Difference between revisions of "Sniffing Devices"
Jump to navigation
Jump to search
(→USB) |
|||
(23 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
== Summary == | == Summary == | ||
This documentary mentions sniffing devices of the Elvis Lab maintained at the date of | This documentary mentions pentesting and sniffing devices of the Elvis Lab maintained at the date of 15-11-2022. | ||
== Wired Technologies == | == Wired Technologies == | ||
Line 17: | Line 17: | ||
* [[O.MG Cable Programmer USB]] - Programmer to exploit USB cable | * [[O.MG Cable Programmer USB]] - Programmer to exploit USB cable | ||
* [[O.MG Demonseed EDU, educational set malicious USB cable]] - Educational hardware implant kit, for assembling and programming a malicious USB cable. | * [[O.MG Demonseed EDU, educational set malicious USB cable]] - Educational hardware implant kit, for assembling and programming a malicious USB cable. | ||
* [[O.MG Exploit | * [[O.MG Exploit Cable USB-C to USB-A]] - Covert exploitation kit USB cable, runs a Webserver and works also as wireless access point | ||
* [[O.MG | * [[O.MG Malicous Cable Detector]] - Detect malicous USB cables and block data while charging. | ||
* [[Signal Owl]] - Portable SIGINT Platform, offering payload automation for Wifi, GPS, Bluetooth, SDR, etc | * [[Signal Owl]] - Portable SIGINT Platform, offering payload automation for Wifi, GPS, Bluetooth, SDR, etc | ||
* [[USB Keylogger Max 8GB]] - USB keylogger can be accessed via WiFi, 8GB USB thumbdrive | * [[USB Keylogger Max 8GB]] - USB keylogger can be accessed via WiFi, 8GB USB thumbdrive | ||
Line 25: | Line 25: | ||
* [[USB Ninja Remote Control]] - covert USB exploit framework with wireless remote trigger | * [[USB Ninja Remote Control]] - covert USB exploit framework with wireless remote trigger | ||
* [[USB Power Delivery Analyzer]] | * [[USB Power Delivery Analyzer]] | ||
* [[USB armory + Enclosure]] - open source hardware design, implementing a flash drive sized computer for USB device emulation | |||
=== LAN - Ethernet === | === LAN - Ethernet === | ||
Line 31: | Line 32: | ||
* [[Throwing Star LAN Tap Pro]] - LAN traffic sniffing device --> documented in [[Throwing Star LAN Tap]] | * [[Throwing Star LAN Tap Pro]] - LAN traffic sniffing device --> documented in [[Throwing Star LAN Tap]] | ||
* [[Throwing Star LAN Tap Kit]] - LAN traffic sniffing device --> documented in [[Throwing Star LAN Tap]] | * [[Throwing Star LAN Tap Kit]] - LAN traffic sniffing device --> documented in [[Throwing Star LAN Tap]] | ||
* [[Packet Squirrel]] - stealthy pocket-sized person-in-the-middle. | |||
* [[Plunder Bug]] LAN Tap - ethernet network sniffer | |||
=== Cable connected IoT protocols === | === Cable connected IoT protocols === | ||
====Logic Analyzer==== | |||
* [[Saleae Logic 8 USB Logic Analyzer]] - 8 channel Logic analyzer is a debugging tool used to record and view digital signals with a sample rate of 100 MSPS | |||
* [[FPGA ZYBO Z7-20 Zynq-7020 Dev Board]] - Zybo Z7 is a feature-rich, ready-to-use embedded software and digital circuit | |||
* [[GreatFET One]] - Hardware Hackers friend, USB peripherial to interface an external chip, a logic analyzer, a debugger, or just a whole lot of pins to bit-bang. The GreatFET project produces interface tools for hardware hacking, making, and reverse engineering. | |||
====Firmware Aquisition==== | |||
* [[Attify Badge IoT Hacking Device]] - supported protocols: UART, SPI, JTAG, I2C, GPIO for offensive IOT exploitation | * [[Attify Badge IoT Hacking Device]] - supported protocols: UART, SPI, JTAG, I2C, GPIO for offensive IOT exploitation | ||
* [[Bus Pirate v3.6 Universal serial interface]] - 1-Wire, I2C, SPI, JTAG, asynchronous serial (UART), MIDI, PC keyboard, HD44780 LCDs, and generic 2- and 3-wire libraries for custom protocols | * [[Bus Pirate v3.6 Universal serial interface]] - 1-Wire, I2C, SPI, JTAG, asynchronous serial (UART), MIDI, PC keyboard, HD44780 LCDs, and generic 2- and 3-wire libraries for custom protocols | ||
* [[ | * [[Segger J-Link V8]] - USB JTAG Emulator device used to flash, program and debug ARM-based chipsets | ||
* [[ | * [[JTAGulator]] - On-chip debug (OCD) interface to extract program code or data, modify memory contents, or affect device operation on-the-fly | ||
====Mobile Phone Pentesting==== | |||
* [[Riff Box II]] | |||
* [[Medusa Pro Box]] - Medusa Pro I Box | |||
* [[Medusa Pro II Box Set]] | |||
* [[Octoplus Pro Box Set]] - Octoplus Pro Box is a multibrand tool that lets you perform Flash/Decode/Repair operations with various cell phones. | |||
====Other Interfaces==== | |||
* CAN Bus | |||
** [[CAN-Bus-Shield V2.0]] - Enables communicattion of arduino with CAN-Bus | |||
* HDMI | |||
** [[Screen Crab, HDMI sniffer]] - Highly covert HDMI interception & exfiltration device, passively intercept any video signal. | |||
* I2C, SPI | |||
** [[Aardvark I2C/SPI Host Adapter Unit]] - I2C bus and SPI bus host adapter through USB | |||
* RS232 | |||
** [[Serial Logger Max RS232 16GB]] - compact serial and RS-232 logging device which can be accessed by USB and Wifi | |||
** [[Serial Logger RS232]] - compact serial and RS-232 logging device which can be accessed by USB | |||
== Wireless Technologies == | == Wireless Technologies == | ||
* SDR | |||
* RF Analysis tools | |||
* WiFi | * WiFi | ||
* Bluetooth LE (advertising only) | * Bluetooth LE (advertising only) | ||
Line 47: | Line 74: | ||
* ZWave (European frequency, 868MHz) | * ZWave (European frequency, 868MHz) | ||
* RFID + NFC | * RFID + NFC | ||
=== Software Defined Radio (SDR)=== | |||
* [[HackRF One Software Defined Radio (SDR)]] - open source software defined radio platform | |||
* [[BladeRF x40-Board, Software-Defined Radio (SDR)]] - open source software defined radio platform | |||
* [[NooElec SDR Kit]] - SDR kit | |||
* [[NESDR Nano 2+: Tiny RTL-SDR USB Set w/ 0.5PPM TCXO, R820T2 Tuner & Antenna ]] - Tiny size SDR based on the R820T2 tuner IC (tuning range of 25MHz-1700MHz) | |||
=== RF Analysis tools === | |||
* [[PandwaRF Rogue Pro]] - Bluetooth Smart (BLE) to Sub-1 GHz module. PandwaRF (formerly GollumRF) is a RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or a PC | |||
* [[CC Debugger Programmer RF System On Chips]] — Texas Instruments Debugger and programmer for the TI Low Power RF System-on-Chips supports Zigbee, Wifi, Bluetooth,.. | |||
* [[YardStick One]] - usb radio dongle for transmitting and receiving digital wireless signals at frequencies below 1 GHz | |||
=== Wireless WiFi === | === Wireless WiFi === | ||
* [[DELOCK® 12463 WLAN-Adapter, USB, 1167 MBit/s]] | * [[DELOCK® 12463 WLAN-Adapter, USB, 1167 MBit/s]] | ||
* [[Alfa AWUS036ACH Wide Range AC1200 Wireless Adapter]] | |||
* [[Alfa AWUS036NHA Long Range USB Adapter ]] | |||
* [[Alfa AWUS036EAC AC1200 USB Wireless Adapter]] | |||
* [[AWUS1900 Long range USB Wireless Adapter]] | |||
* [[Wifi Pineapple Nano]] - rogue wireless access point | |||
* [[WiFi Pineapple Mark VII]] - Powerful wireless network auditing and penetration testingtool | |||
=== 802.11ac WiFi, Bluetooth 4.2 === | === 802.11ac WiFi, Bluetooth 4.2 === | ||
Line 59: | Line 103: | ||
* [[Wundertooth]] - 2.4 GHz wireless development platform - passsive sniffing | * [[Wundertooth]] - 2.4 GHz wireless development platform - passsive sniffing | ||
* [[LogiLink USB Bluetooth v4.0 Dongle]] - BT0015 Bluetooth 3Mbit/s Network Interface - active sniffing | * [[LogiLink USB Bluetooth v4.0 Dongle]] - BT0015 Bluetooth 3Mbit/s Network Interface - active sniffing | ||
* [[InputStick RAT Wireless USB Receiver]] - Control computers remotely via USB-stick, cross platform and undetectable. | |||
=== Zigbee === | === Zigbee === | ||
Line 65: | Line 110: | ||
* [[Sub-GHz Analyzer Stick BitCatcher]] - Zigbee BitCatcher analyzer firmware on USB radio stick | * [[Sub-GHz Analyzer Stick BitCatcher]] - Zigbee BitCatcher analyzer firmware on USB radio stick | ||
* [[XBee 802.15.4 S2C 63mW Wire Antenna]] - Zigbee RF module with antenna and transmission power 63 mW | * [[XBee 802.15.4 S2C 63mW Wire Antenna]] - Zigbee RF module with antenna and transmission power 63 mW | ||
* [[Xbee® 802.15.4 S2C 3MW PCB Antenna]] - Zigbee RF module with antenna and transmission power of 3.1 mW | * [[Xbee® 802.15.4 S2C 3MW PCB Antenna]] - Zigbee RF module with antenna and transmission power of 3.1 mW | ||
* [[Sub-GHz Analyzer Stick BitCatcher]] - Zigbee BitCatcher analyzer firmware on USB radio stick | |||
=== 802.15.4 (Zigbee, 6LoWPAN) === | === 802.15.4 (Zigbee, 6LoWPAN) === | ||
* [[2,4 GHz Cortex-M3 deRFusb-23E06 JTAG]] - 2.4 GHz USB radio stick with additional 2 GB Flash and JTAG connection based on Atmel's ARM Cortex-M3 microcontroller ATSAM3S4 | * [[2,4 GHz Cortex-M3 deRFusb-23E06 JTAG]] - 2.4 GHz USB radio stick with additional 2 GB Flash and JTAG connection based on Atmel's ARM Cortex-M3 microcontroller ATSAM3S4 | ||
* [[AVR RZUSBSTICK]]- 2,4 GHz IEEE 802.15.4, 6LoWPAN, and ZigBee networks. | * [[AVR RZUSBSTICK]]- 2,4 GHz IEEE 802.15.4, 6LoWPAN, and ZigBee networks. | ||
* [[6LoWPAN nRF52840 Dongle]] - is a small, low-cost USB dongle that supports Bluetooth 5.3, Bluetooth mesh, Thread, Zigbee, 802.15.4, ANT and 2.4 GHz proprietary protocols and can be used for sniffing. | |||
=== Z-Wave === | === Z-Wave === | ||
Line 83: | Line 130: | ||
=== RFID + NFC === | === RFID + NFC === | ||
* [[Proxmark 3]]- for sniffing in low frequency ( 125kHz and 134kHz) and high frequency (13.56mHz) bands | * [[Proxmark 3]]- for sniffing in low frequency ( 125kHz and 134kHz) and high frequency (13.56mHz) bands | ||
* [[Proxmark3 RDV4 Kit]] | |||
* [[RFID Field detector]] | |||
* [[Chameleon Tiny: RevG]] | |||
* [[Chameleon Mini: RevE Rebooted]] - portable NFC emulation & manipulation tool | |||
* [[Hunter Cat - Card Skimmer Detector v0.3]] - pocket ATM Card Skimmer Detector | |||
* [[HydraNFC without HydraBus]] - HydraNFC Shield v1.0 is an NFC shield hardware (to be plugged on top of HydraBus) to sniff/read/write/emulate any 13.56MHz NFC tags for anyone interested in advanced NFC Research/Dev/Debug/Hack/PenTest on NFC products. | |||
* [[Keysy RFID Duplicator]] - device for copying and emulating some Low Frequency (125KHz) RFID tags. | |||
* [[RFID Reader/Writer DL533N]] - LibNFC RFID Compatible Reader/Writer multi-tool in a USB-Stick | |||
[[Category:Pentesting]] | [[Category:Pentesting]] |
Latest revision as of 16:01, 22 November 2022
Summary
This documentary mentions pentesting and sniffing devices of the Elvis Lab maintained at the date of 15-11-2022.
Wired Technologies
- USB
- LAN
- cable connected IoT protocols
USB
- USB Rubber Ducky - rogue USB attack stick re-writeable
- Bash Bunny - USB attack platform. It delivers penetration testing attacks and IT automation tasks in seconds by emulating combinations of trusted USB devices – like gigabit Ethernet, serial, flash storage and keyboards.
- Beagle USB 12 Protocol Analyzer - tool for debugging and monitoring traffic on your full- and low-speed USB based applications.
- Minisniffer USB Protocol Analyzer - Compact, cross-platform hardware USB Protocol Analyzer. Capture, debug and analyse USB connections easily and economically.
- Forensic USB keylogger cable - USB keylogging cable can be accessed via WiFi, 8GB USB thumbdrive
- Key Croc - Smart Keylogger - Smart keylogger, Keystroke Injection, Network Hijacking, Detection Evasion via WiFi
- O.MG Cable Programmer USB - Programmer to exploit USB cable
- O.MG Demonseed EDU, educational set malicious USB cable - Educational hardware implant kit, for assembling and programming a malicious USB cable.
- O.MG Exploit Cable USB-C to USB-A - Covert exploitation kit USB cable, runs a Webserver and works also as wireless access point
- O.MG Malicous Cable Detector - Detect malicous USB cables and block data while charging.
- Signal Owl - Portable SIGINT Platform, offering payload automation for Wifi, GPS, Bluetooth, SDR, etc
- USB Keylogger Max 8GB - USB keylogger can be accessed via WiFi, 8GB USB thumbdrive
- USB Killer Pro Kit V3 - USB Killer instantly and permanently disables unprotected hardware
- USB Ninja Pro-kit with Remote control - covert USB exploit framework with coustom payloads functions as a USB cable and remotely triggered
- USB Ninja Remote Control - covert USB exploit framework with wireless remote trigger
- USB Power Delivery Analyzer
- USB armory + Enclosure - open source hardware design, implementing a flash drive sized computer for USB device emulation
LAN - Ethernet
- LAN Turtle - covert system administration and penetration testing tool providing stealth remote access, network intelligence and man in the middle capabilities, drops shells anywhere
- Hak5_Shark_Jack - penetration tool for perform network audts and information gathering attacks
- Throwing Star LAN Tap Pro - LAN traffic sniffing device --> documented in Throwing Star LAN Tap
- Throwing Star LAN Tap Kit - LAN traffic sniffing device --> documented in Throwing Star LAN Tap
- Packet Squirrel - stealthy pocket-sized person-in-the-middle.
- Plunder Bug LAN Tap - ethernet network sniffer
Cable connected IoT protocols
Logic Analyzer
- Saleae Logic 8 USB Logic Analyzer - 8 channel Logic analyzer is a debugging tool used to record and view digital signals with a sample rate of 100 MSPS
- FPGA ZYBO Z7-20 Zynq-7020 Dev Board - Zybo Z7 is a feature-rich, ready-to-use embedded software and digital circuit
- GreatFET One - Hardware Hackers friend, USB peripherial to interface an external chip, a logic analyzer, a debugger, or just a whole lot of pins to bit-bang. The GreatFET project produces interface tools for hardware hacking, making, and reverse engineering.
Firmware Aquisition
- Attify Badge IoT Hacking Device - supported protocols: UART, SPI, JTAG, I2C, GPIO for offensive IOT exploitation
- Bus Pirate v3.6 Universal serial interface - 1-Wire, I2C, SPI, JTAG, asynchronous serial (UART), MIDI, PC keyboard, HD44780 LCDs, and generic 2- and 3-wire libraries for custom protocols
- Segger J-Link V8 - USB JTAG Emulator device used to flash, program and debug ARM-based chipsets
- JTAGulator - On-chip debug (OCD) interface to extract program code or data, modify memory contents, or affect device operation on-the-fly
Mobile Phone Pentesting
- Riff Box II
- Medusa Pro Box - Medusa Pro I Box
- Medusa Pro II Box Set
- Octoplus Pro Box Set - Octoplus Pro Box is a multibrand tool that lets you perform Flash/Decode/Repair operations with various cell phones.
Other Interfaces
- CAN Bus
- CAN-Bus-Shield V2.0 - Enables communicattion of arduino with CAN-Bus
- HDMI
- Screen Crab, HDMI sniffer - Highly covert HDMI interception & exfiltration device, passively intercept any video signal.
- I2C, SPI
- Aardvark I2C/SPI Host Adapter Unit - I2C bus and SPI bus host adapter through USB
- RS232
- Serial Logger Max RS232 16GB - compact serial and RS-232 logging device which can be accessed by USB and Wifi
- Serial Logger RS232 - compact serial and RS-232 logging device which can be accessed by USB
Wireless Technologies
- SDR
- RF Analysis tools
- WiFi
- Bluetooth LE (advertising only)
- 802.15.4 (used by Zigbee, Xbee, 6LoWPAN)
- ZWave (European frequency, 868MHz)
- RFID + NFC
Software Defined Radio (SDR)
- HackRF One Software Defined Radio (SDR) - open source software defined radio platform
- BladeRF x40-Board, Software-Defined Radio (SDR) - open source software defined radio platform
- NooElec SDR Kit - SDR kit
- NESDR Nano 2+: Tiny RTL-SDR USB Set w/ 0.5PPM TCXO, R820T2 Tuner & Antenna - Tiny size SDR based on the R820T2 tuner IC (tuning range of 25MHz-1700MHz)
RF Analysis tools
- PandwaRF Rogue Pro - Bluetooth Smart (BLE) to Sub-1 GHz module. PandwaRF (formerly GollumRF) is a RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or a PC
- CC Debugger Programmer RF System On Chips — Texas Instruments Debugger and programmer for the TI Low Power RF System-on-Chips supports Zigbee, Wifi, Bluetooth,..
- YardStick One - usb radio dongle for transmitting and receiving digital wireless signals at frequencies below 1 GHz
Wireless WiFi
- DELOCK® 12463 WLAN-Adapter, USB, 1167 MBit/s
- Alfa AWUS036ACH Wide Range AC1200 Wireless Adapter
- Alfa AWUS036NHA Long Range USB Adapter
- Alfa AWUS036EAC AC1200 USB Wireless Adapter
- AWUS1900 Long range USB Wireless Adapter
- Wifi Pineapple Nano - rogue wireless access point
- WiFi Pineapple Mark VII - Powerful wireless network auditing and penetration testingtool
802.11ac WiFi, Bluetooth 4.2
Bluetooth
- Ubertooth One, 2.4 GHz wireless development platform - passive sniffing
- Wundertooth - 2.4 GHz wireless development platform - passsive sniffing
- LogiLink USB Bluetooth v4.0 Dongle - BT0015 Bluetooth 3Mbit/s Network Interface - active sniffing
- InputStick RAT Wireless USB Receiver - Control computers remotely via USB-stick, cross platform and undetectable.
Zigbee
- ConBee ZigBee USB Gateway - multiprotocol-sniffer for 802.15.4 (Zigbee) network analysis
- RaspBee premium, Erweiterungsplatine mit Funkmodul für Raspberry Pi
- Sub-GHz Analyzer Stick BitCatcher - Zigbee BitCatcher analyzer firmware on USB radio stick
- XBee 802.15.4 S2C 63mW Wire Antenna - Zigbee RF module with antenna and transmission power 63 mW
- Xbee® 802.15.4 S2C 3MW PCB Antenna - Zigbee RF module with antenna and transmission power of 3.1 mW
- Sub-GHz Analyzer Stick BitCatcher - Zigbee BitCatcher analyzer firmware on USB radio stick
802.15.4 (Zigbee, 6LoWPAN)
- 2,4 GHz Cortex-M3 deRFusb-23E06 JTAG - 2.4 GHz USB radio stick with additional 2 GB Flash and JTAG connection based on Atmel's ARM Cortex-M3 microcontroller ATSAM3S4
- AVR RZUSBSTICK- 2,4 GHz IEEE 802.15.4, 6LoWPAN, and ZigBee networks.
- 6LoWPAN nRF52840 Dongle - is a small, low-cost USB dongle that supports Bluetooth 5.3, Bluetooth mesh, Thread, Zigbee, 802.15.4, ANT and 2.4 GHz proprietary protocols and can be used for sniffing.
Z-Wave
- RaZberry2 Z-Wave Plus Modul for Raspberry Pi
- AeonLabs Z-WAVE USB Stick GEN5 with built-in rechargeable lithium battery
LoRa
- Raspberry Pi LoRa/GPS HAT, 868MHz - GPS and LoRa expension module for Raspberry Pi
Wireless access point
- Wifi Pineapple Nano- wireless access point
RFID + NFC
- Proxmark 3- for sniffing in low frequency ( 125kHz and 134kHz) and high frequency (13.56mHz) bands
- Proxmark3 RDV4 Kit
- RFID Field detector
- Chameleon Tiny: RevG
- Chameleon Mini: RevE Rebooted - portable NFC emulation & manipulation tool
- Hunter Cat - Card Skimmer Detector v0.3 - pocket ATM Card Skimmer Detector
- HydraNFC without HydraBus - HydraNFC Shield v1.0 is an NFC shield hardware (to be plugged on top of HydraBus) to sniff/read/write/emulate any 13.56MHz NFC tags for anyone interested in advanced NFC Research/Dev/Debug/Hack/PenTest on NFC products.
- Keysy RFID Duplicator - device for copying and emulating some Low Frequency (125KHz) RFID tags.
- RFID Reader/Writer DL533N - LibNFC RFID Compatible Reader/Writer multi-tool in a USB-Stick