes and could be combined with duck2spark.py -l 500
to achieve a 500 times repetition without further memory consumption.