WiFi Pineapple; Decrypting SSL Traffic on Mobile Applications

Introduction Most people view the WiFi Pineapple as in intrusive piece of kit. Marketed as a WiFi device that can trick unsuspecting clients to connect to the AccessPoint (AP) because the device is sending out Probe responses that match devices Probe requests.  From there a victim is then susceptible to Man-in-The-Middle (MiTM) attacks, interception and traffic manipulation.  The device has been famously used on Channel 4’s Derren Browns Apocalypse (http://en.wikipedia.org/wiki/Derren_Brown:_Apocalypse),…

IR Blue – Cheap Open Source Thermal Imaging

For those that missed it RHWorkshop started a Kickstarter project back in December 2012; to build an Open Source, Cheap and Affordable Thermal Imaging Camera, for use with Apple IOS or Android devices.  Thermal Imaging Cameras typically cost approximately $1,500USD,  this device costs $160USD (just over 10% of the value, compared to a professional piece of kit).

USB Rubber Ducky – Part 2: Attack of the HID

Background The USB Rubber Ducky was introduced in our previous post “The Return of USB Auto-Run Attacks“.  This is the first of many follow-ups, that introduce new attack scenarios and the increase in functionality, that really makes this tiny device a big part of the hearts of penetration testers. Brute-force attacks…