AVR/V-USB combo tool hacks Win 7

Posted on Wednesday, October 31st, 2012 in AVR, hacks, open source, security, USB by the machinegeek

András Veres-Szentkirályi, IT security expert, OSCP, GWAPT, writes, “I’ve built a device that acts as a USB HID keyboard, enters a script as a series of keystrokes into a PC, which can extract itself into an executable. This in turn can send files on the PC back to the device using the NUM/CAPS/SCROLL lock LED status reports, so it can be used to transfer files into and out from PCs that are locked down, so that only a display/keyboard/mouse can be connected to it.” He built this device as part of a presentation at the recent Hacktivity 2012 conference. The presentation slides can be downloaded as a 16-page PDF from the Silent Signal homepage.

The whole story can be found in on András VSzA techblog along with links to all the source code and schematics.

Via the contact form.

This entry was posted on Wednesday, October 31st, 2012 at 12:01 am and is filed under AVR, hacks, open source, security, USB. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

One Response to “AVR/V-USB combo tool hacks Win 7”

  1. torwag says:

    From his website…. receive “1.24 effective bytes per second”…

    uhhh it will take him a long time before he gets hands on my very special image collection. ;)
    But an interesting side attack… hard to handle by normal means… what will you do? Prevent usage of Mouse and Keyboard. Hmm in the long run this might lead to the fact that we only can used “signed” hardware… double as expensive and only from the big makers who can afford the licences fee to let it sign by Apple and Microsoft.

Leave a Reply

Notify me of followup comments via e-mail. You can also subscribe without commenting.

Recent Comments

  • KH: IIRC most of the actual operating system of modern HDDs is in one of the platter(s); the stuff on the 25VF010 is a bootup firmware......
  • Trev: I don't know of any inexpensive 3G modules (prices start around $US 50), but it does explain why 2G modules are relatively inexpensive by comparison....
  • Zonie: This site Rocks!
  • Chia: Please and Thank You
  • Garrett: PCB me up scotty!