Most Powerful BadUSB Payload on Flipper Zero! Keylogger w/ Credential Stealer & File Downloader!
Vložit
- čas přidán 11. 08. 2023
- This week I was working with InfoSecREDD on what is definitely the most powerful BadUSB I've ever seen on the Flipper Zero!! This features a working keylogger with clipboard and credential stealer and a bonus payload showing off a file exfiltrator that's controlled by a Command and Control server and even has a global killswitch!! Even better, everything gets sent directly to your Discord server!
REDD's Github : github.com/InfoSecREDD
PowerShell Command to Enable Script Use:
Set-ExecutionPolicy -ExecutionPolicy Unrestricted -Scope CurrentUser
-----------------------------------
Check Out The Official Squachtopia Hangout Discord Server!:
/ discord
-----------------------------------
Support the Channel at my Patreon!!
www.patreon.com/user?u=29290751
-----------------------------------
Follow me on Social Media!
TikTok : / talkingsasquach
Instagram : / talking_sasquach
-----------------------------------
Thank You SO MUCH For I am Jakoby for the intro, definitely hit up his channel and be sure to subscribe!!!
/ iamjakoby
----------------------------------- - Věda a technologie
Thats why redd is the best
For real, he's a badass!
@@TalkingSasquach not only in tech he also gives good life tips ;)
@@CatVSDog. go for it!! REDD will be releasing the code for the file exfiltrator soon so you can check that out when he does
@@TalkingSasquach awesome video as usual... Did he release it yet?
Who is Redd?
Love ur content, thanks 4 bringing me in the flipper zone (im from germany and i have absolut no clue about coding and stuff. But thanks to you im getting in to it) ❤
very cool! Redd is clearly talented. I reckon one thing that would make it better is utilising discord embeds though, because then you could have a menu with a bunch of controls. I might try to remake this, it looks like a fun project
Yeah, this is just using Webhooks so no data from discord is being sent to the victim machine. Just from victim machine to Discord. Making a full on bot to do so would of taken more time.
Chat GPT wrote one back when it was on 2.0 model.. Finally, the good stuff we have been waiting for...
Great video! Just a small correction: That's not encryption, that's simple encoding. Encryption requires a key to decipher while base64 encoding can be reversed easily. The use of the base64 certificate encoding function idea was clever to hide it from the system, though. Cheers ✌🏼
Yup! I was waiting for this comment. We are aware it's not encrypting, but I'm smooth brain and I kept saying it anyway
Yep, I'm aware.. Just "Redds Payload Enocoder Generator" sounded too weird. Plus with future versions Encryption will be a possibility.
@@InfoSecREDD it's the man himself!! Great work!
@@InfoSecREDDhey man do you have a way I can contact you ??
Redd is definitely not just a hobbyist, such as myself.
He is a monster breed in a government facility that trains children from a young age.. 😂
My Windows 10 did not let me execute the command in PowerShell, after executing the payload on the target machine
yah man thx for all your stuff
He’s like the “donut” of the tech world
this is indeed crazy stuff. redd is the best.
Hell yeah he is!!
+1 for the Mosko Moto shirt
man I really wish I had that code to play around with! so cool
This is very cool
Thanks! I thought so too!
so why are we here if we cant have the code? lol closed
Yup
Is it possible to make a usb with can save everything a windows computer type and it doesn’t appear into the computer?
And is it possible to run the bad usb without connecting it to the computer??🤔
Could you share with me the laptop you’re using in this video?
Frikkn awesome
where can i get payloads?
Hey, I wonder if you can emulate saved nfc „tags“ with the flipper zero app. On the their website there was a button on the app to emulate a saved nfc but idk if it’s being emulated on the flipper or with the phones nfc chip. And if it’s being emulated with the phones nfc chip, does the flipper has to be connected for it to work?
can, every credit card has a special product key that cannot be bypass, we’ve all tried it to no avail.
i love Fliper Zero!!!
Haha yeah me too!
What file do you run to get the keylogger?
Its crazy! (Please tell me what betterdiscord theme it is 😭 its beautiful)
b64 is not the best encoding way you could do, i suggest more doing something AES or something lile that. You could simply put it in a python script and you have the entire system
It does not stay open for me at all. Even after using Set-Execution
Is that script only for Windows 11?
So, my wife made her own key loggers for the flipperzero and its kinda scary
send me the ducky script blud
Where can I find these payloads?
Can we use these scripts just for a normal badusb
windows 11 now catches the keylogger, They are working on a update tho.
Hey i want to create another admin account with a badusb script but i want to know if the bad usb can bypass the admin password? Thx
It is very possible. Not saying how tho. 😉
great
Do you know how to capture rolling code and decode it and then emulator on sub GHz
you cant
Hak5 payloads are compatible with the flipper zero?
yes
What you get from the vault box?
Haven't unboxed it yet! I'll be doing that in the next couple days, gonna film it for a video!
how do i plug it in
I wish I could get my flipper to do this I already tried wey to many times this wey but no luck from my side
nothing comes up when i drag and drop the hello world to the flipper
^^^^^^
when i drop it nothing pops up
*Is the code still a secret?*
That sweet let me talk to red
How are you able to send to your own discord?
create a weeb hook
i can't understand where can i find the second script
u can’t
Logs? What about deforestation?
deforestation rocks!
@@TalkingSasquach No. It trees!
Got a brand new flipper I don't want
Yo, y u call your pc the Chupacabra??? It should be called the sasquatch cave
Is there any similar or same keylogger code github?
Is it legal to use on a scammer that deserves to be behind bars?
Completely 😉
@@lycheefrost625 I thought so, some idiot started attacking me because a hacker shut down a site for hacking discord users and the fact that they failed to look on CZcams because so many channels does nothing but hacking scammers 24/7 and they never got in trouble for it. And they call me a 12 year old, if I was 12 then that would make me 3 years old when I made this account. People are stupid sometimes. Makes me glad I don't count my self as a person or even human.
Very dangerous bad usb or sure
Your video and Jacoby videos are two different videos
bro....less cocaine more ADHD medication
Where's the fun in that?
people in the commentshave no idea what they are talking about
Man I'm locked out my Mac sasquatch please help me dude
Google is so terrible.... My god it doesn't even know what -noexit means.
Love you content but the Bill and ted hand movements from a grown man makes things unwatchable!
none of them are working ... useless flipper