Saturday, November 16, 2013

Multiplexed Wired Attack Surfaces

Kyle Osborn and I presented Multiplexed Wired Attack Surfaces at ToorCon 15. This was the second time we gave the talk. The first was at Black Hat USA 2013, but the ToorCon video was posted first.

The basic idea is that connectors on electronic devices are often used in unexpected ways and that some devices, especially phones and tablets, even multiplex several functions onto a single connector. We demonstrated how we are able to access an interactive shell on certain Android phones by connecting a special serial adapter to the phone's USB port; although we were physically connected to the phone via the USB port, we were not using USB.

Similar multiplexed interfaces are present on a wide variety of portable devices, often accessible via USB or headphone connectors. An excellent example using a headphone jack was published earlier this year. We hope that our talk will raise awareness about the attack surfaces presented by these types of interfaces.

The talk at ToorCon was a lot of fun. We got a shell and activated adb on a phone handed to us by a volunteer from the audience. I hope you enjoy the video, but you should also read the paper we wrote for Black Hat.

We've posted links to several resources related to the talk.

28 comments:

Doctor Who said...

Mr Ossman, I've gone over the work the two of you did last year with that diea to launch an ADB based shell on an Android based phone. I also studied the rig that you both wired. From the USB adapter it is easy to understand where everything goes. But not for the FT232R breakout board. What pins were selected for the colored wires in that photo?

Doctor Who said...

Pardon me, that should be "idea".

Xhakeira said...

this is what I need for my phone..
Informative URL for Atlanta Carpet Repair Company

Informative URL for Alaska Fishing Guide website said...

Thanks for sharing this resouces http://greatscottgadgets.com/infiltrate2013/ will check out this one

Informative URL for Santa Barbara Carpet Repair Outfit said...

This is way to complex for me, but it's a good post btw

Agen Bola Terpercaya said...

nice arrived hear Agen bola terpercaya

Agen Bola said...

nice day all guy.Agen Bola

Nick Smith said...

Very nice post. I love it !
read more

Unknown said...

There is lot of articles on the web about this. But I like yours more, although i found one that’s more descriptive.

Access Control Services

Story said...

Which one is best curling iron
?

Umrah Package From Pakistan said...

Here you can get review about Best curling Iron 2018

seak said...

Top 5 best ballpoint pen brands in 2019 reviews
Top 5 best cookware sets in 2019 review
Top 5 best vlogging camera in 2019 review

Unknown said...

This is such an interesting article.
Well done.

restoqq said...

Sexy Casino Online
Saktibet Judi Live Bola
RestoQQ Agen domino99
RestoQQ agen Ceme Online
saktibet Agen Slot Online

Medical Journals List said...

Nice article, very nice article.
Thanks
Care journals list 2019
Directoy of open access journals 2020

Simran said...

Great Article & Thanks for sharing.

Oflox Is The Best Digital Marketing Company In Dehradun, Website Development company in Dehradun or Website Development Company In Saharanpur

PS Hardware said...

Exactness machining can bring any assembling cycle to the following level. It can do some incredible things for operational effectiveness, limit turnaround time, and cut creation costs. please visit our web ; aluminum turning and milling parts

khan said...

What a good content sir i love your content and i am your regular followers and i always read your content i never miss your content thaks for creating such a informative blog i hope you always write this type of blogpersonalized custom airpod case,

Mod Go said...

The blog is really good. Thanks for sharing it. luggage weighing scale

Franco BG said...

Курсы валют в Аксу https://credits-online.kz/currency/aksu

Unknown said...

I recommend professional expert Programmer Email: vitorzprogrammer@gmail.com, for Recovery Funds / Cryptocurrency / Binary / Forex / Recovery of Stolen Bitcoin / Report scammers and blocking of Scammers Emails, website's, phone number's / Removing Bad Records from Both Public and Private database: Whats App (+1) 519 / 398 / 1460

Anonymous said...

I would strongly love to recommend the services of the best team of dark web hackers. They are professional and very discreet in carrying out their jobs, they have the best customer service agents and satisfaction at heart. If you have any services you wish to contact them for, go on (contact@wizardcharlesgrouphackers.com) WhatsApp +1 (519) 398-1460, They help track and monitor your cheating partner's phone without his idea, clear or erase criminal records as well as repair a bad credit score, all social media hacks, Recovery lost Funds from scammers / Cryptocurrency / Binary / Forex / Recovery of Stolen Bitcoin and many others. website : https://wizardcharlesgrouphackers.com/.n/

cambridgeenglish said...

The International English Language Testing System (IELTS) is a comprehensive exam that evaluates all four language skills: hearing, reading, writing, and speaking. Cambridge English Academy provides you with useful and insightful IELTS information to help you prepare for the test. Visit learn more about the IELTS exam plan, go to ielts coaching in Delhi . Are you looking for additional information? -
I'm excited for this maintenance and, according to you, this.
Please email us at the following address if you have any questions:

Anonymous said...

Hello
My name is Mary and I would like to ask if there is any Guest or Sponsored post option available on your website
I would like to post a unique and high quality article with a dofollow link inside
Please let me know all the guidelines for a perfect article

Best Regards
Mary Smith
crowdwork71@gmail.com

Anonymous said...

QUALITY SSN DOB DL HIGH CREDIT SCORES Leads
CC with CVV Fullz (USA, UK, CANADA)
Tutorials & E-Books For Ethical Hacking
Tools For Everything You Need

I'm On Telegram = @killhacks & I C Q = 752822040

Stuff available for
(Spamming, Carding, Ethical Hacking, LINUX, Programming, Scripting, etc. )

Deals in all kind of Tools, Tutorials, E-books, Leads/Fullz/Pros
Availability 24/7
FASTEST DELIVERY

Build Your Own Business with proper guide & Legit Tools
Always glad to serve

GOOD LUCK
Here I'm:
I C Q = 752822040
Tele-gram = @killhacks

Anonymous said...

Great blog🇺🇸🇺🇸📊🇺🇸📊📊📊📊📊🇺🇸❤️ Highly Recommended!
Very insightful, i will also say this here. Investment is one of the best ways to achieve financial freedom. For a beginner there are so many challenges you face. It's hard to know how to get started. Trading on the Cryptocurrency market has really been a life changer for me. I almost gave up on crypto at some point not until saw a recommendation on Elon musk successfully success story and I got a proficient trader Mr Bernie Doran , he gave me all the information required to succeed in trading. I made more profit than I could ever imagine. I'm not here to converse much but to share my testimony; I have made total returns of 2.6BTC from an investment of just 0.6BTC. Thanks to Mr Bernie I'm really grateful,I have been able to make a great returns trading with his signals and strategies .I urge anyone interested in
INVESTMENT to take bold step in investing in the Cryptocurrency Market, you can reach him on WhatsApp : +1(424) 285-0682 or his Gmail : BERNIEDORANSIGNALS@GMAIL.COM, bitcoin is taking over the world.❤️❤️❤️❤️📊📊😅📊📊✅✅✅✅✅✅✅✅✅✅

Rustik Cyber Hack Service said...

INTERNET SCAM ALERT‼️ The internet today is full of SCAM ADS, mostly in comments of various sites and blogs. A large number of individuals have been victims of scam and lost a lot of money to SCAMMERS. Most of the common scam you can see ❌BANK LOAN SCAM. ❌CRYPTO INVESTMENT SCAM. ❌LOTTERY SCAM. ❌HACKING SCAM ❌ONLINE BANKING SCAM. ❌DONATION SCAM ❌ONLINE DATING ROMANCE SCAM, ❌FAKES NEXT OF KIN ❌IMPERSONATING OF CELEBRITY SCAM ETC, WE GET MORE THAN 1000 REPORTS EVERYDAY...... ✳️The big Question is “Can someone who is a victim of Scam get their money back⁉️ I will say yes, and will tell you how. The only way to recover yours is to hire a Hacker who will help you take back your money from these Scammers and today is your lucky day, you just met the right professional expert rescue team perfect for the job. WHO ARE WE❔❔ We are Rustik Cyber Hack Service, A group of skilled Hackers who have dedicated our time to help individuals and overseas get back their money from INTERNET SCAMMERS. There is a research that was carried out to determine the amount of money lost through Scam, and it was confirmed that over USD $3 billion annually, millions of people get scammed everyday. HOW DO WE OPERATE❔ We first of all study the scammer(s) brought to us by hacking the device(phone or computer) to get information of How, Where, this person keeps money he/she as defrauded people of ( so many of this scammers don’t actually save the money in banks, they mostly stack the money in a Bitcoin wallet, that way it is safe and untraceable to authorities) and we work on a strategy to get back the money and give it back to whom they have defrauded. Contacting us is simple, just give us a message through the email below. If you are a victim of an internet scam or you know someone who is, make contact with us immediately. You are 💯 % safe to contact us, our email is very secure. We also provide Legit Hacking Services such as-: 🔸Phone Hacking/Cloning 🔸Email Hacking & Password Recovery 🔸Social Media Hacking & Password Recovery🔸Clear or Erase Databases 🔸Mobile Tracking 🔸Virus detection 🔸Mobile spy remote control access authorization, boost of credit score & Elimination. etc 2024 © All Right Reserved. WEBSITE: RUSTIKCYBERHACKSERVICE.COM TELEGRAM: HTTP://T.ME/RUSTIKCYBERHACKSERVICE

EMAIL: (CONTACT@RUSTIKCYBERHACKSERVICE.COM AND RUSTIKCYBERHACKSSERVICE@GMAIL.COM)

Isabel Bianca said...

There are good-quality recovery agents out there who are legit and honest when it comes to recovery. I was a victim of Bitcoin investment fraud which I regretted not to happen to anyone. What matters is the strangeness in you because being broken is not for weakness. A friend of mine introduced a recovery agent to me that helped me recover all my stolen funds. You can reach out with this information if you have any reason to. Email: sacluxcomptechspecialst@engineer.com