WHID Injector – Plug And Hack Anything With USB

usb rubber ducky whid wifi ducky bad usb xploitlab3

This time i will share with you guys a multifunction USB that can remote (keyboard or mouse) for example wirelessly. USB that can buy in any online shop and can ship around the world is also can modify with third party like wifi ducky, ESPloit V2 and more. You can remote anything that plug with this usb from wifi to send keystrokes or payloads.

What is WHID?

It stands for WiFi HID Injector. It is a WiFi remotely-controlled {Keyboard, Mouse} Emulator. Practically is an USB Rubberducky or BadUSB device on Steroids!


Blog posts about WHID

https://medium.com/@LucaBongiorni/whid-injector-how-to-bring-hid-attacks-to-the-next-level-b06a40b7df22

https://blog.rootshell.be/2018/05/22/evil-mouse-project/

WiFi HID Injector for Fun & Profit

Hardware Design Author: Luca Bongiorni – https://twitter.com/lucabongiorni
Initial sw based on ESPloit by Corey Harding of www.LegacySecurityGroup.com
WHID Mobile Connector by Paul https://twitter.com/paulwebsec

For Sale at:**

Main Requirements

First of all you need to install the ESP8266 Libraries.

How To Configure WHID software (WINDOWS)

Please keep in mind that the following Video is for installing WHID Software into Cactus Micro (which has 512K/64K Flash). If you wanna install on Cactus WHID hardware, select 4M/3M option in Arduino’s settings

[VIDEO] https://youtu.be/MRGUSPW-Cr0

How To Configure WHID software (OSX)

[VIDEO] https://youtu.be/3FOLTxtehf0

git clone https://github.com/whid-injector/esptool
cd esptool/
sudo pip install pyserial
sudo python ./setup.py install
python esptool.py --port=/dev/cu.usbmodem1411 -b 115000 write_flash 0x00000 ../WHID/sketches/cactus_micro_rev2/ESP_Sketch/compiled.bin  

Third Party Softwares

ESPloit V2

Enhanced version of WHID GUI (pre-installed on Cactus WHID) https://github.com/exploitagency/ESPloitV2

USaBuse

Used for Airgapped Environments BYPASS! https://github.com/sensepost/USaBUSe

coming soon…

Wifi Ducky

https://github.com/spacehuhn/wifi_ducky

For the Wifi Ducky you also need to install the following Libraries

How to install Libraries in Arduinohttps://www.baldengineer.com/installing-arduino-library-from-github.html

[VIDEO] How to configure Wifi Ducky (WINDOWS) https://youtu.be/PGa_ByyQw8Q

NOTE : For more information you can read whid wiki

HOW TO START [Newbies Edition]

Since July 2017 all Cactus WHID are delivered with pre-loaded ESPloitV2 and are ready to Plug-n-Hack ✌

Thus, even if you are not an Arduino expert, you can immediately have fun!

Just plug it in an USB port and connect to the WiFi network :

SSID "Exploit"
Password "DotAgency"

Open a web browser pointed to “http://192.168.1.1

The default administration username is “admin” and password “hacktheplanet”.

https://youtu.be/5WTrKvQbK9o

For cool payloads or more info check the Wiki or the Payloads directory.

The Hardware

usb rubber ducky whid wifi ducky bad usb hardware

USB Pinouts

In order to make easier the process of weaponizing USB gadgets, you can solder the USB wires to the dedicated pinouts.

The pin closer to USB-A is GND. The pins are :

  • GND
  • D+
  • D-
  • VCC
usb rubber ducky whid wifi ducky bad usb xploitlab4

[ In case an USB HUB is needed (i.e. to weaponize some USB gadget or mouse), usually, I do use this one https://www.tindie.com/products/mux/nanohub-tiny-usb-hub-for-hacking-projects or this https://www.aliexpress.com/item/Random-Color-Redbud-High-Speed-USB-2-0-4-Port-HUB-Fashion-Design-HUB-Computer-Accessories/32788390064.html]

Possible Applications

  • Classic : Remote Keystrokes Injection Over WiFi

Deploy WHID on Victim’s machine and remotely control it by accessing its WiFi AP SSID. (eventually you can also setup WHID to connect to an existing WiFi network)

usb rubber ducky whid wifi ducky bad usb GUI xploitlab
  • Social Engineering: Deploy WHID inside an USB gadget

The main idea behind it is to test for Social Engineering weaknesses within your target organization (e.g. DLP policy violations) and to bypass physical access restrictions to Target’s device. Usually, I create a fancy brochure (sample template https://github.com/whid-injector/WHID/tree/master/tools/Social_Engineering_Lures ) attached with a weaponized USB gadget and then use a common delivery carrier (e.g. UPS, DHL, FedEx).

usb rubber ducky whid wifi ducky bad usb xploitlab2

WHID Injector has an Official Android App https://play.google.com/store/apps/details?id=whid.usb.injector and guess what, we open sourced it.

usb rubber ducky whid wifi ducky bad usb application

You May Also Like

Leave a Reply

Your email address will not be published. Required fields are marked *

1 × 3 =