Jump to content
Hak5 Forums

incendiarySolution

Active Members
  • Content count

    10
  • Joined

  • Last visited

About incendiarySolution

  • Rank
    Hackling
  1. What is the packet squirrel?

    Alright, so I want to speculate something based on all the other products that are out there from Hak5 already. Here's what we know. -- The device uses wired ethernet, but NOT wireless data -- The device is made for man in the middle attacks -- The device deals with packets I think the Packet Squirrel is a three port, 1 gig switch device. One port is an input, one is a clean output, and one is a modified output. This would be able to process the input and output at really high speed, probably with it's own high-end processor and linux distro to deal with the dataload, and at least one USB port. This would be powered by a 5v microusb or POE. Usage case would be to tcpdump from an incoming wan signal, then output that to a USB device, clone the input to a clean output port, and have a place for a modified port that can be forwarded, filtered, and all that other stuff. Hence, man in the middle. From there, you can do a whole bunch of other stuff with the traffic, like you would with a lan turtle. But that just sounds like a pineapple without wifi? Yeah, but there are a few other things that might differentiate it. -- Onboard 1tb/storage, a sata slot, or one of the new low-profile storage slots would do it. That way TCPdumps could be done directly to the squirrel, and when you go to pick up the device, you have everything in one neat package -- @Sebkinne said this wasn't a wireless device, but that might not entirely be true. The squirrel might communicate on a non-traditional wireless spectrum like LORA or whatever to achieve a long-distance shell. -- The Squirrel might just be a 1g port cloning switch, powered by microusb or POE. If that's the case, then we may have already seen the device in the video on this thread, in the little multi-colored switches that they were using for their credit card machines. At the right price point and throughput, that would be impressive. -- A fourth port is a USB 3.0/3.1 port that hosts Ethernet. It would combine well with the bash bunny, nano, or lan turtle, and auto configure for devices that attach via RDNIS. Combined with a ducky, it'd give you flat if-then packet injection possibilities. Combined with a bunny, it'd give you a shell. Combined with a nano, a wireless shell. With a cellphone, 3g, 4g, bluetooth, wifi. With a lan-turtle 3g, full 1g packet manipulation and redirection, complete with shell, and now featuring USB 3.0/3.1 and 3g for near total capture and a shell that can be controlled from anywhere in the world.
  2. Run on Battery for instant attacks?

    Aside from the warranty and whatever, there are test pins rather than pinouts. It might be a little more pricey to build using pogo pins, or ugly to solder, but there's definately some potential there.
  3. Run on Battery for instant attacks?

    Sounds like a good use for a supercap or a microlipo.
  4. Ducky VS Bunny

    I can have multiple payloads that I can swap on the fly without having to organize with a bunch of duckies. I can improvise based on the needs of the operation. In theory, I can have the bunbun react to the situation because it has some thought power behind what it's doing. In theory, I could decrypt hashes and modify my attack vector in front of the machine without having to make a second pass at the target. Besides, go try and run a webserver on a Ducky. Let me know how that works out for you. One runs Linux, the other is a microcontroller.
  5. Bash Bunny specs?

    Why don't you check SDA to SDD? I'm betting there's an OS disk and a couple 2g payload disks, with maybe swap or something on one too.
  6. Immediate or Simultanious Storage Access

    Asking for a friend.
  7. Immediate or Simultanious Storage Access

    So if Im crafting a payload and i want the bunny to make a decision based on the output of a terminal she's typing in, would I be able to use something like 'nmap localhost >> storage' then use an if-then to read the file the data is stored to and plan an attack vector that way? 'if ssh, then ssh' My experience with storage is that simultanious access doesnt work well, is that true here?
  8. Bash Bunny specs?

    Is it bad that this is kinda hot? Also, how about the back side? I like seeing those test pads, but they're a little small for soldering. I'm thinking pogo pins?
  9. Bash Bunny specs?

    So I haven't seen the top of this thing, I would be really excited to see a microSD expansion port, and ability to add wifi over UART or something. Also, Ram? If this runs off swap, it's going to be a limited use device 'Im expecting around 512 or 1g of RAM, but 2g would really let this be more of a tinkers' device.
  10. Violation of CoC

    Are you using configfs or g_multi? I've been struggling to get configfs to work for a few weeks now on another gadget I'm playing with, but multi seems like it works just fine.
×