PoisonTap – siphons cookies, exposes internal router & installs web backdoor (reverse tunnel) on locked/password protected computers with a $5 Raspberry Pi Zero and Node.js. https://samy.pl/poisontap/

By Samy Kamkar

Full details and source code at https://samy.pl/poisontap/

Buy a Raspberry Pi Zero here: https://amzn.to/2eMr2WY
Buy cement for your USB ports here: https://amzn.to/2fX0I1e

When PoisonTap (Raspberry Pi Zero & Node.js) is plugged into a locked/password protected computer (Windows, OS X or Linux), it:
– emulates an Ethernet device over USB (or Thunderbolt)
– takes over all Internet traffic from the machine (despite being a low priority network interface)
– siphons and stores HTTP cookies from the web browser for the Alexa top 1,000,000 websites
– exposes the internal router to the attacker, making it accessible remotely
– installs a persistent web-based backdoor in HTTP cache for hundreds of thousands of domains and common Javascript CDN URLs, all with access to the user’s cookies
– allows attacker to remotely force the user to make HTTP requests and proxy back responses (GET & POSTs) with the user’s cookies on any backdoored domain
– does not require the machine to be unlocked
– backdoors and remote access persist even after device removal

Music by Epoch Rises: https://soundcloud.com/epochrises
Intro graphics by Darin Leach: https://goo.gl/HDKRFG



Correlated Threads
Raspberry Pi Zero W is a $10 computer with WiFi and Bluetooth

Raspberry Pi gives us new ‘Pi Zero W’ for its fifth birthday

The $10 Raspberry Pi Zero W brings in Wi-Fi and Bluetooth to the tiny micro PC

The Raspberry Pi Zero W Adds Wi-Fi and Bluetooth to the Zero, Costs $10

Hands-On: A case for the Raspberry Pi Zero with camera

Pack a Raspberry Zero and Screen Into an Altoids Tin for a Compact Mini Computer

Best 5 Raspberry Pi Zero Electronics Projects Which Make Use Of Its Compact Measurement

The Raspberry Pi has long been the hobbyist selection for Do-it-yourself electronic projects. The Raspberry Pi Zero, which is close to the size of a stick of chewing gum, is fairly low priced and has it’s own special application scenarios though. There are ten of our most-liked projects that utilize its size.

1. Stuff a Raspberry Pi Zero Into an Old Style Game Controller

It’s well known the Raspberry Pi makes an fantastic DIY video game console. The setup process merely demands a couple of minutes, and the Raspberry Pi Zero is very efficient at handling dated games from the Super NES period and earlier. The whole project is more enhanced when the whole system is inside a controller.

Good example (ahem), this project operates on a Super NES controller, this one tackles the NES controller, and this one uses that good old original Xbox controller. However you attempt to undertake it, you will get a pretty slick tiny DIY retro gaming console you could tote around anyplace.

2. Construct a Small Dongle Computer

While the Pi Zero makes a great tiny computer as it is, it makes a far better dongle computer. In this manner, you can attach it to every other computer you have, then it will tether itself directly so you will never have to add in a USB or any networking.

One of the benefits of this project is the fact that you no longer need yet one more computer mouse, display, or key pad lounging around. Simply jam in into your normal desktop computer and you’re fine.

3. Build the World’s Most compact (Probably) MAME Cabinet

MAME cabinets are terrific, but they’re massive. For the complete opposite approach, you’re able to make use of a Raspberry Pi Zero to make one that is roughly as small as the Pi itself.

You will need a few items to help to make this sucker work, including a 3D printed case, but in the end cabinet is completely functional, which implies you will have the perfect desk accessory in the office.

4. Build a Motion Sensing Camcorder

source: http://www.instructables.com/id/Raspberry-Pi-Motion-Sensing-Camera/

The Raspberry Pi is almost certainly a good quality motion sensing camera, but the low profile of the Pi Zero can make it better yet.

Employing the Raspberry Pi Zero, your motion sensing camera has a quite smaller foot print, that means it can go in even tighter spaces. One example is, this one mounts to your window with a couple of suction cups, which is about as light and portable as it becomes.

5. Play Any Simpsons Episode (or Any TV Show) Arbitrarily

When you’ve ditched cable and gone full streaming with your media, you’ll probably still miss the days of catching an arbitrary episode of your most enjoyable TV show. The Raspberry Pi Zero can bring that back.

In this project, they use installments of The Simpsons stored on an Micro sd card. With a custom script, you could mouse click a button and it plays a chapter arbitrarily. It’s possible to increase any media you like here, including various shows if you really wanted, but The Simpsons make the perfect choice.

Leave a Reply

Your email address will not be published. Required fields are marked *