Description: In recent years, remote exploitation and usb auto-run have become less reliable methods of gaining a foothold inside a target organization. However, blended "cyber-physical" social engineering attacks have shown high rates of success and low rates of detection. The malicious emulation of human interaction will continue to remain a powerful technique in the offensive arsenal for as long as humans need to interface with computers. This talk discusses the Human Interface Device Attack Vector and the design and creation of trojan usb and bluetooth mice and keyboards, which can be employed effectively by anyone who can gain physical access or able to deceive someone who has the required access, such as second-story men, disgruntled employees or social engineers.
Recent graduate with a B.S. of Computer Science from California State Polytechnic University of Pomona. Conducted undergraduate research in the subject of the HiD attack vector and the windows kernel and driver framework. Proud to be an Adrianist Ally and aspiring Disciple of Dave.
For More Information Please Visit: -
http://www.derbycon.com/
http://www.irongeek.com/i.php?page=videos/derbycon5/mainlist
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.