ENNAENNA

USB Rubber Ducky Payloads

๐Ÿ”ฅ Offensive Ops ยท DuckyScript

USB Rubber Ducky Payloads is a repository containing a wide range of keystroke injection scripts for USB Rubber Ducky and BadUSB devices. These scripts are designed to automate various attack scenarios by simulating keystrokes when the device is connected to a target system. Used extensively in penetration testing and security demonstrations, these payloads exploit the inherent trust in Human Interface Devices (HID) to execute malicious commands.

5.7kstars
1.6kforks
52issues
Updated 28d ago
+I use this
View on GitHubOfficial Website

Use Cases

  • Keystroke injection attacks via USB devices
  • Physical access exploitation in red team ops
  • Automated credential harvesting payloads
  • Reverse shell deployment via HID attacks
  • Security awareness demonstrations

Tags

badusbhidkeystroke-injectionphysical-accesshak5ducky-payloadsduckyscripthacking-toolshak5-rubber-duckyhotplugpayloadspentestingsecurity-toolsusb-rubber-duckyusbrubberducky

Details

Category
๐Ÿ”ฅ Offensive Ops
Language
DuckyScript
Platforms
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Links

GitHub Repository

github.com/hak5/usbrubberducky-payloads

Official Website

shop.hak5.org/products/usb-rubber-ducky

Releases

github.com/hak5/usbrubberducky-payloads/releases

Issues

github.com/hak5/usbrubberducky-payloads/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

Flipper Zero Firmware

C

Custom firmware for Flipper Zero. Sub-GHz, RFID, NFC, infrared, and GPIO hacking multi-tool.

Compare USB Rubber Ducky Payloads vs Flipper Zero Firmware

More in Offensive Ops

Mythic

Go

Collaborative, multi-platform C2 framework. Docker-based with web UI, multiple agent types, and plugin architecture.

c2red-teammulti-operator

Havoc

C/C++

Modern C2 framework. Qt-based GUI, BOF support, custom agents, and a Cobalt Strike-inspired workflow.

c2red-teamgui

Rubeus

C#

C# toolset for raw Kerberos interaction and abuse. AS-REP roasting, Kerberoasting, ticket manipulation, delegation attacks.

kerberosactive-directoryroasting

Certipy

Python

Active Directory Certificate Services (AD CS) abuse tool. Find and exploit certificate template misconfigurations.

active-directorycertificatesadcs

Coercer

Python

Automatically find and exploit Windows authentication coercion vulnerabilities. PetitPotam, PrinterBug, and more.

authentication-coercionntlm-relaypetitpotam

SharpHound

C#

Official BloodHound data collector. Enumerates Active Directory objects, sessions, ACLs, and trusts for graph analysis.

active-directoryenumerationbloodhound