DEFCON 20: bypassing endpoint security with USB keys

November 25, 2012 in hacks, security, USB, Videos by the machinegeek | 2 comments


In this talk from the DEFCON 20 conference, Phil Polsta, Computer Security Professor at the University of Dubuque discusses the relative insecurity of using USB “keys” as a way of restricting access to tech resources. He explains in detail how any USB mass storage (flash or hard) drive can be made to appear as an authorized device. The devices can be built for between $18 and $30, and depending on the technique employed the hack requires little or no soldering, and only a basic knowledge of MCUs and C programming.

This entry was posted in hacks, security, USB, Videos and tagged .

Comments

  1. John says:
    November 25, 2012 at 9:28 pm

    Alternative Project:
    device: http://hakshop.myshopify.com/products/usb-rubber-ducky
    firmware: http://code.google.com/p/ducky-decode/

    The device can bypass USB endpoint security for $60USD. For source code available so you can pre-program the VID and PID for Mass Storage device or HID keyboard device.

    Downside – will not brute force/enumerate a valid VID/PID like the device in this presentation.

    Reply
  2. Matseng says:
    November 26, 2012 at 8:36 am

    This video have a rather good overview of how usb actually works on a protocol level….

    Reply

Leave a Comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Notify me of followup comments via e-mail. You can also subscribe without commenting.