HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 14 guests and 2 members online
EH-Net Donations

Enter Amount:
$
Google Ads
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Resourcesarrow Tutorialsarrow Video: USB Hacksaw
Ethical Hacker Community Forums
November 22, 2008, 09:56:47 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Video: USB Hacksaw  (Read 7665 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 2347


Editor-In-Chief


View Profile WWW
« on: October 09, 2006, 04:24:41 PM »
Link to a video from the people at Hak.5. The description says it all...

Quote
This hack is based on a modified version of USBDumper. Once installed on a targert machine it will stay resident and wait for a USB flash drive to be inserted. Once a USB flash drive is inserted the hacksaw will download the contents of the drive to a temporary location using the modified USBDumper, then silently run the send.bat file located in the same directory, which will then archive the contents using RAR, eastablish an SSL SMTP connection to smtp.gmail.com using Stunnel and Blat, email the downloaded data to an email address, and remove the documents and archives.

http://www.hak5.org/wiki/USB_Hacksaw

I don't know if this qualifies as a tutorial, but it's the closest thing I could think.

Don
Logged
CISSP, MCSE, CEH, Security+ SME
slimjim100
EH-Net Columnist
Sr. Member
*****
Offline Offline

Posts: 363



View Profile WWW
« Reply #1 on: November 20, 2006, 07:13:49 AM »
Wow that is scary!!! Time to put hot glue into all the USB ports at work. I wonder how long it will take for the anti-virus companies to tag this (they may not since this is not really a virus or a worm). Great post Don and thanks for keeping us in the know for all the new ways our computers can become infected. Awareness is the only way to have a defensive posture in networking. I just thought of something even scarier... With all the MP3 players out there and Microsoft’s new Zune player. Just think about the risks when this thing finds its way into a Microsoft Zune player that can transfer songs and files wirelessly. You could have networks get hacked because one employee decided to dock his/her MP3 player at work after getting it infected at the gym. There really needs to be more security when dealing with USB. Remember disable auto-run always!

Slimjim100
« Last Edit: November 20, 2006, 07:23:19 AM by slimjim100 » Logged
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.053 seconds with 24 queries.
 
Sponsors

cwnp_moto__120x90.gif

Polls
During the most recent election, I:
 
Support EH-Net

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.