ET Phone Home

Title: ET Phone Home

Author: I am Jakoby

This program is meant to locate your devices. When someone plugs it into their computer a one liner in the run box a script will be downloaded and executed that grabs the Name and email of the associated microsoft account and the latitude and longitude of where the device was activated. This information is stored in a text document that is then uploaded to your dropbox. Finally the end of the script will delete the runbox and powershell history and delete the files in the TMP Folder and Recycle Bin.

Incident Response, or simply IR, is all about managing the aftermath of a security breach. It's all about identifying, minimizing and containing damage as quickly as possible, as well as remediation such that the risk of additional incidents are minimized. A good incident response plan outlines the responsibilities of all parties, in addition to the procedures the organization takes to manage the incident. Having containment payloads developed, tested and at the ready before an incident will save valuable time when needed. See all incident response payloads.

This payload is for the USB Rubber Ducky — a "flash drive" that types keystroke injection payloads into unsuspecting computers at incredible speeds. It's no wonder this little quacker has made appearances on Mr. Robot, FBI, Blacklist, National Geography and more!

Submit your own payload, or browse more featured USB Rubber Ducky Payloads.