Get a reverse shell within 15 seconds on both Windows or Unix based systems, using the Digispark developement board. The board acts as a keyboard, then does all the magic!

• Get the digispark development board, it costs about 6 USD.

• Setup your IDE (Arduino) to deploy the code on the Digispark: https://www.arduino.cc/en/Guide/HomePage

• Get and configure the required libraries from this guide: https://digistump.com/wiki/digispark/tutorials/connecting

• CnC server (on cloud or on the victim network) - ubuntu/centos server is recommended with port forwarding enabled for (443 & 80).

• Upload the RS.ino script using Arduino IDE.
• Configure the CnC server with apache, nginx or any web server to listen on port 443 only (you can configure a free SSL certificate by following this guide: https://letsencrypt.org/getting-started/)
• Edit the payload RS.ps1 by replacing your domain with your server IP/Domain, then put the file under: /var/www/html/
• Listen on port 80 at the CnC with a something of your choice. For demo purposes we can use netcat: nc -lvp 80
• Note: the use of 443 and 80 ports grantee not blocking the connection by proxy/IDS, it seems like normal web traffic!
• Plug the USB in the asset [assuming the owner forgot to lock the desktop] and the digispark will deploy a reverse shell within 15 seconds.
• Remove the digispark and happy hacking !

• Hassan Shehata

This project is licensed under the MIT License - see the LICENSE.md file for details

Thanks to my fellow hackers: Karim Faisal and reb311ion