Is it possible to store small Windows applications on an SD card, then have them run when the device is attached to the computer? For example, I would like to have cmd.exe and netstat.exe on an SD card and have netstat run via the trusted cmd.exe on the SD card, then pipe that information back to a file on the SD card. I would like to minimize the changes made to the host computer and use only trusted tools that exist on the SD card. This is for possible computer incident response and data collection. My background is in VB, not Arduino and I'm not sure where to even start with this one. Thanks!
You can do all of the above operations on Windows without Arduino, can't you?
Where is the Arduino involved here?
florinc:
You can do all of the above operations on Windows without Arduino, can't you?
Where is the Arduino involved here?
He wants to use the Arduino as a USB pendrive with a software payload on it. You're better off checking out the USB rubberducky (http://www.usbrubberducky.com/wiki/doku.php?id=start) or the USB Switchblade (http://hak5.org/usb-switchblade). Arduinos are useful when you need to make your computer interact with other physical objects, its not really suited for delivering software payloads.
florinc:
You can do all of the above operations on Windows without Arduino, can't you?
Where is the Arduino involved here?
Yes, you can. The purpose of this device would be to replace the need for the user to type out each command. This way each command is done is a repeatable way that can be documented.
wizdum:
He wants to use the Arduino as a USB pendrive with a software payload on it. You're better off checking out the USB rubberducky (http://www.usbrubberducky.com/wiki/doku.php?id=start) or the USB Switchblade (http://hak5.org/usb-switchblade). Arduinos are useful when you need to make your computer interact with other physical objects, its not really suited for delivering software payloads.
The USB Rubber Ducky is built off a Teensy (Teensy USB Development Board), which is an Arduino device, so I know it is possible... I'm just not sure how.
cottontail:
The USB Rubber Ducky is built off a Teensy (Teensy USB Development Board), which is an Arduino device, so I know it is possible...
Couple things to point out...
The ATmega328 and ATmega2650 used in Arduino boards is an 8-bit processor. As is the ATmega32U4 used in a Teensy.
The Teensy is not an Arduino device. The Teeny uses a different AVR than Arduino boards. PJRC provides plugins so that the Teensy is compatible with the Arduino IDE and Core libraries.
The Rubber Ducky is not built off a Teensy. Rubber Ducky uses a "powerful 60 MHz 32-bit processor". Just that line alone enough to tell you that you aren't dealing with an "Arduino device".
One of the major difference between an Arduino and a Teensy is that the Teensy has full USB capabilities, so you can "mimick" any kind of device such as a keyboard or a drive. An arduino has no USB in the CPU, it is in a separate chip that can only emulate a serial interface "COMx".
First time I heard about the rubber ducky, and it looks like some hacking (as in ATTACK) stuff mimicking a keyboard. Nothing to do with teensy or Arduino, it uses some AT32UC3B1256.
However, in theory the rubber ducky could be supported by the Arduino IDE, or its more open father Wiring.
hey guys im new here i was reading your comments theres some very good points here maybe this will help me aswer my own questions about this subject ive actually got some success and some headaches lol
i have a digispark atiny 85 and it works wonderful as a usb rubber ducky and actually alot of the ducky scripts can be converted to run on arduino just look up duckuino google it its like the second or third link down it say duckuino by itself
but the only problem i have ran into with the atiny85 is space lol its very small so i have to keep my script small and
so when i try to dump shell code into my compiler of course theres not enough space on the device to hold all the shellcode
so what i did was use an apache2 server with raw shell code on it or use pastebin and what you actually have the device to instead of dumping shellcode to the target machine right away you actually tell the machine to go to pastebin where you pasted your shellcode and have it execute ....if anyone wants that code feel free to ask i dont mind at all it works well that way
but now here is my questions sorry to be so long winded
i also have an arduino 32u4 leonardo pro micro it works too just like i got the digispark working but same problem not enough space ..of course i have a sd card reader 4 arduino on the way but
one guy on hak5 forums was using the usb rubber ducky to execute a .exe off of a regular flash drive it was set in his code to look for a drive called " DUCKY " so all he did was rename the drive ok i want to do the same thing with my pro micro 32u4
but the ducky script he gave me wiggs out in the compiler " duckuino " im not pasting the code on here because im going to give a link to where i asked that question on hak5 forums can any of you all tell me how to use the digispark or the 32u4 pro micro to execute a .exe off of a tf card or flash media ? using pastebin and apache webserver is fine and it works but i want to execute the file directly without going online even though it dont make much difference because your reverse_tcp shell is connecting anyways but i still want to use an executable instead of shellcode ..shellcode is fine but i like using Veil-Evasion to encode my payloads particularly the ruby payload works well .. of course veil offers shell code too its just a thing im wanting to try
they say it can be done so i want to do it lol
here is the link where i asked the question about this i havent got any answers yet on there maybe someone can help me on here lol and if i can help out anyone feel free to ask......................
thanks in advance guys and if i have been unclear about anything tell me and ill try my best to ask better