Forgiven Posted September 9, 2013 Share Posted September 9, 2013 For Fair Use: http://hackaday.com/2013/08/12/hacking-transcend-wifi-sd-cards/ "[Pablo] is a recent and proud owner of a Transcend WiFi SD Card. It allows him to transfer his pictures to any WiFi-enabled device in a matter of seconds. As he suspected that some kind of Linux was running on it, he began to see if he could get a root access on it… and succeeded. His clear and detailed write-up begins with explaining how a simple trick allowed him to browse through the card’s file system, which (as he guessed correctly) is running busybox. From there he was able to see if any of the poorly written Perl scripts had security holes… and got more than he bargained for. He first thought he had found a way to make the embedded Linux launch user provided scripts and execute commands by making a special HTTP POST request… which failed due to a small technicality. His second attempt was a success: [Pablo] found that the user set password is directly entered in a Linux shell command. Therefore, the password ”admin; echo haxx > /tmp/hi.txt #” could create a hi.txt text file. From there things got easy. He just had to make the card download another busybox to use all the commands that were originally disabled in the card’s Linux. In the end he got the card to connect a bash to his computer so he could launch every command he wanted. As it was not enough, [Pablo] even discovered an easy way to find the current password of the card. Talk about security…" Seems like an interesting miniature AP could be made from this...thoughts? Quote Link to comment Share on other sites More sharing options...
Forgiven Posted September 9, 2013 Author Share Posted September 9, 2013 It seems to me that a hacked Transcend could be a very small battery-powered Karma device. For instance, plug it into one of these: SD to USB Adapter Then the usb end goes into one of these for power: Anker external battery backup, small. Then tape the whole thing to the water cooler and have fun picking up beacon requests or whatever floats by. Quote Link to comment Share on other sites More sharing options...
Forgiven Posted September 10, 2013 Author Share Posted September 10, 2013 Just found out that Sandisk has come out with a 32G wireless usb flashdrive. It acts like a wireless AP, has an internal battery, and small form factor. Seems like the perfect hack project. I just bought one. Quote Link to comment Share on other sites More sharing options...
br0k3nilluzion Posted September 10, 2013 Share Posted September 10, 2013 add this to the toolset for the Rubber Ducky.. and you now have a pocket full of everything you need. Too bad there wasnt a microsd one of these.. you could change the Rubber Ducky scripts on the fly...!! Quote Link to comment Share on other sites More sharing options...
whizdumb Posted September 10, 2013 Share Posted September 10, 2013 (edited) add this to the toolset for the Rubber Ducky.. and you now have a pocket full of everything you need. Too bad there wasnt a microsd one of these.. you could change the Rubber Ducky scripts on the fly...!! Older article... But who knows maybe it could be a reality someday... http://techcrunch.com/2009/07/23/only-in-japan-kddi-shows-off-wireless-microsd-card/ or Maybe this could work.. http://eshop.sintech.cn/sd-to-micro-sd-fpc-extender-with-65mm-flex-cable-p-764.html Edited September 10, 2013 by whizdumb Quote Link to comment Share on other sites More sharing options...
Forgiven Posted September 10, 2013 Author Share Posted September 10, 2013 add this to the toolset for the Rubber Ducky.. and you now have a pocket full of everything you need. Too bad there wasnt a microsd one of these.. you could change the Rubber Ducky scripts on the fly...!! The sandisk connect has a microsd... you read my mind! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.