Pi Zero as a universal USB stick

Attack Tool

The emulation of a keyboard (HID, or human interface device) is prepared but not activated by default, because keyboards disguised as USB sticks are a popular tool for hackers. Lying around, apparently lost in the company car park, curious finders guilelessly plug the stick into a PC and don't notice that it is sending commands over the keyboard interface.

Keyboard mode, as well as the emulated network, makes the mobile Pi Zero the ideal tool for pen testers, because this kind of access to PCs bypasses all the firewalls and security mechanisms. Admins in companies therefore disable the USB ports on the employees' PCs (either in the BIOS or in software) as a precaution. A complete implementation of a toolbox is provided by the GitHub project [10]. If you use it, you need to know what you are doing and be sure you have permission, wherever you may be.

Conclusions

The Pi Zero again demonstrates its universal utility value in various fields of application. With a mobile PC you can carry with you the server environment of your choice, use the Pi for demonstration purposes, or simply avoid overloading a host with unnecessary software.

Programmers, on the other hand, appreciate the genuine environment with all the physical interfaces that the Raspberry Pi offers, in contrast to an emulation (e.g., with Qemu). The overhead for modding the mini-computer, including the software installation, is definitely manageable.

Infos

  1. Linux USB gadget mode API: https://www.kernel.org/doc/htmldocs/gadget/intro.html
  2. Geekworm USB adapter: https://geekworm.com/products/raspberry-pi-zero-w-badusb-usb-a-addon-board-usb-connector-case-kit
  3. Zero Stem for North America, Europe, and Australia: https://zerostem.io/sellers/
  4. Case for Geekworm adapter: https://www.thingiverse.com/search?sort=relevant&q=Pi+Zero+USB-A+Addon+Case&type=things&dwh=935e6a88da3df73
  5. Case for Zero Stem: https://www.thingiverse.com/thing:2516525
  6. My angled housing: https://www.tinkercad.com/things/kOFOeVrnuFP-pi-zero-with-90-usb-dongle
  7. raspi2go on GitHub: https://github.com/bablokb/raspi2go
  8. Files for this project: ftp://ftp.linux-magazine.com/pub/listings/linux-magazine.com/234/
  9. Pi Zero in read-only mode: https://learn.adafruit.com/read-only-raspberry-pi/
  10. Pi Zero as an attack tool: https://github.com/mame82/P4wnP1_aloa

The Author

Bernhard Bablok works at Allianz Technology SE as an SAP HR developer. When he's not listening to music, cycling, or walking, he deals with topics related to Linux, programming, and small computers. He can be reached at mailto:mail@bablokb.de.

« Previous 1 2 3

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES
Print Issues
Digital Issues
 
SUBSCRIPTIONS
Print Subs
Digisubs
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • Intel Unveils Compute Stick

    Four-inch-long computer on a stick lets you boot a full Linux system from any HDMI display device.

    more »
  • Raspberry Pie Zero: Just chill a bit.
    more »
  • Zero Trust Security

    Some old-school admins are still philosophizing about secure internal networks, but the experts have already moved on: Zero trust architectures use a reliable but complex strategy to protect the network from all threats – inside and outside.

    more »
  • Adafruit PyPortal

    Unlike other displays for the Raspberry Pi, Adafruit's PyPortal touchscreen provides an autonomous environment, including a microprocessor, sound output, and a WiFi connection.

    more »
  • CircuitPython

    The CircuitPython run-time environment runs on almost all microcomputers and microcontrollers, making it perfect for cross-platform programming.

    more »
comments powered by Disqus