Skip to main content

This Raspberry Pi-Based Hacking Device Can Help You Break into Any Computer


Passwords, iris scanning, and fingerprint protection are all here to help protect a computer from unauthorised access, but all of these have been rendered useless by a device that costs only $5 to build.
Samy Kamkar has shown in a video that it takes only a $5 Raspberry Pi Zero computer and free software to bypass protection on a computer using backdoor that’s installed through USB.
The hacking device is called PoisonTap and can emulate an Internet over USB connection that tricks the computer into believing that it’s connected via the Ethernet. Using the software, the computer is configured to prioritise the USB connection over wireless or Ethernet, so it begins sending unencrypted web traffic to PoisonTap.
The device automatically collects HTTP authentication cookies and session data from the majority of websites, with the hacker explaining that the top one million websites in Alexa are currently supported. Two-factor authentication is bypassed as well, as PoisonTap looks for cookies and doesn’t attempt to brute-force into the system or compromise login credentials.
While this is worrying to say the least, Kamkar explains that the hacking device becomes useless if the computer doesn’t have at least one tab running in a browser. Additionally, he says that computers with USB ports disabled, or put in hibernation mode, are also secure because this way all processes are suspended and the hacking device can no longer siphon data.
In case you’re wondering if things like antivirus solutions or stronger passwords can block PoisonTap, this isn’t the case, as the hacking device doesn’t rely in any way on brute-force attacks, so the length of your passwords doesn’t make any difference.
Furthermore, given the fact that it uses free software and a specially crafted backdoor, antivirus solutions won’t detect it, leaving the computer fully vulnerable to attacks.
The entire process is detailed in the video below and, as a general recommendation, make sure you close your browser before leaving the desktop (we know nobody does that, but this is the simplest thing we can all do to stay protected).

Comments

Popular posts from this blog

How To Bypass Windows AppLocker

How To Bypass Windows AppLocker Hello, today we will talk about Applocker bypass techniques in a Windows environment. What is Applocker, how does it protect systems, and more importantly, how to bypass this security feature. So many issues to tackle in this article! What is Applocker? Applocker is a software whitelisting tool introduced by Microsoft starting from Windows Vista/Seven/2008 in order to restrict standard users to only execute specific applications on the system. e.g.: “Alice can run explorer.exe, Bob, however, cannot!” If you are conducting penetration tests, you will likely find Applocker on very sensitive machines: industrial computers, ATM, business workstations, etc. How does it work? To activate Applocker on your testing machine, start the  Application Identity  service (Administrative Tool -> Services), then open the Group Policy Editor ( gpedit.msc  on a local machine or  gpmc.msc  on a domain controller). Browse to “App...

14 Best Online Jobs from Home – No Investment to Earn Money

Earn from PTC sites If you are trying to earn money online & need only small extra income less than $200 (Rs.12,000) then PTC sites are the best way to start. Here you need to click & read the advertisements for 10 to 3o seconds & get paid for each & every advertisement you view. There are many sites where you can register & make money by reading ads. All sites are free & there is no investment at all. You can check this list of 5 best PTC sites, signup & start earning. 2. Earn with GPT Sites To add more income, you can also join GPT sites where you can earn money by taking small surveys, watching videos, playing games & doing many more activities. We have worked on number of GPT sites but we will recommend only 3 sites which pays their member on time. You can receive your payment by PayPal, cheque or bank transfer. Check GPT sites here . 3. Become a Captcha Solver If you have more time then you can add further income in your po...

HACK HOTMAIL ACCOUNTS : HOTMAIL HACKER

I had previously discussed about  Gmail Hacker  to hack Gmail accounts. Likewise, this software can hack Hotmail accounts. Just follow the steps below: 1. Extract the RAR archive in a separate folder. 2. Run Hotmail Hacker Builder.exe file on your computer. 3. Enter your email address, password and subject of email you wanna receive. I suggest you to create a new email ID for this. You can use Gmail or Yahoo but avoid using Hotmail account. This email will contain the password you wanna hack. Also select appropriate smtp server address. The default smtp server address 587 is of gmail. You can google for smtp server addresses or can find it  here . Also, write a fake error message to display on the screen or leave it default. 4. Click on "Build". This will create your own Hotmail hacker in Hotmail hacker folder. 5. Now, send this Hotmail Hacker.exe file to victim of which you wanna hack Hotmail password and convince him that this program can hack anyone's Hotmail passwo...