Sniffing Devices

Summary

This documentary mentions pentesting and sniffing devices of the Elvis Lab maintained at the date of 15-11-2022.

Wired Technologies

• USB
• LAN
• cable connected IoT protocols

USB

• USB Rubber Ducky - rogue USB attack stick re-writeable
• Bash Bunny - USB attack platform. It delivers penetration testing attacks and IT automation tasks in seconds by emulating combinations of trusted USB devices – like gigabit Ethernet, serial, flash storage and keyboards.
• Beagle USB 12 Protocol Analyzer - tool for debugging and monitoring traffic on your full- and low-speed USB based applications.
• Minisniffer USB Protocol Analyzer - Compact, cross-platform hardware USB Protocol Analyzer. Capture, debug and analyse USB connections easily and economically.
• Forensic USB keylogger cable - USB keylogging cable can be accessed via WiFi, 8GB USB thumbdrive
• Key Croc - Smart Keylogger - Smart keylogger, Keystroke Injection, Network Hijacking, Detection Evasion via WiFi
• O.MG Cable Programmer USB - Programmer to exploit USB cable
• O.MG Demonseed EDU, educational set malicious USB cable - Educational hardware implant kit, for assembling and programming a malicious USB cable.
• O.MG Exploit Cable USB-C to USB-A - Covert exploitation kit USB cable, runs a Webserver and works also as wireless access point
• O.MG Malicous Cable Detector - Detect malicous USB cables and block data while charging.
• Signal Owl - Portable SIGINT Platform, offering payload automation for Wifi, GPS, Bluetooth, SDR, etc
• USB Keylogger Max 8GB - USB keylogger can be accessed via WiFi, 8GB USB thumbdrive
• USB Killer Pro Kit V3 - USB Killer instantly and permanently disables unprotected hardware
• USB Ninja Pro-kit with Remote control - covert USB exploit framework with coustom payloads functions as a USB cable and remotely triggered
• USB Ninja Remote Control - covert USB exploit framework with wireless remote trigger
• USB Power Delivery Analyzer
• USB armory + Enclosure - open source hardware design, implementing a flash drive sized computer for USB device emulation

LAN - Ethernet

• LAN Turtle - covert system administration and penetration testing tool providing stealth remote access, network intelligence and man in the middle capabilities, drops shells anywhere
• Hak5_Shark_Jack - penetration tool for perform network audts and information gathering attacks
• Throwing Star LAN Tap Pro - LAN traffic sniffing device --> documented in Throwing Star LAN Tap
• Throwing Star LAN Tap Kit - LAN traffic sniffing device --> documented in Throwing Star LAN Tap
• Packet Squirrel - stealthy pocket-sized person-in-the-middle.
• Plunder Bug LAN Tap - ethernet network sniffer

Cable connected IoT protocols

Logic Analyzer

• Saleae Logic 8 USB Logic Analyzer - 8 channel Logic analyzer is a debugging tool used to record and view digital signals with a sample rate of 100 MSPS
• FPGA ZYBO Z7-20 Zynq-7020 Dev Board - Zybo Z7 is a feature-rich, ready-to-use embedded software and digital circuit
• GreatFET One - Hardware Hackers friend, USB peripherial to interface an external chip, a logic analyzer, a debugger, or just a whole lot of pins to bit-bang. The GreatFET project produces interface tools for hardware hacking, making, and reverse engineering.

Firmware Aquisition

• Attify Badge IoT Hacking Device - supported protocols: UART, SPI, JTAG, I2C, GPIO for offensive IOT exploitation
• Bus Pirate v3.6 Universal serial interface - 1-Wire, I2C, SPI, JTAG, asynchronous serial (UART), MIDI, PC keyboard, HD44780 LCDs, and generic 2- and 3-wire libraries for custom protocols
• Segger J-Link V8 - USB JTAG Emulator device used to flash, program and debug ARM-based chipsets
• JTAGulator - On-chip debug (OCD) interface to extract program code or data, modify memory contents, or affect device operation on-the-fly

Mobile Phone Pentesting

• Riff Box II
• Medusa Pro Box - Medusa Pro I Box
• Medusa Pro II Box Set
• Octoplus Pro Box Set - Octoplus Pro Box is a multibrand tool that lets you perform Flash/Decode/Repair operations with various cell phones.

Other Interfaces

• CAN Bus
  • CAN-Bus-Shield V2.0 - Enables communicattion of arduino with CAN-Bus
• HDMI
  • Screen Crab, HDMI sniffer - Highly covert HDMI interception & exfiltration device, passively intercept any video signal.
• I2C, SPI
  • Aardvark I2C/SPI Host Adapter Unit - I2C bus and SPI bus host adapter through USB
• RS232
  • Serial Logger Max RS232 16GB - compact serial and RS-232 logging device which can be accessed by USB and Wifi
  • Serial Logger RS232 - compact serial and RS-232 logging device which can be accessed by USB

Wireless Technologies

• SDR
• RF Analysis tools
• WiFi
• Bluetooth LE (advertising only)
• 802.15.4 (used by Zigbee, Xbee, 6LoWPAN)
• ZWave (European frequency, 868MHz)
• RFID + NFC

Software Defined Radio (SDR)

• HackRF One Software Defined Radio (SDR) - open source software defined radio platform
• BladeRF x40-Board, Software-Defined Radio (SDR) - open source software defined radio platform
• NooElec SDR Kit - SDR kit
• NESDR Nano 2+: Tiny RTL-SDR USB Set w/ 0.5PPM TCXO, R820T2 Tuner & Antenna - Tiny size SDR based on the R820T2 tuner IC (tuning range of 25MHz-1700MHz)

RF Analysis tools

• PandwaRF Rogue Pro - Bluetooth Smart (BLE) to Sub-1 GHz module. PandwaRF (formerly GollumRF) is a RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or a PC
• CC Debugger Programmer RF System On Chips — Texas Instruments Debugger and programmer for the TI Low Power RF System-on-Chips supports Zigbee, Wifi, Bluetooth,..
• YardStick One - usb radio dongle for transmitting and receiving digital wireless signals at frequencies below 1 GHz

Wireless WiFi

• DELOCK® 12463 WLAN-Adapter, USB, 1167 MBit/s
• Alfa AWUS036ACH Wide Range AC1200 Wireless Adapter
• Alfa AWUS036NHA Long Range USB Adapter
• Alfa AWUS036EAC AC1200 USB Wireless Adapter
• AWUS1900 Long range USB Wireless Adapter
• Wifi Pineapple Nano - rogue wireless access point
• WiFi Pineapple Mark VII - Powerful wireless network auditing and penetration testingtool

802.11ac WiFi, Bluetooth 4.2

• ZOTAC mini-PC ZBOX nano CI327 - Barebone - Celeron - DDR
• NXP LPC54018 IoT module

Bluetooth

• Ubertooth One, 2.4 GHz wireless development platform - passive sniffing
• Wundertooth - 2.4 GHz wireless development platform - passsive sniffing
• LogiLink USB Bluetooth v4.0 Dongle - BT0015 Bluetooth 3Mbit/s Network Interface - active sniffing
• InputStick RAT Wireless USB Receiver - Control computers remotely via USB-stick, cross platform and undetectable.

Zigbee

• ConBee ZigBee USB Gateway - multiprotocol-sniffer for 802.15.4 (Zigbee) network analysis
• RaspBee premium, Erweiterungsplatine mit Funkmodul für Raspberry Pi
• Sub-GHz Analyzer Stick BitCatcher - Zigbee BitCatcher analyzer firmware on USB radio stick
• XBee 802.15.4 S2C 63mW Wire Antenna - Zigbee RF module with antenna and transmission power 63 mW
• Xbee® 802.15.4 S2C 3MW PCB Antenna - Zigbee RF module with antenna and transmission power of 3.1 mW
• Sub-GHz Analyzer Stick BitCatcher - Zigbee BitCatcher analyzer firmware on USB radio stick

802.15.4 (Zigbee, 6LoWPAN)

• 2,4 GHz Cortex-M3 deRFusb-23E06 JTAG - 2.4 GHz USB radio stick with additional 2 GB Flash and JTAG connection based on Atmel's ARM Cortex-M3 microcontroller ATSAM3S4
• AVR RZUSBSTICK- 2,4 GHz IEEE 802.15.4, 6LoWPAN, and ZigBee networks.
• 6LoWPAN nRF52840 Dongle - is a small, low-cost USB dongle that supports Bluetooth 5.3, Bluetooth mesh, Thread, Zigbee, 802.15.4, ANT and 2.4 GHz proprietary protocols and can be used for sniffing.

Z-Wave

• RaZberry2 Z-Wave Plus Modul for Raspberry Pi
• AeonLabs Z-WAVE USB Stick GEN5 with built-in rechargeable lithium battery

LoRa

• Raspberry Pi LoRa/GPS HAT, 868MHz - GPS and LoRa expension module for Raspberry Pi

Wireless access point

• Wifi Pineapple Nano- wireless access point

RFID + NFC

• Proxmark 3- for sniffing in low frequency ( 125kHz and 134kHz) and high frequency (13.56mHz) bands
• Proxmark3 RDV4 Kit
• RFID Field detector
• Chameleon Tiny: RevG
• Chameleon Mini: RevE Rebooted - portable NFC emulation & manipulation tool
• Hunter Cat - Card Skimmer Detector v0.3 - pocket ATM Card Skimmer Detector
• HydraNFC without HydraBus - HydraNFC Shield v1.0 is an NFC shield hardware (to be plugged on top of HydraBus) to sniff/read/write/emulate any 13.56MHz NFC tags for anyone interested in advanced NFC Research/Dev/Debug/Hack/PenTest on NFC products.
• Keysy RFID Duplicator - device for copying and emulating some Low Frequency (125KHz) RFID tags.
• RFID Reader/Writer DL533N - LibNFC RFID Compatible Reader/Writer multi-tool in a USB-Stick