Ubertooth – Bluetooth Sniffing Updated for 2014!

Earlier I noticed this tweet on my twitter feed: Ubertooth release: https://t.co/cCYHNf34Yc I know it’s been a long time coming, I promise not to leave it so long next time. — Dominic Spill (@dominicgs) February 20, 2014 So I thought I would walk you through the update, which has improved Operating System support, improved Bluetooth Low Energy (BTLE) support, and GitHub integration to make community development easier….

New WiFi Pineapple; From Britain with Love!

Introduction Since approximately around the time of our posting Blue for the Pineapple (6 months ago). Hak5 Pineapple Team have disappeared underground to produce the new Mark 5 Pineapple. A customised board that is cheaper to produce and more easily affordable. The Mark 5 has 2x WiFi cards (Atheros 9331 & RTL8187 (famously known as an Alfa)), with SMA connectors. Twice the RAM & ROM (16MB & 64MB), with the…

Proxmark3 – Adding Ultralight Support

Introduction The Proxmark3 appeared to be missing Mifare Ultralight support.  The ability to identify Ultralight cards was present within the ‘hf 14a reader‘ command. However the facility to read and write cards was sadly missing. But no worries as the protocol and instruction set is essentially the same as Mifare Classic; the only difference is standard Ultralight cards do not need authentication, and encryption and the Block size is 4…

[SOLVED] Arduino UNO – Can’t Upload Sketches Larger than 30KB

Introduction Relating to the previous Gamby post, many people may have trouble uploading some of the game sketches to their UNO board as they are over 30KB.  The ATMEGA 328P (chip on the UNO) should allow upto 32KBytes of memory; but then people forget there is the addition of the bootloader which in older models occupies 2KB of memory. The bootloader is a special piece of software that makes reflashing…

SDR – ADS-B Decoding: RTL1090 (Windows)

RTL1090 is  a program that will automatically decode ADS-B signals that are commonly found on the 1090MHz frequency.  Alternatively known as Mode S, ADS-B allows a variety of types of data to be sent from the transponder, including: ICAO aircraft code (the tail number of the plane can be obtained from this) Flight Number Altitude Location (Longitude and Latitude) Heading Using this software on Windows from the picture above we can…

Ubertooth – Open-Source Bluetooth Sniffing

Background A few years ago, some security minded people and academics started looking into BlueTooth (BT) sniffing.  Commercial solutions were expensive, and the community really needed something cheap/affordable. The names: Dominic Spill & Andrea Bittau, I think were the pioneers that discovered that some cheap $30(USD) BT dongles could be re-flashed to a firmware that supported BT sniffing, and they created the Open-Source program csrsniff (http://darkircop.org/bt/bt.tgz), that allowed you to…

USB Rubber Ducky – Part 3: Crypto Duck

Background The USB Rubber Ducky is an extremely powerful and versatile device.  Sadly, the potential is missed, and this is probably due to its high price tag (from an initial small development production run).  Since its release mid-late 2011, the Ducky has grown in popularity and the Hak5 Team have more than doubled their production run, meaning costs have been slashed in half.  Potentially with enough interest and investment the…

The Return of USB “Auto-Run” Attacks

Background USB Autorun attacks became the rage back in 2005.  Hak5 created a project to increase awareness of this security issue called USB-Hacksaw, originally a U3 device that would auto-run a series of programs.  This could be used from general system administration tasks, or potential malicious tasks; such as installing back-doors and running password collection programs.  Shortly, Vendors like Microsoft started to remove Auto-run capabilities to prevent more serious malware…