February 2012
7 posts
Stop by our booth at RSA to win a Pwn Plug Elite!
Drop your contact info into our “Pwn Box” at booth 2719 for a chance to win a Pwn Plug Elite!
Two ways to score a free Pwn Phone at RSA
1. Beat Jolly to the Cisco booth to pwn the SecureX challenge.
2. Beat Jolly to the Safelight Security booth and win one of their security challenges.
Note the common hurdle being Jolly. C’mon Jolly, does any one person really need 6 Pwn Phones? :]
Adding Bluetooth to the Pwn Plug
Ronin (Shadowcave) got this working at Shmoocon! Here are the steps:
apt-get install libfuse-dev libdbus-1-3 libdbus-1-dev obexftp libobexftp* libdbus-glib-1-2 libdbus-glib-1-dev obexfs python-gobject python-dbus bluez-hcidump
mkdir /var/pwnplug/bluetooth
cd /var/pwnplug/bluetooth
wget www.kernel.org/pub/linux/bluetooth/bluez-4.98.tar.gz
tar -zxvf bluez-4.98.tar.gz
cd bluez*
./configure...
Installing Ubertooth on the Pwn Phone
Thanks to Ronin at Shadowcave for putting this together!
http://www.hackfromacave.com/articles_and_adventures/ubertooth_pwnphone.html
Press trading with PenTest Magazine
We love the barter system.. and apparently it works for press too! =)
In exchange for several newsletter mentions and the such, PenTest magazine dropped our Pwn Plug into the latest “PenTest Regular” issue 02/2012. Thanks Olga!
http://pentestmag.com/pentest-regular-022012/
Video: Pwnie Express at ShmooCon 2012
http://securityorb.com/2012/02/dave-porcello-ceo-technical-lead-pwnie-express-discribes-products-shmoocon-2012/
Thanks Kellep!
Zigbee on the Pwnie Express!
Travis Goodspeed stopped by our booth at Shmoocon and got Zigbee sniffing working on the Pwn Plug (and the Pwn Phone!) using his GoodFET firmware! Not to be outdone, he then used this setup to illustrate Layer 1 Zigbee packet injection, based on his Shmoocon FireTalk “Remotely Exploiting the PHY Layer”. Total execution time: 16 minutes. =)
While Travis may be only the 3rd largest U.S....
