Would Your Users Plug In A Random USB?
Cyber Security Tools - Mac Ducky Script Red Team Security Test
I made this Ducky Script for testing if end users will plug in a random usb (ducky) or cable(O.MG).
1) When the device is plugged in, the payload triggers. It collects the logged in user name and the serial number of device.
2) It then sends that info to a discord webhook
3) User gets a popup telling them they failed the evaluation and to return the device to the team.
Technology Used
- Understanding of MacOS & Bash/Shell
- Duckyscript to write code
- Discord Webhooks
- O.MG Cable & Flipper Zero (BadUSB) to test script deployment