DROP-ZIP-EXCECUTE

DROP-ZIP-EXCECUTE
Download Copy
Title: DROP-ZIP-EXCECUTE
Author: Lumen

Downloads program in a zip file, then unzips and executes it.

🏆   Recognized with a Payload Award in September 2023

 

Reconnaissance, or recon, is all about gathering information on a target — be it an individual computer or the network at large. Individual computers may be scanned using a hotplug tool like the Bash Bunny or USB Rubber Ducky coupled with keystroke injection techniques to obtain valuable information without the need to elevate privileges.

Network reconnaissance techniques involve active scans, which may be observed by intrusion detection systems, or passive scans, which may go quietly undetected. The information obtained in a recon operation may assist in the red team's audit plan for future missions such as phishing campaigns or exfiltration. On the network enumeration side, many techniques exist for scanning the network from the outside. The same techniques may be applied to scanning inside the network, which is where hotplug Ethernet attack tools like the Shark Jack excel. See all recon payloads.

This payload is for the USB Rubber Ducky — a "flash drive" that types keystroke injection payloads into unsuspecting computers at incredible speeds. It's no wonder this little quacker has made appearances on Mr. Robot, FBI, Blacklist, National Geography and more!

Submit your own payload, or browse more featured USB Rubber Ducky Payloads.

 

 

Related Payloads

DNS Sinkhole
DNS Sinkhole
Demonstrate sinkholing a DNS domain
Read More
Proxquirrel
Proxquirrel
Proxquirrel is a payload designed for the Packet Squirrel MK II in combination with a HTTP proxy, like BurpSuite. This p
Read More
Blind OS Command Injection using Serial Number
Blind OS Command Injection using Serial Number
This payload allows a remote attacker to execute commands on a Linux system using the serial number as a vector to pass
Read More