There are a ton of USB devices on the market or at any number of DIY websites that allow users to inject custom script for everything from data acquisition to automation. It seems as if most of these types of devices are used to carry out HID (Human Interface Device) attacks, keystroke data logging, monitoring incoming/outgoing traffic, or other illegal applications and exploitations. Rubber Ducky, PCsync, and USB Kill are prime examples of devices designed for illicit activities.
A new USB device from Switzerland-based Rawcoon joins that pile of fine-line (legal/illegal) hardware and claims to “automate anything you want,” by merely plugging it into any available port.
“Rawcoon is a USB device that presents itself to the computer as a keyboard. It sends keystrokes to open a terminal, download your script and execute it. Rawcoon has an infinity of usages - anything you can imagine writing a shell script. Though powerful, Rawcoon is surprisingly easy to use.”
While users can write their own shell scripts, there is nothing preventing them from tasking Ruby, Python, or even native binaries if needed. As with most any USB automation devices, there are drawbacks to employing the technology. In the case of the Rawcoon, the PC it’s used with must have an internet connection, as the device is used in conjunction with an app that stores scripts in user accounts rather than locally.
That said, the Rawcoon is compatible with Windows 10, Linux (all distributions with GNOME/MATE desktop), BSD (with GNOME/MATE desktop, and Macc OS, as well as QWERTY, QWERTZ, and AZERTY keyboard layouts. The Rawcoon USB automation device is now available on eBay for $16.49, and ships free worldwide.