Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wireless Aerial Surveillance Platform W.A.S.P. DEFCON 19.

Published byBryce Mosley Modified over 8 years ago

Similar presentations

Presentation on theme: "Wireless Aerial Surveillance Platform W.A.S.P. DEFCON 19."— Presentation transcript:

1 Wireless Aerial Surveillance Platform W.A.S.P. DEFCON 19

2 Who we are.

3 “Dude, I have an idea…” Build a UAV Provide remote penetration testing capabilities Useable flight time (~1 hour) Man portable Design Philosophy Low cost Utilize open source and off-the-shelf components Focus on system integration not component design Easily repeatable by anyone

4 So what is it?

5

6 FMQ-117B U.S. Army surplus target drone Foam contruction ~14 pound take-off weight E-Flite 90 brushless out runner motor Castle Creations Phoenix 85HV ESC 17”x10”electric propeller 2x 6 cell 22.2v 5000mAh LiPo batteries

7

8 JR Spektrum Dx6i Transmitter and Receiver 2.4GHz DIY Drones ArduPilot ArduShield XY&Z Infrared sensors Various servos XBee Pro with AdaFruit adapter 900MHz Telemetry downlink

9

10

11 Via Epia PX5000eg Pico-ITX motherboard 1 GHz Via C7 CPU 1GB ram 32GB Voyager GTR Flash drive Backtrack 5 USB 4G dongle Internet connection OpenVPN connection to Backend Session Initiation Protocol (SIP) back haul XBee Pro module 900MHz PPP tunnel to Base Station Universal Serial Radio Peripheral (USRP)

12

13 Gumstix Overo Earth ARM Cortex-A8 600Mhz Chestnut43 add-on module 4.3” touchscreen display XBee Pro 900MHz PPP tunnel to the payload DIY Drones ArduStation XBee Pro 900MHz Telemetry down-link from Ardupilot Asus WL-330gE Wi-Fi Access Point Allows easy and direct access to payload

14 Intel P4 3.06GHz HT Processor 4GB Memory 500GB Hard Drive NVIDIA GTX 470 CUDA Processor Software Pyrit ~19,300 Pairwise Master Keys (PMKs) / second Asterisk WPA Brute Force Dictionary 4 GB 354,638,643 Entries 4.5 hours to process entire dictionary against WPA handshake OpenVPN Server

15 Yes, but what does it do?

16 Base Station Telemetry Data UAV Downlink Internet VPN to Off-Airframe Processing Backend Systems

17

18 Movie goes here

19 Base station Telemetry Wi-Fi Accessibility “WASP – Base Station” access point Backtrack 5 based payload Kismet Aircrack, Airbase-ng, all the BT5 tools Universal Software Radio Peripheral (USRP) GNU Radio, OpenBTS IMSI Catcher

20

21 How much is this going to cost me?

22 Airframe Free Payload ~ $640 USRP ~ $1600 Avionics & R/C ~ $800 Power-plant ~ $800

23 Gumstix Overo Earth ~ $350 ArduStation ~ $100 Wi-Fi AP ~ $50 7 port USB Hub $40 Project Box ~ $10

24 Generic x86 PC ~ $600 NVIDIA Video Card ~ $300

25 Cost So Far~$5960.00 + Misc. Costs~$500.00 Total Cost~$6190.00 Not counting mistakes

26 Mistakes cost money. Save some by using ours.

27 Looking ahead 3 steps or more Poor choices today can limit tomorrow’s potential You will crash, learn from your failures Good / Bad decisions MIG vs. EasyStar VIA Epia vs. ARM payload Propeller size Attitude sensor location

28 This has no custom parts. Everything is easily available online The average enthusiast can build and operate this This is what we came up with, not the limit of possibilities

29 People automatically assume you are an evil bastard trying to destroy their hobby / job / life Online communities can see you as a potential threat, so don’t expect a lot of hugs and kisses We received threats that we were going to be reported to the FAA, FCC, FBI, NSA, NAACP, AARP, GI-Joe, the Air Force, Air Traffic Control and our moms if we didn’t stop ruining it for everybody

30 It’s never as hard as it seems, or as easy as it looks Unforeseen issues take up time & money You will crash Do not expect perfection the first time Cheap is a relative term

31 »Chris Paget’s Defcon 18 “Practical Cellphone Spying” talk https://www.defcon.org/html/de fcon-18/dc-18- speakers.html#Paget https://www.defcon.org/html/de fcon-18/dc-18- speakers.html#Paget »DIY Drones – ArduPilot / ArduStation http://www.diydrones.com »Backtrack – Penetration Testing Tools Distribution http://www.backtrack- linux.org/ http://www.backtrack- linux.org/ »Basic Micro – Power Supplies http://www.basicmicro.com/ Gateway Electronics St Louis – Electronics & Components http://www.gatewaycatalog.com/ Gumstix – Ultra-small ARM based Computers & Accessories http://www.gumstix.com/ Horizon Hobby – R/C Supplies http://www.horizonhobby.com/ Sparkfun – Xbees, antennas and more http://www.sparkfun.com/commerce/cate gories.php http://www.sparkfun.com/commerce/cate gories.php VIA – PICO-ITX motherboards http://www.via.com.tw/en/initiatives/spe arhead/pico-itx/ http://www.via.com.tw/en/initiatives/spe arhead/pico-itx/ Dr. Henry Kelly’s research http://www.fas.org/ssp/docs/030602- kellytestimony.htm http://www.fas.org/ssp/docs/030602- kellytestimony.htm

32 Dave Farquhar Editor Extraordinaire Our significant others For being very understanding and putting up with countless hours spent not paying attention to them.

33 https://www.rabbit-hole.org

34 New Airframe Larger wings, better glide slope More energy efficient Head tracking IR camera Live operator tracking Power plant Hybrid Solar Fuel Cell

Download ppt "Wireless Aerial Surveillance Platform W.A.S.P. DEFCON 19."

Similar presentations

Chapter 3 Computer Hardware and Peripherals: Your Digital Toolbox

Chapter 3 Computer Hardware and Peripherals: Your Digital Toolbox
Intel Do-It-Yourself Challenge : Let’s build an autonomous drone Paul Guermonprez Intel.

Intel Do-It-Yourself Challenge : Let’s build an autonomous drone Paul Guermonprez Intel.
Internet of Things with Intel Edison Presentation Paul Guermonprez Intel Software 2014-11-14.

Internet of Things with Intel Edison Presentation Paul Guermonprez Intel Software
Parth Kumar ME5643: Mechatronics UAV ATTITUDE AND HEADING HOLD SYSTEM.

Parth Kumar ME5643: Mechatronics UAV ATTITUDE AND HEADING HOLD SYSTEM.
AA241x Spring 2015 Adrien Perkins H ARDWARE AND S OFTWARE O VERVIEW.

AA241x Spring 2015 Adrien Perkins H ARDWARE AND S OFTWARE O VERVIEW.
AEM 5333 Search and Surveillance. Mission Description Overhead surveillance and tracking Humans on foot Moving vehicles Onboard GPS transceiver Onboard.

AEM 5333 Search and Surveillance. Mission Description Overhead surveillance and tracking Humans on foot Moving vehicles Onboard GPS transceiver Onboard.
AVT2000D is a portable and compact in size magnetic installation vehicle tracking device which is easy in mounting and hiding to where there is the metal.

AVT2000D is a portable and compact in size magnetic installation vehicle tracking device which is easy in mounting and hiding to where there is the metal.
THE CPU Cpu brands AMD cpu Intel cpu By Nathan Ferguson.

THE CPU Cpu brands AMD cpu Intel cpu By Nathan Ferguson.
Welcome! Computer 101 Session 2 With Laura Crichton.

Welcome! Computer 101 Session 2 With Laura Crichton.
XP Practical PC, 3e Chapter 17 1 Upgrading and Expanding your PC.

XP Practical PC, 3e Chapter 17 1 Upgrading and Expanding your PC.
Henry Brady Computer Components Unit 2 – Computer Systems.

Henry Brady Computer Components Unit 2 – Computer Systems.
Introduction to Computers Personal Computing 10. What is a computer? Electronic device Performs instructions in a program Performs four functions –Accepts.

Introduction to Computers Personal Computing 10. What is a computer? Electronic device Performs instructions in a program Performs four functions –Accepts.
1 Understanding and Assessing Hardware To buy or upgrade? Evaluating your system: –CPU –RAM –Storage devices –Video output –Sound systems –Computer ports.

1 Understanding and Assessing Hardware To buy or upgrade? Evaluating your system: –CPU –RAM –Storage devices –Video output –Sound systems –Computer ports.
Introduction to Computers By: Najam Khan What we will learn about: Hardware: The term used to describe the physical parts of a computer. Ex. The box,

Introduction to Computers By: Najam Khan What we will learn about: Hardware: The term used to describe the physical parts of a computer. Ex. The box,
Real Time ACD Package DIGITAL COMMUNICATIONS PLATFORM Digital Communications Platform.

Real Time ACD Package DIGITAL COMMUNICATIONS PLATFORM Digital Communications Platform.
Wireless or wired connection of the technician’s smartphone to Cable Ties network.

Wireless or wired connection of the technician’s smartphone to Cable Ties network.
o Portable low-cost aerial drone that can be used for reconnaissance o Relay real-time video and data, like location, heading, battery life o Take high-resolution.

o Portable low-cost aerial drone that can be used for reconnaissance o Relay real-time video and data, like location, heading, battery life o Take high-resolution.
SHANTILAL SHAH ENGINEERING COLLEGE ,BHAVNAGAR

SHANTILAL SHAH ENGINEERING COLLEGE ,BHAVNAGAR
Group 8 Team Leader: 張雅婷 B0244126 Member: 許毓晏 B0244135 Member: 傅珮瑜 B0244152 Choosing the Ideal Computer.

Group 8 Team Leader: 張雅婷 B Member: 許毓晏 B Member: 傅珮瑜 B Choosing the Ideal Computer.
BELIEVE BOX. CPU : Intel Black Shield - 12 Cores - 5GHz Graphic Card : Nvidia GeForce 900GTX - 2000 MHz Clock - 8096 Mb Ram GDDR5 Hard Drive : 7200 RPM.

BELIEVE BOX. CPU : Intel Black Shield - 12 Cores - 5GHz Graphic Card : Nvidia GeForce 900GTX MHz Clock Mb Ram GDDR5 Hard Drive : 7200 RPM.

Similar presentations

Ads by Google