SECRET OF CSS

WiFiDuck BadUSB Tester – Latest Hacking News


I found this one while doings some research on BadUSBs and thought it would be nice to share. WifiDuck is a device used to test keystroke injections. In a BadUSB the board takes advantage of USB vulnerabilities by reprogramming its self once it gets plugged in. However with the WifiDuck, you have 2 boards in one, the first acts like a keyboard and the other hosts a web interface where you can keep all of your scripts.

I know, I know, your thinking what kind of malicious things are we capable of with this kind of technology. There is a massive amount of functions this can be used for, not just in hacking either. A few good scripts and you can turn this baby into a home automation tool.

WiFiDuck Web Interface

Configuring WiFiDuck

So this device goes for about ₤45 on the Maltronics website or alternatively you can build your own with these components. You can find the instructions for flashing here. Once you have everything setup its time to load software. Install the Arduino IDE and add this URL to the Board Managers. Now navigate to Tools > Board > Board Manager and search for wifiduck. Install the packages then download and unzip the wifiduck repo. Flashing instructions can be found here for the Atmega and here for the ESP8266.

Malduino W from Maltronics

Conclusion

Considering the cost of making one to the sheer ease of use of the one you can buy online I would recommend buying the malduino from the maltronics website. However worth it, the wireless scripts are what get me. 3/5 bunnies on this one. Good work.

bunnybunnybunny

Want to learn more about ethical hacking?

We have a  networking hacking course that is of a similar level to OSCP, get an exclusive discount here

Help support LHN by buying a T-shirt or a mug?

Check out our selection here

Do you know of another GitHub related hacking tool?

Get in touch with us via the contact form if you would like us to look at any other GitHub ethical hacking tools.



News Credit

%d bloggers like this: