Hardware: Upgrading Framework Laptop 13

At this stage I have had my Framework Laptop 13 for almost a year I think, and by now I have accepted it for its strengths and shortcomings.

A brief overview of what I think about the machine to this day is as follows. It is a great machine, it looks and feels really good and the keyboard is amazing. The main issue I have is that the i5 1340p processor gets very hot. After talking to the support there are a few things I can do about it to start with. New thermal paste, cleaning it with compressed air and of course replacing the fan module (which I consider the last step). 

Running a battery report I found out that I am running the 55wh-battery, and it is down by approximately 20% battery health. Usually I run the laptop plugged in and capped at a maximum charge of 90%, so it is rare that I notice this. But my next purchase would probably be the slightly bigger battery.

So what did I upgrade in my first upgrade session? I got a new bezel that is green and translucent, an additional USB-C expansion card (as I never use HDMI, which I got when I bought it on Ebay), and a keyboard in the second generation, with my own native language. Which was sorely missed, due to the lack of pipe symbols. I am writing PowerShell scripts every so often, and a pipe symbol is essential for that.

The upgrades were easy, when you replace the Bezel, make sure to flip down the screen towards the table complete, start removing the bezel from the top right corner and be careful of the cable in the bottom left corner. Follow the manual that they provide on the website.

The expansion card replacement is the easiest part, just unlock the slot, remove the old one and insert the new one. Plug and play.

The keyboard was the trickiest, for this you should absolutely follow the guide and make sure to unscrew the right screws and also place them back where they belong. It takes a lot of time and is tedious, but not difficult.

Windows: Process Monitor

This post will cover some basics of Process Monitor, a program that is part of the Sysinternals Suite, which is a set of tools that was created by Mark Russinovich.

To download just the tool click here or if you want the entire Sysinternals Suite (170 mb) press here.

Writing the draft for this post I felt the need to research the difference between Process Monitor and Process Explorer, which can be generalized as the following:

Process Monitor (Procmon64)

Captures live information about the processes on your system, how processes interact with the file system, registry and network. Much like Wireshark you can open and save capture logs, which you then can filter.

Process Explorer 

Displays other aspects of the processes, such as handles, DLL:s, memory usage and resources. It shows how processes are related to each other as parent or child process in a tree view. Process Explorer can also be used as a "task manager on steroids" and replace task manager as the default app.

Using Procmon64

This section will explain how to create a basic capture and how to save it with an applied filter. Process Monitor starts gather information as soon as you start it so should you want to stop it press Ctrl +E. To clear the view in the window press Ctrl + X.

When you are ready to start the program that you are troubleshooting or analyzing, start "capture event", with Ctrl + E.

When you have reach the point where you want to stop, stop the capture.

Next you might want to apply filters, use Ctrl + L to get into the filter view.

As an example I took powershell.exe.

Select filter "program name" and "contains", write the name of the program in the textbox (for my example I just wrote powershell). Take add and apply, and then it filters out the data in the main window for you.

Maybe you want to filter out only registry queries for example, then you can add the additional filter "operation", "contains" and "RegQuery".

To save your log use Ctrl + S, it natively saves it in the .pml format but you can choose .xml and .csv as well.

Cybersecurity: Living of the land

Living of the land means to use resources that are already on the machine, as opposed to bringing external or homemade tools to the target device for example. The LOTL technique uses native tools which can make intrusion detection difficult as they leave minimal footprints and often are considered trusted. 

These native binaries can be used to break out of restricted shells and here are some examples that exist for both Unix (GTFOBins) and for Windows (LOLBAS).

Recently I watched a video from John Hammond that covered this cybersecurity technique. The YouTube video was in turn largely based of the research from Grzegorz Tworek.

I had previously seen how replacing utilman.exe with cmd.exe could grant administrator level command prompt from outside Windows before and in a similar fashion the video showed another replacement action. Grzegorz example that John is covering in the video shows how the native program tpmtool spawns cmd.exe which in turn calls for logman.exe in an unsafe way. The way this is executed is similar to "binary planting" and "DLL hijacking", the computer is simply tricked to execute something else than intended.

This is how he demonstrated the technique:

With Procmon64 actively gathering information about processes the command line tool "tpmtool drivertracing stop" was then run in cmd which resulted in an error. He then filtered out results for tpmtool which he was investigating and ran the command in cmd again. By doing this he could see that the tpmtool opens another cmd.exe window in a "process create" operation. 

Another filter for cmd.exe was also applied, which showed both a process create and process start, that according to the event properties starts yet another program in cmd, named logman and it is this program that could theoretically be replaced with something else. 

The reason why this exploit works is because logman.exe has no directory specified, you are essentially telling the computer to see if there is a program with that name where it is currently looking. If another exe-file is placed in the working directory of the initial cmd ("C:\Users\username") and is renamed to logman.exe, then the next time "tpmtool drivertracing stop" runs in cmd it calls on the fake logman.exe file.

For more information on how to use Process Monitor, I have written another post covering some basics here.

PowerShell: New .ps1 in context menu

The context menu is the menu that shows up when you right-click in your explorer window. This is where you can create new files, folders and shortcuts.

So as I am a bit of a PowerShell nerd I thought it would be handy to have the .ps1 file in the context menu where you create new files as well. I found a reliable source at Winaero and a reg file created by Sergey Tkachenko (press the click here to download) to get the zip folder.

Compiling the research this is essentially the steps you need to take:

1. Open regedit as administrator and go to HKEY_CLASSES_ROOT and find the key for .ps1 files.

2. Change the value of "(Default)" to ps1legacy. Mine was set to ps1_file_auto

3. Create a new key (folder) under the .ps1 extension in the left pane. Name it ShellNew and within it create a new string value called NullFile and make sure the data is empty.

4. On the top level of HKEY_CLASSES_ROOT, create a new key for it named ps1legacy, give the "(Default)" the data Windows PowerShell Script. Create a new string value in the same place with the name FriendlyTypeName, give it the same data as the other string value.

Here is the result! 😊

Lastly, let's explore how we with some lines of PowerShell code could create the same result. This code snippet is boiled down to the essentials on purpose for simple step-through, reviewing and modification.

# Run as admin #

Set-ItemProperty -Path "Registry::HKEY_CLASSES_ROOT\.ps1" -Name "(Default)" -Value "ps1legacy"

New-Item -Path "Registry::HKEY_CLASSES_ROOT\.ps1\ShellNew" -Force

Set-ItemProperty -Path "Registry::HKEY_CLASSES_ROOT\.ps1\ShellNew" -Name "NullFile" -Value ""

New-Item -Path "Registry::HKEY_CLASSES_ROOT\ps1legacy" -Force

Set-ItemProperty -Path "Registry::HKEY_CLASSES_ROOT\ps1legacy" -Name "(Default)" -Value "Windows PowerShell Script"

Set-ItemProperty -Path "Registry::HKEY_CLASSES_ROOT\ps1legacy" -Name "FriendlyTypeName" -Value "Windows PowerShell Script"

PowerShell: Working with CSV files

I have previously tried to setup a way of working with databases with PowerShell. Recently I came across a way to use a simple CSV file to store data and then fetch it from PowerShell. This post will cover a few pointers I picked up along the way as well.

The first thing I did was to create the CSV file, which works as a rudimentary database for the purpose. I started by creating the datasheet in Excel and converting it to a CSV file. Perhaps you even have a complete file from the beginning that you got from some statistics page for example.

How you can work with a CSV file

The code was written on one computer first, where the file got a comma delimiter. Then I rewrote the code on another computer which had semicolon as delimiter, this caused trouble for my script. Because PowerShell defaults to the comma delimiter, so you need to specify that in your script when you run the Import-CSV cmdlet. Store the data in a variable and set the delimiter, that way you can return later and troubleshooting becomes easier if it has trouble reading the data. In my case it detected the file, but I got no indication what was wrong at first all that happened was that PowerShell didn't fetch the data from the CSV, most likely because it could find the individual columns.

Here is what it can look like if you have the script and the CSV in the same root folder. Look into the CSV file to see which delimiter to use.

$Imported_CSV = Import-CSV -path .\database.csv -delimiter ","

With this simple line you now have read in the data into your variable and you can start work with it. Some inspiration for this part come from this video. To count the entries, simply run $Imported_CSV.Count and see it as representing the amount of rows. With this knowledge you can also inspect individual lines by calling on their index, remember to count from 0 which is the first row of content, not the header. Using classic PowerShell index enumeration, [-1] is the last row. You can thus cook up something like this:

($Imported_CSV[-1].Name) to get the data in the name column for the last object. This requires you to know the column name in advance. To find out the column names you could run the following code:

$Imported_CSV[0].Psobject.properties.name

With the index, I could also change a specific datapoint. When I then call on the main variable again, it lists the changed datapoint. Using the Export-CSV command I could then also save the change to the file.

($Imported_CSV[1].Name) = "CMD";
$Imported_CSV # Shows the change #

You can extract all rows from one or more columns using a standard Select-Object, and with this you could apply different grouping, sorting and formatting approaches. Here is an example of getting the data:

$Imported_CSV | Select-Object -Property Age, Name

When you have designed your data segment (using the index and the properties for example), pipe your selected data into Export-CSV and set the delimiter you want to use. If you run Get-Process or Get-Service you could extract that data into a CSV as well.

The row in your Excel file (also the CSV) with the name of the columns (such as name, age, location) is called the header, if the top row is not the header row you can use the parameter -header for that. There are a few things to keep in mind when using this functionality which you can read more about here.

To add a column we can use the following code. Simply put it goes through each row and adds an extra "cell" on the rightmost side. You can give the $row variable a different name, but I liked its simplicity. The "Header" is simply the name of the new column. The property value is what value that should be given for all rows in the new column.

foreach ($row in $Imported_CSV) {Add-Member -InputObject $row -NotePropertyName "Header" -NotePropertyValue "DefaultValue"}

To add a new row to the CSV file you create a new object that is appended. For the new row you enter the values for each column.

$newrow = [pscustomobject]@{
Name = "PowerShell"
Age = "7.5.0"
Location = "PC"
}

$Imported_CSV += $newrow

Finally you can export your file as mentioned earlier through Export-CSV:

$Imported_CSV | Export-CSV -path "C:\temp\exportfile.csv" -NoTypeInformation -Delimiter "," -Encoding Default;

The script concept idea

My script lets the user search with a GUI that connects to the "database" file to work with it. The GUI lets you select different columns in which you can look for matching data. Column names could be "name", "age" and "location" for example and are connected to radio buttons. Essentially you tick a radio button corresponding to a column, you write a search word and then it gets all the data connected to that particular data point. An easy way to search for something you know, to get the rest of the data that you might not know.

The search function is tied to a search button. By using "$textbox.text" the search function matches that search term to the column that you chose. Finally it returns the data in another text box. In my example I decided that it should return all connected data.

Other functionality I added was a reset button that quickly resets the different buttons and text boxes. In the bottom I have a status bar that gives basic information and it could be used for more detailed error messages for example.

Conclusion

We can with simple means edit datapoints, create a new row or a new column. We can fetch and save the contents of a CSV file. Apart from this we can use our other knowledge of PowerShell to work with the data. Remember to create a backup of any important data before you start experimenting with it. 

Cryptocurrency: Running a Pi Node

Some years ago the cryptocurrency project Pi Network was created, in the beginning it was a closed project where people had to get an invite from existing users. I remember getting mine, which gave a small bonus to me and the person who recruited me.

A lot of time has passed since then and the mining rate has gone down from several coins per day to fragments of a coin per day. One way to currently increase your mining rate is to create what the creators call a Pi Node. The reward is constantly being tweaked and in the future they will determine what the reward will actually be, but currently it has rewarded me with increasing bonus rates of mining.

Just as mining Pi is free, running a node is virtually free as well. You need to have passed the KYC, which costs 1 Pi and you need a computer with internet that will be running. There will be something called a supernode as well, but they have a lot higher requirements of stability, essentially they are nodes for the nodes. This post will thus focus on how you get started with your regular node so that you can increase your mining rate. The content is based on the official information and my personal experience installing and running a Pi Network Node.

Getting started

Download the Pi app for the computer here. It contains the node software, unlike the app in the phone.

Fill in the application to run a node, the team will then see if you are a good candidate and select you.

Nodes are approved based on uptime, connection quality, contribution to the community and security circles.

You need to pass KYC (Know Your Customer).

When you are accepted you can download Docker, as the node requires it to run. You might have to enable virtualization on your intended computer, as it works similar to a virtual machine. I tried running it inside a VM but it didn't work as intended.

Making sure it is running properly

The first time you start the node it will take a while for it to catch up, as there is a lot of data in the blockchain that it needs to synchronize with. When I started mine it needed approximately 3 minutes to catch up. I was also running the optional API.

The Pi app becomes an autostart app automatically after installation, but make sure your Docker also starts automatically in your Windows settings. Inside your Docker program you can also see the containers running, you will see a play button next to the container. Press this if it has stopped.

If you lose power or internet, it can be a good idea to make sure your node is operational again. Normally I am running it on a headless server but I have a mini monitor attached just to make it easy to check regularly. In the future I will also consider getting a monitoring software, so that I can check the crucial services on a GUI from another computer.

If possible leave your node running constantly, on a separate device if need be. I noticed that my rewarded rate increased slightly day over day. It will be interesting to see if there is a cap to this, as the rate increase seemed to stagnate. At the time of publishing this post it has increased the reward for the four days that I have been running it, with updated values each new mining session. In other words, if there is an increase, you will notice it every time you start a new mining cycle.

Only run one node, only have one account, for your own safety. And finally, running a node will use CPU, memory, hard drive and network resources.

AI: Prompt Engineering

The other day I got an advertising on social media about a free certificate in responsible AI use and Prompt Engineering. The course was a collaboration between Microsoft and Founderz who hosted AI Skills 4 All which was educational and interesting.

As a regular user of both Copilot and Edge I decided to give it a go, it was free and took less than 8 hours, so I thought why not?

Basically they brought up the basics of how generative AI work, how to write good prompts and how they leverage the Edge browser. 

The way we should see Copilot is not as the primary agent of choice, but rather our second pilot, that can offload us from certain tasks. We are still responsible for what we do with the tool in that sense. At this stage these generative AI:s, especially Copilot, is better at texts and images than math.

Its strengths are brainstorming, handling large amount of information and creating general ideas for the low risk scenarios. The general downsides of Copilot is that it does not think or feel, it is not always accurate and you can't rely on it as a friend. It also comes with biases of its own.

Improve your prompts

Writing good prompts for AI consists of four main parts.

1. A goal, such as creating a bunch of bullet points detailing the last quarter

2. Context, such as defining a setting where the material will be used, for example a breakfast presentation. You could also specify what type of people that will attend. For example whether it is marketers, competitors or managers.

3. Source of the information, make sure to ask Copilot where to get the data from. This is important because not only is it your job to ensure the quality of the result, but you might know that some sources are better in certain fields. You will notice that the sources are linked in the result as well, if you want to continue your research.

4. Expectations, define what you want out of the material, what sort of result should it create?

Customizing your prompts further

There are additional things that you need to think about in order to create better prompts, such as being rich with details. Remember to add the most important things first, it is valued higher, this is especially true when creating images.

Here is an example of the prompt "Create an image of the planet Mars"

This is the result of the prompt "Now create an image of the planet Mars, from the surface of the planet, where you can an early human settlement, do not include any people. The sky should be daytime."

You can also ask the AI to ask you controlling questions back to you before presenting the result. This increased content quality. You could ask Copilot to return five questions about the material as an example.

To shape the content further, ask the chatbot to take on certain personas. You could for instance ask it to act as an PR-expert to create a certain effect with the text.

Keep in mind that if you are logged in, you can save a history of previous chats. You can also attempt to regenerate the reply, by simply asking it to do so, you might then get a variation of the reply.

What to avoid

There are a few things to avoid when you work with the Copilot, these pointers will also help you make better decisions when taking the help from AI. 

1. Avoid math that you cannot check yourself afterwards, this is due to the probabilistic nature of the generative AI. It uses mathematical models to predict what the next "token" in a sentence is, such as a word or another small piece of data. You can in worst case get different results from the same question. Instead try to focus on outputting text and code for example.

2. Don't be too sparse with the details, it will negatively impact your results.

3. Don't upload information, data, images and so on that might be sensitive or personal.

Troubleshooting the output

If an error occurs you can try to figure out what could have been causing the mishap.

For this it is also important to know how Copilot works. First it searches, then a Large Language Model is used to summarize the content and then it is filtered and presented. 

You can ask yourself these questions when troubleshooting the result:

• Is there an issue with how the question was asked?
• Are there problems with the sources used? Can other sources be used instead?
• Was there something wrong at the search stage?
• Was there an issue with the summarizing stage?
• Did something happen when it was presented?

Different ways to use Copilot

One thing that I myself learned from the course was an efficient way to use Copilot in the sidebar together with Microsoft Office in the browser. This is handy as Copilot is not necessarily integrated into the Office programs that you install on your PC, at the time of this blogpost.

Use the sidebar AI in Microsoft Edge to analyse, summarize, correct or improve Word documents that you have open in the browser, when you are working in Office online. You can of course use it on other sites too and let it assist you in evaluating and working with different content. Another hack I like to use is to take a snippet and upload it, and ask questions about the content.

There is also a speech function and if you use it, you will notice that it speaks back to you.

For mobile they have a dedicated app for Copilot as well, it pretty much fills the same role there, a plus for using the app is that you can use the camera to identify objects for example or transcribe text that you take a photo of.

Summary

Let's wrap this post up by saying that Copilot has helped me a lot, both professionally and in private. Personally I use it as an advanced search engine sometimes, with whom I can discuss the results and ask clarifying questions. I also use it to generate PowerShell code these days, but I try to understand the concept before I ask it to produce the code, this is so that I can evaluate the result better. It is a philosophy of mine that it is better to have done something the hard way (or at least have tried) first, because it gives a better intuitions of the subject.

The course raised my awareness of the probabilistic side of the AI, which explains the interesting results that one sometimes gets. Remember to use the up and down thumb to continue to train the AI, so that it becomes better.

Enjoy!

Hardware: Building a gaming computer

Background

Just like the jedi knights of Star Wars needs to build their own lightsaber, we techies should build our own computer to get a greater understanding for the tech we use and because it is an interesting project and a test of our ability.

This is the second proper gaming desktop that I have, the first was a prebuild that lasted me for 10 years (with some repairs included), but this was before my career in IT. Now I wanted to take on the challenge of building my own gaming computer. As a sidenote the primary games I wanted to play with this new computer were Enlisted, Minecraft, World of Warcraft and Skyrim. Later on I also want to try GTA 5 and League of Legends.

Building was the quick part, while budgeting and planning was the slower part of the adventure. This will be a post about my observations and what I learned. 

Preparations

The decision to build a computer started roughly a year ago, or a bit more. I postponed it for two reasons, I needed to save up some money and I wanted to wait for prices to go down. Furthermore I was also not sure about the parts or even the process itself. So I started by putting together many various setups using the online tool at Inet where I would play around, see what the best parts would give me or how expensive some setups could be. Some setups would be around 2500 euros, which is a lot. So a part of the problem was knowing how much to scale down the computer in performance to lower the costs. It took quite a few sample builds before I realized what would be "good enough".

So my lesson for you is that you can save a lot of money on your build by adapting it for the realistic use case. Maxing everything out is probably fun and definitely expensive. It would future proof your build as well. Which is something you want to keep in mind. You could for example focus on getting parts that are modern, but not necessarily the best performers, to allow for reasonable upgrades in the future.  

So when it was finally time to pick out the parts I would use for my real build what I focused on was getting enough performance for my games and getting relatively modern pieces, this allowed me to cut the costs down to 1200 euro. I can still upgrade RAM, processor and add more storage for example.

These are the parts I ordered for my build, two of the small fans were never used.

• Chassi: Chieftec Pro Mini Svart
• Processor: AMD Ryzen 7 8700F 4.1 GHz 24MB
• Graphics card: ASRock Radeon RX 6600 8GB Challenger
• Motherboard: ASUS Prime B650M-R
• RAM: Kingston 32GB (2x16GB) DDR5 5200MHz CL36 FURY Beast AMD EXPO/Intel XMP 3.0
• Storage: Kingston KC3000 M.2 NVMe SSD Gen 4 512GB
• Big fans: Phanteks M25 140mm PWM Svart
• Small fans: Arctic P12 PWM Svart PST Svart
• CPU-cooler: Cooler Master Hyper 212 Black Edition
• Power supply: Chieftec Proton 750W

I chose 32 GB ram to give me ample of headroom, while allowing me to upgrade to 96 GB in the future. The NVMe on 512 GB allows me to quickly boot up the computer, store all of my games at the same time while still leaving me a bit of room. I have a whole slot that I can install a much larger storage into later as well. The CPU felt quite modern and it didn't come with integrated graphics, which means I am 100% reliant on the graphics card. 

Another part of the preparations was to create a bootable USB-drive with Windows 11 Pro, so that I instantly could install it once the computer was ready.

Building the computer

Seeing as this was the first build I had no complete desktop building experience to draw upon. Instead I had a bit of laptop maintenance experience and knowledge from general tinkering and exploring. 

The first step was to gather all the boxes with components and look it over, bringing a general screwdriver and a knife for opening the boxes. The general principle is to complete your motherboard first, before putting it into the chassis. 

So after unboxing what had to be unboxed right away, I put the CPU, RAM and SSD in place. The RAM was the easiest, just make sure to put it facing the right direction and that it fits the slot. The SSD is also quite easy once you know how to keep it in place, in this case I used a locking mechanism made from some type of plastic. The CPU was a bit interesting, make sure to align the corners properly and drop it in straight from above. Then you use the clasp to hold it in place, at this point a plastic cover flew off which I wasn't prepared for. Scary!

Once the CPU was equipped, I first used a default CPU cooler, it already had thermal paste on. But later when I had research the non-stock cooler I equipped it using thermal paste that comes with the cooler in a tube. The CPU cooler was relatively easy to install, the trick is to lower it down on top of the CPU in an even fashion to not create too much bubbles in the thermal paste. Remember to remove the plastic sticker covering the area that connects to the CPU. Fasten the screws a bit at a time, once again making sure to spread the pressure evenly until it sits properly against the CPU.

Next step was to prepare the chassis, I installed the backplate for the motherboard. The secret to installing this backplate is to push it out evenly from the inside, just make sure to align the holes correctly. The role of the backplate is to protect the computer, it can help with both heat and to some degree interference, it also offers extra stability.

Continuing on the journey I now installed the front fans. This was very tricky because it was a challenge to get the front cover off. If I could have traveled back in time, I would perhaps have installed it earlier. I also installed the chassis to the motherboard, along with the power supply. At times it was a bit tricky to see which component that needed which cable, and in some case it was difficult to connect them to the motherboard. Here I also could have done a better cable management job, by running some of the cables behind the motherboard (there is a space there). My advice is that if you are working in a dark chassis, bring plenty of light, a lamp on the forehead would have helped a lot.

Lastly I put in the graphics card, I noted that it looks like it sits upside down in this build and on the backside you only need to remove the sliders that makes room for the card's interface. The graphics card was relatively easy to install, in part thanks to a combination of a good enough chassis and that the PCIe-slot didn't cause any issues. The graphics card needs electricity too, so I connected the power to it from the power supply.

Finally I installed some additional fans (and it was after this that I installed the non-stock CPU cooler).

Setup, first time use and finishing touches

I must admit that the first time I started the computer, I stretched my arm out to the power button, just in case it would explode. But fortunately, it worked on the first go. However, I did not connect it to my main setup at this stage, I had a small touch screen connected just to get through the Windows 11 setup and then of course the USB drive with the operative system.

After making sure it was correctly setup and working, I brought it to my desk and connected it to the ethernet cable and monitor, along with peripherals. 

First thing to do was running Windows Update, downloading specific drivers and update the firmware.

When everything was set and done it was time to download games and start enjoying the product, and what a relief it was to finally be able to play the favorite games again on full graphics. As the games were installed on the desktop I could also remove the from my Framework 13, who had been struggling even at the lowest graphics. 

Flipper Zero: Ducky scripts

Yesterday I received my Flipper Zero and after a long wait I was ready to tinker away with it.

After capturing some infrared signals and replicating them, it was time to test the legendary Bad USB functionality.

The content of this post is based on the GitHub page.

The BadUsb app on the Flipper Zero uses extended Ducky script syntax which is compatible with the classic USB Rubber Ducky 1.0 language but with extra components such as custom USB ID (how the keyboard is identified), ALT-codes (pressing ALT and numbers on the numpad) and the old SYSRQ command. Both \n and \r\n line endings are supported, empty lines are allowed and you can use spaces or tabs for line indentation.

The script is written in simple .txt files and can be copied over to the Flipper Zero using the Windows app for example, and it must be located in the correct Bad USB folder.

To use the Bad USB function, make sure to have a USB-C to USB-A cable that you connect between the Flipper and the computer that you want to run your script on.

Navigate to "Bad USB" in the main menu, select the script that you want to execute and then press run.
Almost instantly it will execute the keypresses that you preprogrammed.

Here is a simple example that helps you start a PowerShell window with administrative privileges.

GUI r
DELAY 500
STRING powershell
CTRL-SHIFT ENTER
DELAY 500
ALT Y
DELAY 500
STRING write-host "This script is running as admin"
ENTER

Spoof keyboard ID

You can set the custom ID of the Flipper USB HID device. ID command should be in the **first line** of script, it is executed before script run. VID and PID are hex codes and are mandatory. Manufacturer and Product are text strings and are optional.

ID, VID:PID Manufacturer:Product        

Example: "ID 1234:abcd Flipper Devices:Flipper Zero".

Delay, comments, holding down

DELAY, one delay value in ms

DEFAULT_DELAY, delay value in ms before every next command

DEFAULTDELAY, alternative to DEFAULT_DELAY

REM, commenting is done by writing REM followed by a single line of text

HOLD, press and hold key until RELEASE command. Up to 5 keys can be held at the same time.

RELEASE, release key

Arrow keys

DOWNARROW / DOWN

LEFTARROW / LEFT

RIGHTARROW / RIGHT

UPARROW / UP

Various buttons

APP, same as MENU, context menu key (right-clicking)

BACKSPACE

BREAK

CAPSLOCK

DELETE

END

ENTER

ESCAPE / ESC

Fx, F1-F12 keys

HOME

INSERT

MENU, same as APP, context menu key (right-clicking)

NUMLOCK

PAGEDOWN

PAGEUP

PAUSE

PRINTSCREEN

SCROLLLOCK

SPACE

TAB

You can combine the following with a special key command or a single character.

CONTROL / CTRL

SHIFT

ALT

WINDOWS / GUI, the Windows key

CTRL-ALT, ctrl plus alt

CTRL-SHIFT, ctrl plus shift

ALT-SHIFT, alt plus shift

ALT-GUI, alt plus the Windows key

GUI-SHIFT, the Windows key plus shift

GUI-CTRL, the Windows key plus ctrl

Strings and delay between keypresses

STRING, print text string, such as writing something in a terminal

STRINGLN, print text string and press enter after it

STRING_DELAY, delay value in ms which is applied once to next appearing STRING command

STRINGDELAY, an alternative to STRING_DELAY  

DEFAULT_STRING_DELAY, delay value in ms, applied to every appearing STRING command

DEFAULTSTRINGDELAY, alternative to DEFAULT_STRING_DELAY

REPEAT   Number of additional repeats  Repeat previous command

WAIT_FOR_BUTTON_PRESS, will wait for the user to press a button to continue script execution. Will wait indefinitely for a button to be pressed.

On Windows and some Linux systems, you can print characters by holding ALT key and entering its code on Numpad.

ALTCHAR, print single character

ALTSTRING, print text string using ALT+Numpad method

ALTCODE, same as ALTSTRING, presents in some Duckyscript implementations

Send SysRq command, which is a way to interact with the computer even in a frozen state.

SYSRQ, single character

Media keys

Some Media/Consumer Control keys can be pressed with "MEDIA" command

MEDIA, used with commands in the list below:

POWER

REBOOT

SLEEP

LOGOFF

EXIT

BRIGHT_UP, brightness up

BRIGHT_DOWN, brightness down

HOME

BACK

FORWARD

REFRESH

SNAPSHOT, take photo in a camera app

PLAY

PAUSE

PLAY_PAUSE

NEXT_TRACK

PREV_TRACK

STOP

EJECT

MUTE

VOLUME_UP

VOLUME_DOWN

FN, Fn/Globe key on Mac keyboard

GLOBE, special key or single character (Fn/Globe key commands for Mac/iPad)

PowerShell: Scan wifi range

This app was inspired by the project Wigle, where you can locate wifi routers in the world.

The script uses some functions for signal strength, some simple math for calculating approximate distance and Windows Forms for the GUI.

In this version the buttons have been created using a function, instead of hard coding every attribute for each button. It doesn't require admin rights to run. It does however require you to place the image file in the same directory and point the script toward it so you get a cool background image.

I was also able to package it into a .exe so it could be run as an app, using Iexpress. 

Enjoy!

<# Prerequisites #>

Add-Type -AssemblyName System.Windows.Forms 

Add-Type -AssemblyName System.Drawing

<# Main Form #>

$Form_Main_Window = New-Object System.Windows.Forms.Form

$Form_Main_Window.Size = New-Object system.drawing.size(670,400)

$Form_Main_Window.Text = "Wifi Tool 1.0"

$Form_Main_Window.FormBorderStyle = "FixedDialog"

$Form_Main_Window.StartPosition = "CenterScreen"

$Form_Main_Window.ForeColor = [System.Drawing.Color]::LightGreen;

$Form_Main_Window.BackColor = [System.Drawing.Color]::Black;

$Form_Main_Window.MaximizeBox = $False

$Img_Background = "$PSScriptRoot\background_network.png"

$Form_Main_Window.BackgroundImage = [System.Drawing.Image]::FromFile($Img_Background)

$Form_Main_Window.BackgroundImageLayout = [System.Windows.Forms.ImageLayout]::Stretch

function Set-StatusText {

    param ([string]$StatusText)

    $Txt_Status_Box.Text = $StatusText

}

function Create-Button {

    param (

        [string]$Text,[System.Drawing.Point]$Location,[System.Drawing.Size]$Size,[scriptblock]$ClickAction        

    )

    $button = New-Object System.Windows.Forms.Button

    $button.Text = $Text

    $button.Location = $Location

    $button.Size = New-Object System.Drawing.Size(100,20)

    $button.ForeColor = [System.Drawing.Color]::LightGreen

    $button.BackColor = [System.Drawing.Color]::Black

    $button.TextAlign = "MiddleLeft"

    if ($ClickAction) {

        $button.Add_Click($ClickAction)

    }

    return $button

}

function Scan-Wifi {

    param (

        [string]$wifiName

    )

    

    $wifi_data_in = netsh wlan show networks mode=bssid

    $wifi_signal_percentage = $null

    $wifi_data_in -split "`r?`n" | ForEach-Object {

        if ($_ -match '^SSID\s+\d+\s*:\s*(.+)$') {

            $ssid = $matches[1]

        }

        elseif ($_ -match '^\s*Signal\s*:\s*(\d+)%\s*$') {

            $signal = $matches[1]

            if ($ssid -eq $wifiName) {

                $wifi_signal_percentage = [int]$signal

            }

        }

    }

    return $wifi_signal_percentage

}

function Calculate-Distance {

    $percentage = Scan-Wifi -wifiName $Txt_Target_Box.Text;

    if (-not $percentage) {

        Set-StatusText -StatusText "Couldn't calculate distance"

        }

    $twodotfour = 150 - ($percentage * 1.5);

    $five = 70 - ($percentage * 0.7);

    $six = 50 - ($percentage * 0.5);

    return "`r`nSignal strength: $percentage%`r`n2.4 Ghz: $twodotfour meters`r`n5 Ghz: $five meter`r`n6 Ghz: $six meters";

}

function Scan-AllWifi {

    Set-StatusText -StatusText "Scanning nearby wifis";

    $wifi_data_in = netsh wlan show networks mode=bssid

    $results = @()

    $wifi_data_in -split "`r?`n" | ForEach-Object {

        if ($_ -match '^SSID\s+\d+\s*:\s*(.+)$') {

            $ssid = $matches[1]

        }

        elseif ($_ -match '^\s*Signal\s*:\s*(\d+)%\s*$') {

            $signal = $matches[1]

            if ($ssid) {$results += [PSCustomObject]@{SSID   = $ssid; Signal = "$signal%"}}

        }

    }

    # Filter, Sort, and Format the results in one step

    $outputText = ($results | Where-Object { -not [string]::IsNullOrWhiteSpace($_.SSID) } | 

                   Sort-Object -Property Signal -Descending | 

                   ForEach-Object {"{0,-30} {1,-10}" -f $_.Signal,$_.SSID}) -join "`r`n"

    # Save to file and update textbox

    $Txt_Main_Box.Text = $outputText

    Set-StatusText -StatusText "Log file created. Mainbox updated.";

}

function Loop-Scan {

    if ($Txt_Status_Box.Text -ne "Scanning") {

    # If not already scanning, set scanning status #

    Set-StatusText -StatusText "Scanning";

    # Loop the scan and update the meter #

    for ($i = 1; $i -le [int]$Txt_Loop_Box.Text; $i++) {$target_output = Scan-Wifi -wifiName $Txt_Target_Box.Text; $ProgressBar.Value = $target_output; Start-Sleep -Milliseconds 1500;}

    # Mark scanning as complete #

    Set-StatusText -StatusText "Scan complete";

    } else {

    Set-StatusText -StatusText "Scanning attempt failed"

    }

}

function Scan-Target {

    $Txt_Main_Box.Text = Calculate-Distance; 

    $target_output = Scan-Wifi -wifiName $Txt_Target_Box.Text;

    $ProgressBar.Value = $target_output;

    Set-StatusText -StatusText "Target was scanned";

}

function Quick-Export {

$Txt_Main_Box.Text | Out-File -FilePath "$PSScriptRoot\Wifi-log.txt";

Set-StatusText -StatusText "Quick export clicked";

}

function QuickImport-Log {

# File dialog or just quick import? #

Set-StatusText -StatusText "Quick import button clicked";

$ImportFile = Get-Content -Path $PSScriptRoot\wifi-log.txt -Delimiter "%";

$Txt_Main_Box.Text = $ImportFile;

}

function Export-ResultAs {

    Set-StatusText -StatusText "Export as clicked";

    $SaveFile_Window = New-Object System.Windows.Forms.SaveFileDialog;

    $SaveFile_Window.Filter = "Text files (*.txt)|*.txt";

    $SaveFile_Window.FileName = "wifi-log-custom.txt"

    $Export_File = $Null;

    if ($SaveFile_Window.ShowDialog() -eq [System.Windows.Forms.DialogResult]::OK) {$Export_File = $SaveFile_Window.FileName};

    if($Export_File) {$Txt_Main_Box.text | Out-File $Export_File};

}

function Import-Log {

    Set-StatusText -StatusText "Import log button clicked.";

    $ImportFile_Window = New-Object System.Windows.Forms.OpenFileDialog;

    $ImportFile_Window.Filter = "Text files (*.txt)|*.txt";

    $ImportFile = $null

    if ($ImportFile_Window.ShowDialog() -eq [System.Windows.Forms.DialogResult]::OK) {

        $ImportFile = $ImportFile_Window.FileName;

        $Txt_Main_Box.Text = Get-Content -Path $ImportFile -Raw}

    }

function Reset-App {

Set-StatusText -StatusText "Reset button clicked"; 

$Txt_Main_Box.Text = ""; 

$Txt_Target_Box.Text = ""; 

$ProgressBar.Value = 0;

}

function Exit-App {

Set-StatusText -StatusText "Closing"; 

$Form_Main_Window.Close();

}

<# Main textbox #>

$Txt_Main_Box = New-Object System.Windows.Forms.TextBox

    $Txt_Main_Box.Location = New-Object System.Drawing.Size (50,50)

    $Txt_Main_Box.Size = New-Object System.Drawing.Size (395,260)

    $Txt_Main_Box.Text = "Scan to populate"

    $Txt_Main_Box.Multiline = $True

    $Txt_Main_Box.ForeColor = [System.Drawing.Color]::LightGreen;

    $Txt_Main_Box.BackColor = [System.Drawing.Color]::Black;

    $Form_Main_Window.Controls.Add($Txt_Main_Box)

<# Status textbox #>

$Txt_Status_Box = New-Object System.Windows.Forms.TextBox

    $Txt_Status_Box.Location = New-Object System.Drawing.Size (50,320)

    $Txt_Status_Box.Size = New-Object System.Drawing.Size (200,20)

    $Txt_Status_Box.Text = "App is running. Awaiting input."

    $Txt_Status_Box.Multiline = $True

    $Txt_Status_Box.ForeColor = [System.Drawing.Color]::LightGreen;

    $Txt_Status_Box.BackColor = [System.Drawing.Color]::Black;

    $Form_Main_Window.Controls.Add($Txt_Status_Box)

<# Target textbox #>

$Txt_Target_Box = New-Object System.Windows.Forms.TextBox

    $Txt_Target_Box.Location = New-Object System.Drawing.Size (560,80)

    $Txt_Target_Box.Size = New-Object System.Drawing.Size (100,20)

    $Txt_Target_Box.Text = "Enter a wifi name"

    $Txt_Target_Box.ForeColor = [System.Drawing.Color]::LightGreen;

    $Txt_Target_Box.BackColor = [System.Drawing.Color]::Black;

    $Form_Main_Window.Controls.Add($Txt_Target_Box)

    $Form_Main_Window.Add_Shown({

    $Txt_Target_Box.Focus()

    $Txt_Target_Box.SelectAll()

    })

<# Scan N textbox #>

$Txt_Loop_Box = New-Object System.Windows.Forms.TextBox

    $Txt_Loop_Box.Location = New-Object System.Drawing.Size (560,110)

    $Txt_Loop_Box.Size = New-Object System.Drawing.Size (50,20)

    $Txt_Loop_Box.Text = "10"

    $Txt_Loop_Box.Multiline = $True

    $Txt_Loop_Box.ForeColor = [System.Drawing.Color]::LightGreen;

    $Txt_Loop_Box.BackColor = [System.Drawing.Color]::Black;

    $Form_Main_Window.Controls.Add($Txt_Loop_Box)

<# Progress bar #>

$ProgressBar = New-Object System.Windows.Forms.ProgressBar

    $ProgressBar.Minimum = 0

    $ProgressBar.Maximum = 100

    $ProgressBar.Value = 0

    $ProgressBar.Location = New-Object System.Drawing.Point(50,10)

    $ProgressBar.Size = New-Object System.Drawing.Size(200,20)

    $ProgressBar.Style = "Continuous"

    $ProgressBar.Text

    $ProgressBar.ForeColor = [System.Drawing.Color]::Green

    $ProgressBar.BackColor = [System.Drawing.Color]::Red

    $Form_Main_Window.Controls.Add($ProgressBar)

<# Label for progress bar #>

$Lbl_ProgressBar = New-Object System.Windows.Forms.Label;

    $Lbl_ProgressBar.Location = New-Object System.Drawing.Point(255,10);

    $Lbl_ProgressBar.Size = $ProgressBar.Size;

    $Lbl_ProgressBar.Text = "Signal strength";

    $Lbl_ProgressBar.TextAlign = "MiddleLeft";

    $Lbl_ProgressBar.ForeColor = [System.Drawing.Color]::DarkGreen;

    $Lbl_ProgressBar.BackColor = [System.Drawing.Color]::Transparent;

    $Form_Main_Window.Controls.Add($Lbl_ProgressBar);

<# Scan all button #>

$Btn_Scan_All = Create-Button -Text "Scan All" -Location (New-Object System.Drawing.Point 450, 50) -ClickAction { Scan-AllWifi }

$Form_Main_Window.Controls.Add($Btn_Scan_All)

<# Scan target button #>

$Btn_Scan_Specific = Create-Button -Text "Scan target ->" -Location (New-Object System.Drawing.Point 450, 80) -ClickAction { Scan-Target }

$Form_Main_Window.Controls.Add($Btn_Scan_Specific)

<# Loop scan button #>

$Btn_Loop_Scan = Create-Button -Text "Loop scan ->" -Location (New-Object System.Drawing.Size 450,110) -ClickAction { Loop-Scan }

$Form_Main_Window.Controls.Add($Btn_Loop_Scan)

<# Quick Export button #>

$Btn_Quick_Export = Create-Button -Text "Quick Export" -Location (New-Object System.Drawing.Point 450, 200) -ClickAction { Quick-Export }

$Form_Main_Window.Controls.Add($Btn_Quick_Export)

<# Import Quick button #>

$Btn_Quick_Import = Create-Button -Text "Quick Import" -Location (New-Object System.Drawing.Point 555, 200) -ClickAction { QuickImport-Log }

$Form_Main_Window.Controls.Add($Btn_Quick_Import)

<# Export As button #>

$Btn_Export_As = Create-Button -Text "Export As" -Location (New-Object System.Drawing.Point 450, 230) -ClickAction { Export-ResultAs }

$Form_Main_Window.Controls.Add($Btn_Export_As)

<# Import specific button #>

$Btn_Import = Create-Button -Text "Import Log" -Location (New-Object System.Drawing.Point 555, 230) -ClickAction { Import-Log }

$Form_Main_Window.Controls.Add($Btn_Import)

<# Reset button #>

$Btn_Reset = Create-Button -Text "Reset" -Location (New-Object System.Drawing.Point 450, 260) -ClickAction { Reset-App }

$Form_Main_Window.Controls.Add($Btn_Reset)

<# Exit button #>

$Btn_Exit = Create-Button -Text "Exit App" -Location (New-Object System.Drawing.Point 450, 290) -ClickAction { Exit-App }

$Form_Main_Window.Controls.Add($Btn_Exit)

<# Display the window #>

$Form_Main_Window.ShowDialog()