So I’m dabbling a little in some coding and learning the basics. Came across the forum that was talking about files with a .ps1 extension for powershell. I understand running certain scripts through the flippers .txt files can execute powershell commands, but so far, from all the videos I’ve seen and forums i’v read, everyone utilizes .txt files on the flipper. Does flipper not recognize .ps1 or is it a limitation set forth but the devs?
Powershell doesn’t run on the Flipper so A program that converted a .ps1 file to a .txt bad USB file would probably make more sense. IMHO
EDIT: I’m sure it would be possible to do the conversion on the Flipper too. I just think it makes more sense to convert the file to something the Flipper already understands.
I see what you’re saying. Let me clarify that I wasn’t expecting flipper to run powershell. I apologize if I made it sound confusing, but what I’m wondering is if flipper can execute .ps1 files via BadUSB the same way it executes .txt files. But you pretty much answered it. I appreciate the info!
EDIT: Just kidding! I understand completely what you’re saying; my apologies. In order to run a .ps1 file you must run powershell in which case, the flipper is unable to do. In order to execute with flipper via BadUSB, you must utilize commands given through the .txt file. Thank you for shedding some light on it once again!
Check this github repos: https://github.com/I-Am-Jakoby/Flipper-Zero-BadUSB
Nobody knows bad USB powershell better then him.
you should look in to bad usbs and the rassbery pi zero and how it works with 200kbs of storage find somthing like it and put it in there
Hey I’m having a similar problem. Just got mine today. Ive been trying to use IamJacoby’s files and I cant seem to get them to work as .txt files. I would appreciate any input!
To give any gve any input, we need your output.
The BadUSB is a very fast keyboard. What you can do with the keyboard, you can script as ducky.
Sometimes the keys are too fast to handle by the system. Sometimes via Firewall Dropbox is blocked. Sometimes the moon is too high at the sky …
In this case, the question was 'why can’t I use .ps1 … The answer: because the Flipper BadUSB, like any other BadUSB implementation, does not support .ps1. convert your PowerShell script to DuckyScript…
If this is not your issue, open a new topic.
Edit: correct typo … Don’t drink and hack, kids.
I see. It appears as if the codes were meant to work in tandem with another sort of codes. I havent figured it out yet however I will notify the thread if I can figure them out.
Koby used to have a script in Ducky .txt format, that will start the PowerShell on the target, download the payload and do magic.
Plug’nPlay sometimes still needs some adjustments.
Let’s look at Rickroll: https://github.com/I-Am-Jakoby/Flipper-Zero-BadUSB/blob/main/Payloads/Flip-ADV-RickRoll/ADV-RickRoll.txt
Here the .txt loads something from https://jakoby.lol/qee, obvious a zip file that is extracted in the next step and executed. You can do all this also manually.
Another one is the Recon: https://github.com/I-Am-Jakoby/Flipper-Zero-BadUSB/tree/main/Payloads/Flip-ADV-Recon
Here the payload is not only at he’s server, it is provided to upload it on a own webserver.
The .txt (https://github.com/I-Am-Jakoby/Flipper-Zero-BadUSB/blob/main/Payloads/Flip-ADV-Recon/ADV-Recon.txt) is load on the Flipper and executed. As before the script is starting a PowerShell, download the payload, this time from jakoby.lol/9nb …
I assume behind the shortens URL is the same .ps1 script as in the folder (https://github.com/I-Am-Jakoby/Flipper-Zero-BadUSB/blob/main/Payloads/Flip-ADV-Recon/ADV-Recon.ps1)
A short peek at line 47ff, and we see there are tokens needed. Else the script will upload nothing. Maybe a output in the console, but is this what we expect?
Let’s say I’ve used the scripts and they work. I don’t know how much credentials Jakoby gets, because people execute his scripts without checking where the data goes, each day …
My tip: start with some simpler, if you are not familiar with Ducky or with PS. This is some kind of advanced.