When Kautilya was being written, only one thing was thought of: utter pwnage. Operating Systems continue to trust Human Interface Devices. If you are a HID it means no X-Ray, no pat down and no random security check either ;)You are not supposed to be a threat by any countermeasure or security mechanism.
Many of us, for our Penetration Tests have been using Teensy. A programmable USB Micro-controller which can be used as a 'keyboard' and could be programmed to type as per our wish. Kautilya is the toolkit for easing the use of Teensy in Penetration Tests. Some new and shiny attack methods have been implemented into it. This talk will focus on these new methods to get into modern Operating Systems. The talk will be full of live demonstrations.

Žádné komentáře: