Jump to content

Dfg

Active Members
 View Profile  See their activity

  • Posts

    8

  • Joined

  • Last visited

 Content Type 

Posts posted by Dfg

    Idea for a new cellular device

    in Hacks & Mods

    Posted

    This is taken from Zoklet.net. It seems a pretty unique idea and I thought Hak5 could work on it. I don't know if it will work but I am hoping someone here would know how to run it or make it.

    OK, here's an idea I had when I was thinking about infiltration into a network via 802.11 wireless. I'll try and explain it in terms of what I'm suggesting someone could do. I don't personally have the money to purchase the phone, nor the data access plan that would make it worthwhile, but I'm sure someone out there will probably be interested just for the fun.

    So, here's the idea: Take an Android phone -- Android is chosen because it uses a Linux kernel and it'll probably be easiest to modify. Modify the phone to have a Ethernet controller and CAT-5 or CAT-6 jack. Install the kernel module for the Ethernet controller (so the Ethernet capabilities become available to the phone's software), as well as the libraries and utilities needed to use the Ethernet (if applicable -- I don't know if Android already uses Ethernet-like services). Finally, install VPN server software (OpenVPN seems appropriate).

    Here's the use-case scenario: Assume you need to get on someone's Ethernet (as a pen tester with a contract to do it, of course). You can get someone physically in, but can't spend long enough to plant a trojan or reconfigure a firewall. You also can't risk the access point being detected if the company sweeps their facilities for 802.11 access points. Even beyond that, carrying a 802.11 wireless router in is VERY suspicious, and if one is found afterward you're the first suspect.

    Nobody cares if you bring in a cell phone, and they don't sweep for cellular frequencies in most businesses -- most businesses rely on cell phones for their core operations. It's very unlikely that someone driving by will detect that your cell phone is a VPN server. It's smaller than a wireless AP and easier to hide, although you may still need to plug it in to power in addition to Ethernet.

    Given that it's got a data plan (preferably allowing a lot of transfer bandwidth), you should be able to connect to it via Internet, allowing you to get into the network from almost anywhere in the world, meaning no more getting caught sitting in the parking lot. The bad part is that this approach is very expensive -- you have to buy the phone, the parts for modifying it, and the phone service plan (you can buy it with minimal talk and text messaging options, but lots of data transfer).

    Link: http://www.zoklet.net/bbs/showthread.php?t=96240

×
×
  • Create New...