HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 41 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Featuresarrow /rootarrow Hacking Tools That Run on a USB Drive
EH-Net
May 21, 2013, 07:27:36 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Hacking Tools That Run on a USB Drive  (Read 28344 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Online Online

Posts: 4165


Editor-In-Chief


View Profile WWW
« on: May 01, 2006, 07:54:29 PM »
Cool article I ran across:

Quote
There have been quite a collection of applications ported to run on USB flash disks. Most of these applications seem innocent enough, however some are deliberatly developed to get around IT software use policies in the workplace, such as P2P filesharing applications, instant messaging applications, FTP clients and podcast managers to name a few. Although these can be seen as a moderate security risk in the wrong hands they are more of a nuisance. However a new breed of applications are making their way to a USB drive near you that you should be more concerned with.

Applications which are used by security professionals (and hackers alike) to test the security of their networks and scan for vulnerabilities now have the capability to run independently from a USB flash drive and no longer require that WinPCap or other third-party packet capture drivers to be installed on a system. Applications such as Nmap, Ethereal, Showtraf, TCPDump, Nemesis and John the Ripper are now appearing online via sites in a modified form that contain an internal packet driver that is loaded when the application is launched.

What this means is that a hacker no longer needs to even have a laptop with them in order to compromise a network, simply bring a USB flash drive in a company and plug it into the USB drive of an available system.

For full story:
http://www.watchyourend.com/2006/04/29/hacking-applications-that-run-on-thumb-drive/

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
pcsneaker
Jr. Member
**
Offline Offline

Posts: 73


View Profile
« Reply #1 on: May 02, 2006, 11:39:58 AM »
I didn't have the time to try these apps (you can find them here), but there are a few things to consider about that story:

Even if you succed in running an app without installing a driver like winpcap you still need admin privileges to get low level access to the hardware - so I can't see the problem, if you have admin privileges you can do whatever you want anyway.

I think it's not a good idea to download apps like these from an untrusted source, who knows what changes have been done ? Perhaps I'm a bit paranoid, but would'nt that a perfect way to distribute a trojan ?
Logged
MCSA:Security (W2k, W2k3)
MCSE:Security (W2k, W2k3)
CPTS, Network+
kwestin
Newbie
*
Offline Offline

Posts: 1


View Profile
« Reply #2 on: May 02, 2006, 12:57:26 PM »
I still wouldn't want my employees running these applications. These apps are actually a few of the friendlier ones compared to what you can run off a USB stick.

You can also run nikto from a USB stick. I used to work at a rather large public high tech company that was running their intranet on IIS. While I was doing some work I noticed that it had not been patched in a long time,I sent an email to the admin group and  they actually told me not to worry about it as it was behind the firewall! I don't think I need to illustrate a possible scenarios here.  Usually there is a  lot of confidential data on intranets, much of it left unprotected and open to anyone in the company with the sense of security that if it is behind the firewall. Given that as the article states 70% of data theft occurs behind the firewall it seems that this can really be a weak point.
Logged
slaughterhed
Newbie
*
Offline Offline

Posts: 5


View Profile
« Reply #3 on: September 04, 2007, 06:53:50 PM »
The ones you have here look pretty good,but have any of you
heard of the usb switchblade or hacksaw?
 Shocked Shocked Shocked
Logged
slimjim100
EH-Net Columnist
Sr. Member
*****
Offline Offline

Posts: 385



View Profile WWW
« Reply #4 on: September 04, 2007, 09:01:29 PM »
USB Hacksaw is more of a Trojan and if you just disable "CD auto-run" you are safe from programs like it. I think you should just put hot glue in all the users USB ports Tongue (just kidding). Unless you train your users you will always have issues with protable media.

Brian
Logged
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP
hrp2171
Newbie
*
Offline Offline

Posts: 4


View Profile
« Reply #5 on: September 06, 2007, 05:57:48 PM »
Here at work, we're using a program called Sanctuary that blocks USB drives/keys from being used by employees.  We also could not enforce the No-personal-pda policy, so we use Sanctuary to block any Palm devices from being used.  But that's all through the installed OS and it kicks in after someone logs in.  So, I would worry more about someone walking in with a bootable USB drive with either BartPE or Linux on it, though.
Logged
jason
Hero Member
*****
Offline Offline

Posts: 1012



View Profile WWW
« Reply #6 on: June 25, 2008, 11:12:37 PM »
My thoughts exactly. Linux booted from a flash drive will get you around most anything short of actually disabling booting from usb.
Logged
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 928



View Profile WWW
« Reply #7 on: June 26, 2008, 06:52:00 AM »
Quote from: jason on June 25, 2008, 11:12:37 PM
My thoughts exactly. Linux booted from a flash drive will get you around most anything short of actually disabling booting from usb.

From an end user perspective I don't see an issue with disabling booting from USB. How many legitimate reasons are there for booting from USB? (as an aside are there any BIOSs that boot from USB as standard? all my systems I need to force the option...)

Only time I've seen USB booting is either security people with USB toolkit, or someone showing off their 1337 sk1llz.

For end user machines I force a boot from harddisk (rather than cd/usb/net/etc,) and lock BIOS. Cause it's not foolproof, but stops most users and still leaves me enough leverage to get in the machine after it's fubar'd Wink
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.056 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.