Did you ever wanted to make your own USB Rubber Ducky?

Well now you can using a regular USB stick, i must start with mentioning that it can not be done with all the USB sticks you will need one with a specific Nand chipset on it.

More specific the Phison 2251-03 (2303)

So now you are probably wondering where do i get that specific usb stick then, and how do i know what chipset is on it?

On github there is a list with all know compatible devices, but most off them are not for sale anymore.

So what do i do then ?

Well you can buy one in my webshop 🙂

So this is what u need to get started, and you will also need the following things:

FILE ONE:

LINK The Zip file from github found here :

FILE TWO:

LINK Visual Studio 2012 Express which can be downloaded here :

File THREE:

LINK SDCC (Small Device C Compiler) which can be downloaded here :

FILE FOUR:

Java Runtime Environment 7 which can be downloaded here : LINK

FILE FIVE:

Duckencoder.jar which can be downloaded here : LINK

FILE SIX:

The Burner image and firmware for flashing the USB stick

Which can be download here : LINK

==============================================

Now that u downloaded all these files u are ready to install them!

Follow along with me for how to install all this properly

So we only need to install 3 things (cause other are just zip packages you will need).

Let’s begin with Microsoft Visual Studio Express 2012

Step One :

Go to the location where u downloaded the Visual Studio Express 2012 setup

Mine is in Downloads

so double click this icon where u saved it

now follow along with the procedure shown below.

Now make sure u check the box I agree to the License terms and conditions

and click INSTALL

u should then see the following things pass by

and when it’s done u should see this

u now need to press the LAUNCH button to start Visual Studio Express

From the moment u pressed LAUNCH u should see this

Click on the Register Online (Dont worry u will not need to pay anything cause this is a free version, but you must sign in using a existing e-mail address u have at Microsoft)

like shown here

So fill in the email address and password you have at Microsoft (aka hotmail.com, outlook.com,..etc)

and click Sign In

next u should see this

now when u see this the email address you signed in with should be automatically be filled in, i blanked out mine(for spam reason) but in the Dropdown menu where it’s asking Are you registering Visual Studio for Academic, Business or Personal use? u should choose Personal

And where it’s asking Are you creating software for public distribution, online use by others or private use? u should choose Private Use

Once u did all this Click on Continue

U should now get this

Your Product Key for activating the Visual Studio Express 2012

So copy the Product Key and go back to the pop-up u started with

And paste the Product Key in the field and Click Next

when u did this and everything is fine u should get this

so click Close

and next u will end up in Visual Studio Express 2012

since we don’t need it right away u can close the program for now.

Step Two :

Next we are going to install SDCC (Small Device C Compiler)

so double click this icon where u download it to mine is again also under Downloads

now follow along with the pictures below

Now the next step is Very Important!

U should make sure u are installing it to C:\Program Files\SDCC

after u clicked Install u should see it installing like shown here below

And followed by this

So now click Next

And click Finish

U are now done with installing SDCC (Small Device C Compiler)

Step Three :

We are now going to install Java Runtime Environment 8

well be needing this to run Duckencoder.jar

Now again go to the location where u saved the installer and double click this icon

and follow along with the pictures below

when u see this click Install

and yes it’s true 3 Billion Devices Run Java maybe even your microwave 🙂

when the setup process is complete u should get this

So now that it’s done click Close

Setting things up:

Unpacking the Psychson-master.zip u downloaded from github (so FILE ONE)

So browse to the location where u downloaded it to, mine again is in Downloads

And now where u see this icon right click on it and select Extract Here like shown here below

Now that u did this u should get the Folder Psychson-master in the location where u started from so in my case C:\Users\Pentestlab\Downloads>

Now that u have this folder we should copy it to another location.

I highly suggest you do exactly the same as i do so that afterwards u can download my help file with the commands in it.

So now right click on the folder Psychson-master and select copy like shown here

Now that u copied the file Open My Computer and go to your C:\

And create a new folder called fw (all in lowercase)

like shown below:

Now open that folder fw that u just created and paste the Psychson-master folder inside!

u should then have the folder Psychson-master inside the folder c:\fw\

like shown here

So now that u pasted the folder Psychson-master here where going to place all the other files we need here under c:\fw

since you are now in the folder c:\fw right click here and create a new folder called fw_bn

like shown here

now create another folder called ducky like shown here

now on top u downloaded file six and it is named firmware_ps2251-03.rar

it should be in your Downloads folder at this time, but we need to place it in the fw_bn folder and extract it there

so copy the firmware_ps2251-03.rar file from your Downloads folder like shown below

and paste it under c:\fw\fw_bn

like shown here

And now that u pasted the file firmware_ps2251-03.rar here under c:\fw\fw_bn u should extract it here

like shown here

u should then have this

But now we need to get some files out off this folder and copy it to this location c:\fw\fw_bn

So open the folder Firmware PS2251-03 like shown here below and copy the files BN03V104M.BIN and FW03FF01V10753M_20130621.BIN

like shown here

So now that u copied these files go back one folder so to the folder c:\fw\fw_bn and paste these 2 files here

so like this

u should then have this

The files BN03V104M.BIN and FW03FF01V10753M_20130621.BIN under c:\fw\fw_bn

Now that this is done u should move on to the next step

The next step is copying the file duckencoder.jar to c:\fw\ducky

So go to the location where u saved duckencoder.jar my is still under Downloads so i need to copy it

like shown here

now that u copied this file we should move it to c:\fw\ducky

so go to the location c:\fw\ducky and paste the file duckencoder.jar here

like shown here

u should then have this

the file duckencoder.jar in the folder c:\fw\ducky

so you should now have the folders ducky, fw_bn and Psychson-master in c:\fw

like shown here

So listed out for u once more

duckencoder.jar (file five on top) under c:\fw\ducky

BN03V104M.BIN and FW03FF01V10753M_20130621.BIN (file six on top) under c:\fw\fw_bn

and the extracted github zip file (file one on top) under c:\fw (the folder in the zipfile from github is already called Psychson-master) so make sure u don’t have this folders double!

Now we are ready with putting all the files in place!

COMPILING ALL THE THINGS

So the next step is to compile all the stuff

So go to c:\fw\Psychson-master\DriveCom

and open the file DriveCom.sln

like shown here

So you should just double click on DriveCom.sln

and get this

now that u see this u should click in the top bar on Start

like shown here

Once u clicked on start u should see this

Now that u see this u should Close the window where it says “No action specified, entering console” First

like shown here

after u closed the command prompt window u should close the Visual Studio

like shown here

Now go to c:\fw\Psychson-master\Injector

like seen here

And double click on Injector.sln to open it in Visual Studio Express

u should then see this

again now that u see this u should click in the top bar on Start

like shown here

now once you clicked start u should get this

you should see some text in Output

so next close Visual Studio again

like shown here

So once you clicked the close button we should now go to following location

c:\fw\Psychson-master\EmbedPayload

and open the file EmbedPayload.sln

like shown here

Now once you double clicked this file u should see this

now that u see this u should click in the top bar on Start

like shown here

Once you did click in start you should again see some output text below

like seen here

now that this is done close Visual Studio again like shown here





Now all the compiling is done so let’s get one more thing we need to make it complete

the thing we need is a script for putting on the self made USB rubber ducky

we will be getting the Hello world script from the github

so go to to this website : LINK

you will then see this

So as you see in the picture u now need to click on the link to Payload – Hello World

u will then come to this page

so as you see in the picture we need to select all the text marked in blue and then right click and choose Copy

Now that u copied this text we need to go to the following location

c:\fw\ducky

and create a new text file

like shown here

And name the file HelloWorld.txt

like shown here

now that u created the text file HelloWorld.txt under c:\fw\ducky

open it by double clicking on it

and then we need to paste the code we copied from the github page inside the HelloWorld.txt

so in the empty document right click and choose Paste

and you should then have this

Now that the code is inside we need to save it

and close it like seen here below

So now that this is done we can start playing with the stick

First we are going to check if the stick really has the Phison 2251-03 (2303) chipset

we can check this by downloading the software called GetFlashInfo

get it from this LINK

when downloaded go to the location u saved it to mine is standard in Downloads

u should there see the zip file u downloaded

now right click on this and choose Extract here

like shown here



u should then open the folder named usbflashinfo

so double click on this folder and you should then see these files

So now Insert your USB stick and double click on GetFlashInfo.exe

u should then see this

u should get this back as response

It’s very important that u get Phison 2303 (2251-03) as Controller

Normally if you bought a USB stick from my webshop it should be fine!

So now that we now for sure that the stick u have has the right nand chipset we can start making the USB Rubber Ducky

so first download this file i created with all the commands u will need for making the USB Rubber Ducky

from this LINK

For convenient work save the file under c:\fw

so you should now have this file like shown here

So now that u have my commandsguide.txt file double click on it and you should see this

So now leave the text file open and click on START and type cmd and then right click on Command Prompt and choose Run as Administrator

like shown here

you should then get this

So now go back to the text file u downloaded from my LINK (commandguide.txt) and copy the first line like shown here

Now that u copied the first line go back to the command prompt and right click and choose paste like shown here

u should then get this

when u pasted this press ENTER

and you should then see this

a new line and no errors if you see error on line 1 you should check the file HelloWorld.txt maybe it’s still empty

so now the command u just ran converted the HelloWorld.txt to a inject.bin using the duckencode.jar

Next we need to make a firmware file

so go to C:\fw\Psychson-master\firmware

and you should see the files like shown here

So now that u are in this folder u should double click on build.bat

like shown here

u should see some thing happening in a command prompt and then it automatically closes, but afterwards you should now see a bin folder in this location

like shown here

So next step we go back to the text file u downloaded from my website and we are going to copy the second line

like shown here

Now that u copied this

go back to the command prompt and paste it there (if you closed the cmd, be sure u run it again as Administrator)

like shown here

u should then get this

Now that u pasted the second line in the Command Prompt u should press ENTER

and when successfully you should see it print out File updated

like shown here

Now that this is done re-insert you USB stick

Now that the stick is your USB port open My computer and check what drive letter the USB Stick has.

like shown here

So make sure u remember the drive letter that has been assigned to your USB Stick!

So now go back to the text file u got from my website and copy the line under SET USB STICK IN BOOTMODE

like shown here

Like seen in the picture make sure that u change the drive letter to yours!

so where /drive=G is change the G to the drive letter that has been assigned to your USB Stick!

Now that u copied this line switch back to the Command Prompt and paste it there

like shown here

when u clicked paste u should get this

When u did this u can press ENTER

and u should then get this

Also if you removed the casing around the USB Stick u bought from my webshop u should see that the blue led stays on

So now that the USB Stick is in BootMode

Go back to the text file and copy the line under SET ACTION TO SEND EXECUTABLE USING BURNER IMAGE

like shown here

So now that u copied this line switch back to the Command Prompt and paste it there

like shown here

again when u clicked paste

u should get this

Now that the line is pasted u can press ENTER

and you should then see this

Now that this is done switch back to the text file

and copy the line under DUMP THE ORIGINAL FIRMWARE

like shown here

Now that u copied this line switch back to the Command Prompt and paste it there

like shown here

Now when u clicked paste you should see this

Now when u pasted it you can press ENTER

and should see this

Now that this is done switch one more time back to the text file and copy the line

under SEND PAYLOAD TO FIRMWARE

like shown here

now that u copied this line switch back to the Command Prompt and paste it there

like shown here

Now when u clicked paste you should get this

Now that it’s pasted u can press ENTER

and you should see this

You now just flashed your own USB Rubber Ducky using a regular USB Stick 🙂