r/hacking • u/DENZADJ • 2d ago

Ducky Reverse Shell update

I’ve updated my reverse shell repo. I still use this attack during red team engagements. Unfortunately, many users/devices are still running with local admin rights.

https://github.com/dvbnl/rubber-ducky

I’ve build in persistence and tested it on the latest Win11 version. 🐤

12 Upvotes

permalink
reddit

You are about to leave Redlib

Do you want to continue?

https://www.reddit.com/r/hacking/comments/1mxda2q/ducky_reverse_shell_update/
No, go back! Yes, take me to Reddit

89% Upvoted

u/intelw1zard potion seller 2d ago

very neat!~

u/Imaginary_Page_2127 1d ago

I wonder how hard is it to catch this with an out of the box anti virus

1

u/DENZADJ 22h ago

Right now it evades Windows Defender (active in all default Windows deployments). For third party EDR’s you can create evading as well since you’ve got an active admin shell

Ducky Reverse Shell update

You are about to leave Redlib