Command Quick Reference
Last updated
Was this helpful?
Last updated
Was this helpful?
Will trigger payload execution when specified pattern is typed.
See the for full usage.
Will save the specified number of keys to a file – either before (LAST) or after (NEXT) the payload MATCH.
See the for full usage.
Will inject keystrokes from the specified file. Ducky Script commands in the specified file should not be prepended with Q or QUACK.
Will return a set of useful variables which may be referenced in the payload
$VID
– Vendor ID cloned from attached keyboard or specified in config.txt
$PID
– Product ID cloned from attached keyboard or specified in config.txt
$MAN
– Manufacturer specified in config.txt
$SN
– Serial number specified in config.txt
$PROD
– Product string specified in config.txt
$HOST_IP
– IP address of Key Croc after executing an Ethernet ATTACKMODE
$TARGET_IP
– IP address of target after executing an Ethernet ATTACKMODE
$TARGET_HOSTNAME
– Host name of the target after executing an Ethernet ATTACKMODE
Will refresh the Key Croc framework with payload files from /root/udisk/payloads/
Will check the syntax of the payloads currently residing in /root/udisk/payloads/
Will parse each line entered, enabling interactive payload development with helpers.
Will enable the specified payload. After enabling a payload, issue RELOAD_PAYLOADS for the change to take effect.
After disabling a payload, issue RELOAD_PAYLOADS
for the change to take effect.
Will install additional third party software such as metasploit, impacket and responder to the /tools/
directory.
Will return PRESENT
or MISSING
depending on whether a keyboard is attached.
Will check for keyboard activity for each specified time interval, halting further payload execution until keyboard activity is detected. Example wait until there is keyboard activity within a 1 second window.
Will check for keyboard inactivity, halting further payload execution until the specified time has elapsed with no keyboard activity. Example will wait until there have been no keypresses for 5 minutes (300 seconds)
Will wait for the specified file to exist, or if already existing for the file line count to increase, halting further payload execution. Can be used in conjunction with SAVEKEYS NEXT,
which will write the loot file when the number of specified keys have been typed. Example will wait until the captured_keys.txt
file exists, checking every 5 seconds.
Will inject keystrokes specified. See the for full usage.
Will emulate a USB device from the specified modes and options. See the for full usage.
Will control the multi-color LED. See the for full usage.
The $LOOT
variable is always available after MATCH
triggers the payload. See the for $LOOT
details.
Will send a notification to the configured Cloud C2 server. See the .
Will exfiltrate the specified file to the configured Cloud C2 server. See the .