HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 31 guests online
EH-Net Donations

Enter Amount:
$
Google Ads
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Featuresarrow /rootarrow Hacking Tools That Run on a USB Drive
Ethical Hacker Community Forums
December 01, 2008, 06:58:14 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Hacking Tools That Run on a USB Drive  (Read 10992 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 2380


Editor-In-Chief


View Profile WWW
« on: May 01, 2006, 07:54:29 PM »
Cool article I ran across:

Quote
There have been quite a collection of applications ported to run on USB flash disks. Most of these applications seem innocent enough, however some are deliberatly developed to get around IT software use policies in the workplace, such as P2P filesharing applications, instant messaging applications, FTP clients and podcast managers to name a few. Although these can be seen as a moderate security risk in the wrong hands they are more of a nuisance. However a new breed of applications are making their way to a USB drive near you that you should be more concerned with.

Applications which are used by security professionals (and hackers alike) to test the security of their networks and scan for vulnerabilities now have the capability to run independently from a USB flash drive and no longer require that WinPCap or other third-party packet capture drivers to be installed on a system. Applications such as Nmap, Ethereal, Showtraf, TCPDump, Nemesis and John the Ripper are now appearing online via sites in a modified form that contain an internal packet driver that is loaded when the application is launched.

What this means is that a hacker no longer needs to even have a laptop with them in order to compromise a network, simply bring a USB flash drive in a company and plug it into the USB drive of an available system.

For full story:
http://www.watchyourend.com/2006/04/29/hacking-applications-that-run-on-thumb-drive/

Don
Logged
CISSP, MCSE, CEH, Security+ SME
pcsneaker
Jr. Member
**
Offline Offline

Posts: 73


View Profile
« Reply #1 on: May 02, 2006, 11:39:58 AM »
I didn't have the time to try these apps (you can find them here), but there are a few things to consider about that story:

Even if you succed in running an app without installing a driver like winpcap you still need admin privileges to get low level access to the hardware - so I can't see the problem, if you have admin privileges you can do whatever you want anyway.

I think it's not a good idea to download apps like these from an untrusted source, who knows what changes have been done ? Perhaps I'm a bit paranoid, but would'nt that a perfect way to distribute a trojan ?
Logged
MCSA:Security (W2k, W2k3)
MCSE:Security (W2k, W2k3)
CPTS, Network+
kwestin
Newbie
*
Offline Offline

Posts: 1


View Profile
« Reply #2 on: May 02, 2006, 12:57:26 PM »
I still wouldn't want my employees running these applications. These apps are actually a few of the friendlier ones compared to what you can run off a USB stick.

You can also run nikto from a USB stick. I used to work at a rather large public high tech company that was running their intranet on IIS. While I was doing some work I noticed that it had not been patched in a long time,I sent an email to the admin group and  they actually told me not to worry about it as it was behind the firewall! I don't think I need to illustrate a possible scenarios here.  Usually there is a  lot of confidential data on intranets, much of it left unprotected and open to anyone in the company with the sense of security that if it is behind the firewall. Given that as the article states 70% of data theft occurs behind the firewall it seems that this can really be a weak point.
Logged
slaughterhed
Newbie
*
Offline Offline

Posts: 5


View Profile
« Reply #3 on: September 04, 2007, 06:53:50 PM »
The ones you have here look pretty good,but have any of you
heard of the usb switchblade or hacksaw?
 Shocked Shocked Shocked
Logged
slimjim100
EH-Net Columnist
Sr. Member
*****
Offline Offline

Posts: 365



View Profile WWW
« Reply #4 on: September 04, 2007, 09:01:29 PM »
USB Hacksaw is more of a Trojan and if you just disable "CD auto-run" you are safe from programs like it. I think you should just put hot glue in all the users USB ports Tongue (just kidding). Unless you train your users you will always have issues with protable media.

Brian
Logged
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP
hrp2171
Newbie
*
Offline Offline

Posts: 4


View Profile
« Reply #5 on: September 06, 2007, 05:57:48 PM »
Here at work, we're using a program called Sanctuary that blocks USB drives/keys from being used by employees.  We also could not enforce the No-personal-pda policy, so we use Sanctuary to block any Palm devices from being used.  But that's all through the installed OS and it kicks in after someone logs in.  So, I would worry more about someone walking in with a bootable USB drive with either BartPE or Linux on it, though.
Logged
jason
Sr. Member
****
Offline Offline

Posts: 264


Aut Viam Inveniam Aut Faciam


View Profile
« Reply #6 on: June 25, 2008, 11:12:37 PM »
My thoughts exactly. Linux booted from a flash drive will get you around most anything short of actually disabling booting from usb.
Logged
RoleReversal
Sr. Member
****
Offline Offline

Posts: 469


View Profile WWW
« Reply #7 on: June 26, 2008, 06:52:00 AM »
Quote from: jason on June 25, 2008, 11:12:37 PM
My thoughts exactly. Linux booted from a flash drive will get you around most anything short of actually disabling booting from usb.

From an end user perspective I don't see an issue with disabling booting from USB. How many legitimate reasons are there for booting from USB? (as an aside are there any BIOSs that boot from USB as standard? all my systems I need to force the option...)

Only time I've seen USB booting is either security people with USB toolkit, or someone showing off their 1337 sk1llz.

For end user machines I force a boot from harddisk (rather than cd/usb/net/etc,) and lock BIOS. Cause it's not foolproof, but stops most users and still leaves me enough leverage to get in the machine after it's fubar'd Wink
Logged
A little bit of sanity:
http://www.infosanity.co.uk
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.059 seconds with 23 queries.
 
Sponsors

cwnp_moto__120x90.gif

Polls
During the most recent election, I:
 
Support EH-Net

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.