dogtopus/outpoke5.py

## outpoke5.py
#!/usr/bin/env python3

import hid
import os
import contextlib
import time

if __name__ == '__main__':
    with contextlib.closing(hid.device()) as dev:
        dev.open(0x054c, 0x0ce6)
        #print(hid.enumerate())
        #exit()
        #dev.open_path(b'0001:002a:00')
        flags = bytes.fromhex('0f00')
        data = bytes.fromhex('ffff00000000000006ff010000000000000000230f080000000000000000000000000000000000000000000000')
        for i in range(len(data)):
            print(f'Zeroing out {i} bytes in payload')
            data_actual = flags + b'\x00' * i + data[i:]
            print(data_actual.hex())
            dev.write([0x02] + list(data_actual))
            input('Press Enter to zero out 1 byte...')

## urandom_hell.py
#!/usr/bin/env python3

import hid
import os
import contextlib
import time

if __name__ == '__main__':
    with contextlib.closing(hid.device()) as dev:
        dev.open(0x054c, 0x0ce6)
        while True:
            data = os.urandom(47)
            print(data.hex())
            dev.write([0x02] + list(data))
            time.sleep(0.5)
	#!/usr/bin/env python3

	import hid
	import os
	import contextlib
	import time

	if __name__ == '__main__':
	with contextlib.closing(hid.device()) as dev:
	dev.open(0x054c, 0x0ce6)
	#print(hid.enumerate())
	#exit()
	#dev.open_path(b'0001:002a:00')
	flags = bytes.fromhex('0f00')
	data = bytes.fromhex('ffff00000000000006ff010000000000000000230f080000000000000000000000000000000000000000000000')
	for i in range(len(data)):
	print(f'Zeroing out {i} bytes in payload')
	data_actual = flags + b'\x00' * i + data[i:]
	print(data_actual.hex())
	dev.write([0x02] + list(data_actual))
	input('Press Enter to zero out 1 byte...')