Difference between revisions of "Sniffing Devices"

Summary

This documentary mentions sniffing devices of the Elvis Lab maintained at the date of 19-12-2021.

Wired Technologies

• USB
• LAN
• cable connected IoT protocols

USB

• USB Rubber Ducky - rogue USB attack stick re-writeable
• Bash Bunny - USB attack platform. It delivers penetration testing attacks and IT automation tasks in seconds by emulating combinations of trusted USB devices – like gigabit Ethernet, serial, flash storage and keyboards.
• Beagle USB 12 Protocol Analyzer - tool for debugging and monitoring traffic on your full- and low-speed USB based applications.
• Minisniffer USB Protocol Analyzer - Compact, cross-platform hardware USB Protocol Analyzer. Capture, debug and analyse USB connections easily and economically.
• Forensic USB keylogger cable - USB keylogging cable can be accessed via WiFi, 8GB USB thumbdrive
• Key Croc - Smart Keylogger - Smart keylogger, Keystroke Injection, Network Hijacking, Detection Evasion via WiFi
• O.MG Cable Programmer USB - Programmer to exploit USB cable
• O.MG Demonseed EDU, educational set malicious USB cable - Educational hardware implant kit, for assembling and programming a malicious USB cable.
• O.MG Exploit Cable USB-C to USB-A - Covert exploitation kit USB cable, runs a Webserver and works also as wireless access point
• O.MG Malicous Cable Detector - Detect malicous USB cables and block data while charging.
• Signal Owl - Portable SIGINT Platform, offering payload automation for Wifi, GPS, Bluetooth, SDR, etc
• USB Keylogger Max 8GB - USB keylogger can be accessed via WiFi, 8GB USB thumbdrive
• USB Killer Pro Kit V3 - USB Killer instantly and permanently disables unprotected hardware
• USB Ninja Pro-kit with Remote control - covert USB exploit framework with coustom payloads functions as a USB cable and remotely triggered
• USB Ninja Remote Control - covert USB exploit framework with wireless remote trigger
• USB Power Delivery Analyzer

LAN - Ethernet

• LAN Turtle - covert system administration and penetration testing tool providing stealth remote access, network intelligence and man in the middle capabilities, drops shells anywhere
• Hak5_Shark_Jack - penetration tool for perform network audts and information gathering attacks
• Throwing Star LAN Tap Pro - LAN traffic sniffing device --> documented in Throwing Star LAN Tap
• Throwing Star LAN Tap Kit - LAN traffic sniffing device --> documented in Throwing Star LAN Tap
• Packet Squirrel - stealthy pocket-sized person-in-the-middle.
• Plunder Bug LAN Tap - ethernet network sniffer

Cable connected IoT protocols

Logic Analyzer

• Saleae Logic 8 USB Logic Analyzer - 8 channel Logic analyzer is a debugging tool used to record and view digital signals with a sample rate of 100 MSPS
• FPGA ZYBO Z7-20 Zynq-7020 Dev Board - Zybo Z7 is a feature-rich, ready-to-use embedded software and digital circuit
• GreatFET One - Hardware Hackers friend, USB peripherial to interface an external chip, a logic analyzer, a debugger, or just a whole lot of pins to bit-bang. The GreatFET project produces interface tools for hardware hacking, making, and reverse engineering.

Firmware Aquisition

• Attify Badge IoT Hacking Device - supported protocols: UART, SPI, JTAG, I2C, GPIO for offensive IOT exploitation
• Bus Pirate v3.6 Universal serial interface - 1-Wire, I2C, SPI, JTAG, asynchronous serial (UART), MIDI, PC keyboard, HD44780 LCDs, and generic 2- and 3-wire libraries for custom protocols
• Segger J-Link V8 - USB JTAG Emulator device used to flash, program and debug ARM-based chipsets
• JTAGulator - On-chip debug (OCD) interface to extract program code or data, modify memory contents, or affect device operation on-the-fly

Mobile Phone Pentesting

• Riff Box II
• Medusa Pro Box - Medusa Pro I Box
• Medusa Pro II Box Set
• Octoplus Pro Box Set - Octoplus Pro Box is a multibrand tool that lets you perform Flash/Decode/Repair operations with various cell phones.

Other Interfaces

• CAN Bus
  • CAN-Bus Shield V2.0 - Enables communicattion of arduino with CAN-Bus
• HDMI
  • Screen Crab, HDMI sniffer - Highly covert HDMI interception & exfiltration device, passively intercept any video signal.
• I2C, SPI
  • Aardvark I2C/SPI Host Adapter Unit - I2C bus and SPI bus host adapter through USB
• RS232
  • Serial Logger Max RS232 16GB - compact serial and RS-232 logging device which can be accessed by USB and Wifi
  • Serial Logger RS232 - compact serial and RS-232 logging device which can be accessed by USB

Wireless Technologies

• WiFi
• Bluetooth LE (advertising only)
• 802.15.4 (used by Zigbee, Xbee, 6LoWPAN)
• ZWave (European frequency, 868MHz)
• RFID + NFC

Wireless WiFi

• DELOCK® 12463 WLAN-Adapter, USB, 1167 MBit/s

802.11ac WiFi, Bluetooth 4.2

• ZOTAC mini-PC ZBOX nano CI327 - Barebone - Celeron - DDR
• NXP LPC54018 IoT module

Bluetooth

• Ubertooth One, 2.4 GHz wireless development platform - passive sniffing
• Wundertooth - 2.4 GHz wireless development platform - passsive sniffing
• LogiLink USB Bluetooth v4.0 Dongle - BT0015 Bluetooth 3Mbit/s Network Interface - active sniffing

Zigbee

• ConBee ZigBee USB Gateway - multiprotocol-sniffer for 802.15.4 (Zigbee) network analysis
• RaspBee premium, Erweiterungsplatine mit Funkmodul für Raspberry Pi
• Sub-GHz Analyzer Stick BitCatcher - Zigbee BitCatcher analyzer firmware on USB radio stick
• XBee 802.15.4 S2C 63mW Wire Antenna - Zigbee RF module with antenna and transmission power 63 mW
• Xbee® 802.15.4 S2C 3MW PCB Antenna - Zigbee RF module with antenna and transmission power of 3.1 mW

802.15.4 (Zigbee, 6LoWPAN)

• 2,4 GHz Cortex-M3 deRFusb-23E06 JTAG - 2.4 GHz USB radio stick with additional 2 GB Flash and JTAG connection based on Atmel's ARM Cortex-M3 microcontroller ATSAM3S4
• AVR RZUSBSTICK- 2,4 GHz IEEE 802.15.4, 6LoWPAN, and ZigBee networks.

Z-Wave

• RaZberry2 Z-Wave Plus Modul for Raspberry Pi
• AeonLabs Z-WAVE USB Stick GEN5 with built-in rechargeable lithium battery

LoRa

• Raspberry Pi LoRa/GPS HAT, 868MHz - GPS and LoRa expension module for Raspberry Pi

Wireless access point

• Wifi Pineapple Nano- wireless access point

RFID + NFC

• Proxmark 3- for sniffing in low frequency ( 125kHz and 134kHz) and high frequency (13.56mHz) bands