学长给的一道题

打开压缩包后发现一个pcap和一个加密文件
先把pcap在linux里面分离一下

里面是摩斯电码,解码后得到password2
显然还有密码1,那我们还是在pacp里面找找

看到USB想到USB键鼠
直接在github里面下载wangyihang大佬的脚本

#!/usr/bin/env pythonimport sys
import osDataFileName = "usb.dat"presses = []normalKeys = {"04":"a", "05":"b", "06":"c", "07":"d", "08":"e", "09":"f", "0a":"g", "0b":"h", "0c":"i", "0d":"j", "0e":"k", "0f":"l", "10":"m", "11":"n", "12":"o", "13":"p", "14":"q", "15":"r", "16":"s", "17":"t", "18":"u", "19":"v", "1a":"w", "1b":"x", "1c":"y", "1d":"z","1e":"1", "1f":"2", "20":"3", "21":"4", "22":"5", "23":"6","24":"7","25":"8","26":"9","27":"0","28":"<RET>","29":"<ESC>","2a":"<DEL>", "2b":"\t","2c":"<SPACE>","2d":"-","2e":"=","2f":"[","30":"]","31":"\\","32":"<NON>","33":";","34":"'","35":"<GA>","36":",","37":".","38":"/","39":"<CAP>","3a":"<F1>","3b":"<F2>", "3c":"<F3>","3d":"<F4>","3e":"<F5>","3f":"<F6>","40":"<F7>","41":"<F8>","42":"<F9>","43":"<F10>","44":"<F11>","45":"<F12>"}shiftKeys = {"04":"A", "05":"B", "06":"C", "07":"D", "08":"E", "09":"F", "0a":"G", "0b":"H", "0c":"I", "0d":"J", "0e":"K", "0f":"L", "10":"M", "11":"N", "12":"O", "13":"P", "14":"Q", "15":"R", "16":"S", "17":"T", "18":"U", "19":"V", "1a":"W", "1b":"X", "1c":"Y", "1d":"Z","1e":"!", "1f":"@", "20":"#", "21":"$", "22":"%", "23":"^","24":"&","25":"*","26":"(","27":")","28":"<RET>","29":"<ESC>","2a":"<DEL>", "2b":"\t","2c":"<SPACE>","2d":"_","2e":"+","2f":"{","30":"}","31":"|","32":"<NON>","33":"\"","34":":","35":"<GA>","36":"<","37":">","38":"?","39":"<CAP>","3a":"<F1>","3b":"<F2>", "3c":"<F3>","3d":"<F4>","3e":"<F5>","3f":"<F6>","40":"<F7>","41":"<F8>","42":"<F9>","43":"<F10>","44":"<F11>","45":"<F12>"}def main():# check argvif len(sys.argv) != 2:print("Usage : ")print("        python UsbKeyboardHacker.py data.pcap")print("Tips : ")print("        To use this python script , you must install the tshark first.")print("        You can use `sudo apt-get install tshark` to install it")print("Author : ")print("        WangYihang <wangyihanger@gmail.com>")print("        If you have any questions , please contact me by email.")print("        Thank you for using.")exit(1)# get argvpcapFilePath = sys.argv[1]# get data of pcapos.system("tshark -r %s -T fields -e usb.capdata 'usb.data_len == 8' > %s" % (pcapFilePath, DataFileName))# read datawith open(DataFileName, "r") as f:for line in f:presses.append(line[0:-1])# handleresult = ""for press in presses:if press == '':continueif ':' in press:Bytes = press.split(":")else:Bytes = [press[i:i+2] for i in range(0, len(press), 2)]if Bytes[0] == "00":if Bytes[2] != "00" and normalKeys.get(Bytes[2]):result += normalKeys[Bytes[2]]elif int(Bytes[0],16) & 0b10 or int(Bytes[0],16) & 0b100000: # shift key is pressed.if Bytes[2] != "00" and normalKeys.get(Bytes[2]):result += shiftKeys[Bytes[2]]else:print("[-] Unknow Key : %s" % (Bytes[0]))print("[+] Found : %s" % (result))# clean the temp dataos.system("rm ./%s" % (DataFileName))if __name__ == "__main__":main()

在Linux里面发布命令

python UsbKeyboardDataHacker.py ./example.pcap

解出password1
最后合并password1,2,得到密码,打开图片

但是我们看他的名字,明显是隐写工具wbs43open打开这个图片,得到flag

[MISC]USB键鼠流量相关推荐

  1. HID设备(USB键鼠/扫码枪)转串口(UART)键盘键值及字符处理示例——CH9350

    CH9350是USB键盘鼠标转串口通讯控制芯片,需成对使用.结合异步串口简单易用的特点,实现将USB键盘鼠标和USB主机之间USB通讯方式扩展为异步串口(UART)的方式.这个芯片可以拿来做USB的H ...

  2. ESXi直通USB键鼠

    使用ESXi时,我们有时会直通网卡或者显卡给虚拟机使用,让虚拟机独占该物理设备,减少虚拟化造成的性能损耗,相关教程网上也比较多.今天我们来尝试下直通USB键鼠,这样虚拟的桌面系统(Windows,Li ...

  3. usb扩展坞同时接键盘鼠标_一种带有扩展坞功能的一体式键鼠的制作方法

    一种带有扩展坞功能的一体式键鼠的制作方法 [技术领域] [0001]本实用新型涉及加固计算机技术领域,具体涉及一种带有扩展坞功能的一体式键 ea啦O [背景技术] [0002]随着加固计算机技术的不断 ...

  4. USB转蓝牙hid键鼠按键精灵控制手机虚拟键盘、虚拟触摸等功能

    #USB转蓝牙hid键鼠按键精灵控制手机虚拟键盘.虚拟触摸等功能 提示:目的是为了实现通过电脑控制,达到手机虚拟触摸的功能 简单介绍 提示:开放协议,可再行开发,提供C# python c++ 等开发 ...

  5. 智能USB对拷线,苹果MAC与WIN10系统共享键鼠解方案,两台电脑共享一套键盘与鼠标且资料互传,工作电脑与办公电脑数据互换,多系统多平台共享数据传输,AIMOS AM-PC11H

    AIMOS AM-PC11H   智能USB对拷线,苹果MAC与WIN10系统共享键鼠解方案;两台电脑共享一套键盘与鼠标; AIMOS智能USB对拷线 可实现两台电脑间资料直接互传,无需借助U盘或硬盘 ...

  6. usb键码转linux键值,CH554串口接收数据转USB键值程序 CH559模拟USB复合设备,键鼠,支持类命令...

    /********************************** (C) COPYRIGHT ******************************* * File Name        ...

  7. 手机键鼠映射软件_吃鸡,我最专业!---盖世小鸡键鼠吃鸡套装评测

    Hello大家好,欢迎浏览这篇评测贴.首先很荣幸能够参与本期的评测,毕竟如此炫酷富有科技感的装备是可遇而不可求的,所以不论是得知入选还是收到快递开箱的时候,心情都是无比激动.话不多说,接下来就让我带你 ...

  8. 2.4g 无线键鼠对码软件_RK526无线键鼠套装开箱体验

    不愧是你,RK.那个把性价比这一块拿捏得死死的.先前,才刚推出300出头的RK84三模无线机械键盘,具备2.4G.蓝牙.有线三种连接方式,还是搭载使用CHERRY MX轴体,可以说,这价位84键机械键 ...

  9. windows和linux共用蓝牙鼠标,双系统共用蓝牙键鼠(win10+macOS)

    双系统共用蓝牙键鼠(win10+macOS) 前言: 在使用双系统的时候,小兵就经常遇到一个小问题:每次从一个系统启动到另外一个系统,蓝牙键鼠一直得重新连接,特别麻烦!虽然问题不大,但是总觉得心里有疙 ...

最新文章

  1. JS 添加网页桌面快捷方式的代码
  2. java 实体 text字段,如何在Java中修剪对象的某些字段?
  3. Ansible — 编程 — 条件与循环
  4. Oracle生成指定表的列名,并前后添加select from
  5. KEIL MDK 仿真时程序”乱跑“问题
  6. matlab多项式相乘的法则_卷积计算与多项式乘法
  7. 恢复误删数据(SQL Server 2000)--Log Explorer
  8. 网络基础知识--子网划分
  9. NLTK基础 | 一文轻松使用NLTK进行NLP任务(附视频)
  10. 深入理解Linux异步I/O框架 io_uring
  11. 2560x1600分辨率高吗_做设计还弄不清分辨率和像素之间的关系,来了解下他们是怎么换算...
  12. 笔试题Python解决
  13. 计算机基础知识_计算机基础知识汇总
  14. Buffer.concat()
  15. 阶段1 语言基础+高级_1-3-Java语言高级_06-File类与IO流_07 缓冲流_3_BufferedInputStream_字节缓冲...
  16. ARM开发7.3.1 基础实训( 1 ) 单个按键的输入系统设计( 1 )--LPC21XX
  17. shell 命令 cmd命令
  18. 视频--Pr 第一个剪辑
  19. MacOS使用技巧总结
  20. STM32-GPRS模块连接系统主站

热门文章

  1. 有一种自卑叫自信,有一种跌倒叫爬起。
  2. SDK(3)讯飞语音
  3. python去哪里找工作比较好_Python学到哪水平可去找工作?没工作经验没学历怎么找?我教你...
  4. 买卖股票的最好时机(一、二)
  5. php5.5 zend optimizer,PHP5.3以上版本安装ZendOptimizer扩展
  6. jstree中复选框的使用
  7. Linux基本命令用法(最基本的emmm)
  8. vmware 安装 centos
  9. 基于浪潮“源1.0”的AI反诈项目:看高智商AI如何反杀诈骗犯
  10. vue 选择日期控件