Tools

JackIt

JackIt exploits the MouseJack vulnerability, and is capable of injecting keystrokes in many Logitech and Microsoft keyboards and mice from hundreds of meters away.

uC_Mousejack

Microcontroller MouseJack is an embedded version of the JackIt tool. It uses an ATMega32u4 and an NRF24L01+ radio to perform completely automated attacks.

uDuck

uDuck is a low-cost disposable HID injector.

RSulley

RSulley is a Ruby language port of Pedram Amini’s Sulley fuzzer.  It’s missing some features of Sulley, but uses a Ruby DSL to define fuzz cases.  This makes it simple and intuitive to build new fuzzing tests.  For more advanced block-based fuzzing, I would recommend Peach Fuzzer by Deva Vu Security.

UFuzz

UFuzz (Universal Plug and Fuzz) is an automated UPnP fuzzer for finding bugs in embedded systems. Read more about it here.

Netstat.rb

Nice little script to log into an embedded target using telnet an enumerate which processes are listening on which ports. You can ignore the NAT entries, this field does not work on most targets.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s