This course aims to teach learners about novel USB-level attacks that enable remote command and control of air-gapped machines with minimal forensic footprint. The course covers the release of an open-source toolset using freely available hardware. Learners will acquire skills in creating malicious USB devices, establishing a stealthy bi-directional channel between the host and device, and communicating remotely via Wi-Fi/3G/Bluetooth. The teaching method involves discussing the process of creating these devices and releasing the toolkit during the talk. This course is intended for individuals interested in information security, particularly those looking to understand and defend against physical access attacks on software security.
Universal Serial aBUSe - Remote Physical Access Attacks
44CON Information Security Conference via YouTube
Overview
Syllabus
Intro
Quick Intro
Why did you pursue this attack
Cottonmouth Devices
Apex Predator
Physical Inspection
Remote Trigger
Avoid obvious vectors
Automated
User Interaction
Previous Work
Cactus Micro Revision 2
Building our own board
Finished Hardware
Attack Scenario
ESPLink
LEAP Stack
Injection
VNC
USB Drivers
Back Channel
Scripted VNC
Debugging
Pogo Pins
Vanilla Shell
Using existing attack frameworks
USB Security
Taught by
44CON Information Security Conference
