Presentation is loading. Please wait.

Presentation is loading. Please wait.

Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m.

Published byNathan Norton Modified over 9 years ago

Similar presentations

Presentation on theme: "Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m."— Presentation transcript:

1 http://Irongeek.com Adrian Crenshaw

2 http://Irongeek.com  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m just a geek with time on my hands

3 http://Irongeek.com  I was given a device called a Phantom Keystroker at Shmoocon 2010 for doing a FireSide talk  Meant to annoy someone by sending keystrokes and mouse movements  But, what if it was programmable?

4 http://Irongeek.com  Darren Kitchen (media mogul) and Robin Wood (code deity)  I knew Darren had been working with the U3 thumb drives for automated attacks, so I went to him with the idea  Devious minds think alike! They were already developing it!  They are working on a product (USB Rubber Ducky): http://www.hak5.org/storehttp://www.hak5.org/store Darren Kitchen http://hak5.orghttp://hak5.org Robin Wood http://digininja.org http://digininja.org

5 http://Irongeek.com  If you want something nicer, wait for Darren and Robin’s tool  For those that like to “Go ugly early”, hold on for the rest of this presentation  Three notes in my defense: 1. I’m new to microcontrollers 2. I suck at soldering (Like an epileptic alcoholic with DTs soldering with an aluminum baseball bat) 3. I apparently suck at using rotary tools too

6 http://Irongeek.com  Likely types faster than you can, without errors  Works even if U3 autorun is turned off  Draws less attention than sitting down in front of the terminal would. The person turns their head for a minute, the pen-tester plugs in their programmable USB key stroke dongle, and Bobs your uncle, instant pwnage.  Can also be set to go off on a timer when you know a target will be logged in  Just use your imagination!

7 http://Irongeek.com  Add as user  Run a program  Copy files to your thumbdrive  Go to a website they have a cookie for, and do a sort of CSRF (sic)

8 http://Irongeek.com  MintyPwn?  DIPStick?  Programmable Hid USB Keyboard/Mouse Dongle?  Maybe an acronym? Let’s see: Programmable Hid USB Keyboard/Mouse Dongle?  PHUKD

9 http://Irongeek.com  Did some Googling…  Found some limited items…  Then I found…

10 http://Irongeek.com  1.2 by 0.7 inch  AVR processor, 16 MHz  Programmable over Mini USB in C or Arduino dev package  $18 to $27  USB HID Support!!!  http://www.pjrc.com/teensy/ http://www.pjrc.com/teensy/

11 http://Irongeek.com USB Connector Common Ground DIP Switches 10K Ω Resistor Photoresistor that is above 10K Ω in the dark, and less than 10K Ω in the light Please note that the Teensy can use internal pullup resistors

12 http://Irongeek.com int ledPin = 11; // LED connected to digital pin 13 // The setup() method runs once, when the sketch starts void setup() { // initialize the digital pin as an output: pinMode(ledPin, OUTPUT); pinMode(PIN_D2, INPUT_PULLUP); // Pushbutton } // the loop() method runs over and over again, // as long as the Arduino has power void loop() { if (digitalRead(PIN_D2)) { digitalWrite(ledPin, LOW); // set the LED off } else { // Keyboard.set_modifier(MODIFIERKEY_CTRL|MODIFIERKEY_ALT); digitalWrite(ledPin, HIGH); // set the LED on Keyboard.set_modifier(128); //Windows key Keyboard.set_key1(KEY_R); // use r key Keyboard.send_now(); // send strokes Keyboard.set_modifier(0); //prep release of control keys Keyboard.set_key1(0); //have to do this to keep it from hitting key multiple times. Keyboard.send_now(); //Send the key changes delay(1500); Keyboard.print("notepad.exe"); delay(500); Keyboard.set_key1(KEY_ENTER); Keyboard.send_now(); Keyboard.set_key1(0); Keyboard.send_now(); delay(1000); Keyboard.print("Adrian Was here!!! :)"); delay(2000); } }

13 http://Irongeek.com

14  Embed a hub and storage in better packaging http://www.dealextreme.com/details.dx/sku.2704~r.48687660 http://www.dealextreme.com/details.dx/sku.2704~r.48687660  Leave it around in a thumb drive package for unsuspecting people to pick up and use  Trojaned Hardware: Use a timer or sensor and embed it in another device you give to the target as a “gift“  Have it “wake up”, mount onboard storage, run a program that covers what it is doing (fake BSOD for example), does its thing, then stops (leaving the target to think “it’s just one of those things”)  Default BIOs password brute forcing?

15 http://Irongeek.com Hak5 http://www.hak5.org/store Teensy Product Page http://www.pjrc.com/teensy/index.html Code will be on my site soon http://www.irongeek.com/

16 http://Irongeek.com  Free ISSA classes  ISSA Meeting http://issa-kentuckiana.org/ http://issa-kentuckiana.org/  Louisville Infosec http://www.louisvilleinfosec.com/ http://www.louisvilleinfosec.com/  Phreaknic/Notacon/Outerz0ne http://phreaknic.info http://notacon.org/ http://www.outerz0ne.org/ http://phreaknic.info http://notacon.org/ http://www.outerz0ne.org/

17 http://Irongeek.com 42

Download ppt "Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m."

Similar presentations

EMS1EP Lecture 6 Digital Inputs

EMS1EP Lecture 6 Digital Inputs
EMS1EP Lecture 4 Intro to Programming Dr. Robert Ross.

EMS1EP Lecture 4 Intro to Programming Dr. Robert Ross.
Lab7: Introduction to Arduino

Lab7: Introduction to Arduino
USB Reloaded USB Reloaded: The Teensy Attack Eric Conrad

USB Reloaded USB Reloaded: The Teensy Attack Eric Conrad
Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m.

Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m.
Re-programming the Simon Says with Arduino Linz Craig, Brian Huang.

Re-programming the Simon Says with Arduino Linz Craig, Brian Huang.
ELCT 201 week 13 Analog ON/OFF control system conversion to Digital ON/OFF control system.

ELCT 201 week 13 Analog ON/OFF control system conversion to Digital ON/OFF control system.
Intro to Programming and Microcontrollers. Activity Group into pairs and sit back-to-back. Pick one person who is going to draw. The other person will.

Intro to Programming and Microcontrollers. Activity Group into pairs and sit back-to-back. Pick one person who is going to draw. The other person will.
Arduino. Arduino is a tool for making computers that can sense and control more of the physical world than your desktop computer. It's an open-source.

Arduino. Arduino is a tool for making computers that can sense and control more of the physical world than your desktop computer. It's an open-source.
Finish your programs from last week STOPLIGHT CIRCUIT! You may need … – int – void setup() – void loop() – pinMode – digitalWrite – delay.

Finish your programs from last week STOPLIGHT CIRCUIT! You may need … – int – void setup() – void loop() – pinMode – digitalWrite – delay.
1 Introduction to Coding. 2 Example Codes A lot of example codes are given with Arduino IDE A code can often be based on a previous example rather than.

1 Introduction to Coding. 2 Example Codes A lot of example codes are given with Arduino IDE A code can often be based on a previous example rather than.
Embedded Programming and Robotics

Embedded Programming and Robotics
Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m.

Adrian Crenshaw.  I run Irongeek.com  I have an interest in InfoSec education  I don’t know everything - I’m.
ARDUINO PROGRAMMING Working with the Arduino microcontroller.

ARDUINO PROGRAMMING Working with the Arduino microcontroller.
Working with Arduino: Lesson #1: Getting Acquainted with the Kit EGN1007.

Working with Arduino: Lesson #1: Getting Acquainted with the Kit EGN1007.
Arduino Part 2 Topics: Serial Communication Programming Constructs: functions, loops and conditionals Digital Input.

Arduino Part 2 Topics: Serial Communication Programming Constructs: functions, loops and conditionals Digital Input.
Colorado Space Grant Consortium Gateway To Space ASEN 1400 / ASTR 2500 Class #12 Gateway To Space ASEN 1400 / ASTR 2500 Class #12 T-58.

Colorado Space Grant Consortium Gateway To Space ASEN 1400 / ASTR 2500 Class #12 Gateway To Space ASEN 1400 / ASTR 2500 Class #12 T-58.
Go to our website, www.lvccld.org and click on the eMedia Catalog link www.lvccld.org To find books, either click on the advanced search (which I will.

Go to our website, and click on the eMedia Catalog link To find books, either click on the advanced search (which I will.
Adrian Crenshaw.  Tenacity Solutions  PJRC.

Adrian Crenshaw.  Tenacity Solutions  PJRC.
Ballooning Bundle. What is a Microcontroller? Small computer with a processor core, memory and programmable input/output Continuously repeats software.

Ballooning Bundle. What is a Microcontroller? Small computer with a processor core, memory and programmable input/output Continuously repeats software.

Similar presentations

Ads by Google