highway to the danger drone
play

Highway to the Danger Drone BLACK HAT USA 2016 LAS VEGAS, NV - PowerPoint PPT Presentation

Apr 27, 2023 •362 likes •723 views

Highway to the Danger Drone BLACK HAT USA 2016 LAS VEGAS, NV Presen sented ed b by: Francis tastic Brown David Latimer Dan altf4 Petro Bishop Fox, LLC August 03, 2016 www.bishopfox.com Agenda OVERVIEW 1.

  1. Highway to the Danger Drone BLACK HAT USA 2016 – LAS VEGAS, NV Presen sented ed b by: • Francis ‘tastic’ Brown • David Latimer • Dan ‘altf4’ Petro Bishop Fox, LLC August 03, 2016 www.bishopfox.com

  2. Agenda OVERVIEW 1. The Danger Drone by Bishop Fox 2. Crazy State of Drone Defenses 3. Drone Legal Landscape 4. IoT = Target Rich Environment 5. Future Is Gonna Be Awesome 2

  3. No Such Thing as Drone Defense ‘Best Practices’ MOTIVATIONS BEHIND THIS TALK • Companies are beginning to implement 1 st generation drone defense solutions / products o P r e v i o u s p r o o f o f c o n c e p t s h a v e a l r e a d y d e m o n s t r a t e d t h a t t h e t h r e a t i s r e a l • There are no ‘best practices ’ or proven methods for defense against drones • Practical pentesting tools are needed to test the effectiveness of these new ‘drone defense’ deployments o S e p a r a t i n g r e a l c o u n t e r m e a s u r e s f r o m s n a k e o i l o M u s t b e c h e a p , e a s y t o b u i l d , a n d e a s y t o l e a r n h o w t o u s e f o r s e c u r i t y p r o f e s s i o n a l s 3

  4. Drone Threat Is Real PAST PROOF OF CONCEPTS HAVE ALREADY DEMONSTRATED THIS • Past proof of concepts have already demonstrated the threat is real. Now companies are deploying drone defenses and need practical tools to test their effectiveness and eliminate exposures. 4

  5. DANGER DRONE FOR PENETRATION TESTERS

  6. Welcome to the Danger Drone FREE PENTESTING DRONE FROM BISHOP FOX • https://www.bishopfox.com/resources/tools/drones-penetration-testers/ 6

  7. DEMO

  8. Drone Brain = Raspberry Pi HEAVILY SUPPORTED IN DRONE AND HACKER COMMUNITIES • Raspberry Pi based copters have the obvious appeal of being heavily developed and supported by both the drone and hacker communities. • The 2 most popular Raspberry Pi based flight controllers are the Erle-Brain 2 and the Navio 2 :   Navio2 Erle-Brain 2 8

  9. Parts – Hacking ‘Over the Air’ HACKING PERIPHERALS – ADD-ON USB EXAMPLES • Wi-Fi • Bluetooth • RFID / NFC • ZigBee • Software Defined Radio • Wireless Keyboard Sniffers • ... Bluetooth 4.0 USB Micro SENA UD100 Bluetooth USB Wi-Spy DBx Pro – Adapter (CSR 8510 Chipset) USB Spectrum Analyzer Atmel – ZigBee Hacking Gear Asus USB-N53 HackRF One: (dual band) TP-Link TL-WN722N Software Defined Radio 9 WiFi Pineapple Nano

  10. Parts – Hacking ‘Over the Air’ HACKING PERIPHERALS – ADD-ON USB EXAMPLES • Custom 3D printed “3 rd shelf” is convenient for attaching hacking USB peripherals: TP-Link TL-WN722N 3D Printed 3rd Shelf 10

  11. 3D Designs CHEAPER, LIGHTER, AND CUSTOMIZABLE (EXTRA SHELVES / SPACE) • http://www.thingiverse.com/bishopfox/designs 11

  12. Parts – Cellular 3G USB & GPS – Command & Control HACKING PERIPHERALS – ADD-ON EXAMPLES • Remote control over SSH tunnel via 3G USB cell connection. GPS & Cellular signals are illegal to jam (see FCC regulations), making it hard to defend against this type of drone. o h t t p s : / / t r a n s i t i o n . f c c . g o v / e b / j a m m e r e n f o r c e m e n t / j a m f a q . p d f Wireless / Bluetooth / ZigBee / etc. Pen Testing Attacker Cell Tower Cell Tower Target Building Mission Planner * Note : be sure to check upcoming FCC regulations about 12 needing to keep drone within line of sight while flying.

  13. Parts and Pieces - Optional EXPENSIVE, BUT SWEET ADD-ONS • First Person View (FPV) Goggles • GoPro Camera, Gimbal, & Legs 13

  14. CONSTRUCTION EASIER TO MAKE SOMETHING THAT CAN ALREADY FLY ALSO HACK … THAN VICE VERSA

  15. Erle Copter – Kit for Sale EASIER TO SOMETHING THAT CAN FLY ALSO HACK… INSTEAD OF VICE VERSA • Erle-Copter – Hardware Kit – get most parts for ~$499. For an extra $250 comes assembled. o h t t p s : / / e r l e r o b o t i c s . c o m / b l o g / p r o d u c t / e r l e - c o p t e r - d i y - k i t / o h t t p s : / / e r l e r o b o t i c s . c o m / b l o g / p r o d u c t / e r l e - b r a i n - v 2 / o h t t p s : / / e r l e r o b o t i c s . c o m / b l o g / e r l e - c o p t e r / 15

  16. Parts and Pieces - Assembly DISSECTING THE ‘ERLE COPTER’ • http://erlerobotics.com/docs/Robots/Erle-Copter/Assembly_|_Montaje/Erle-Brain_2/EN.html 16

  17. Parts and Pieces – Closer Look DISSECTING THE ‘ERLE COPTER’ 17

  18. Parts and Pieces – Piecemeal CHEAPER TO BUILD YOURSELF - SLIGHTLY Essentially starting with working / flying Erle-Copter and then $490.53 • adding hacking capability (without breaking flying ability): Adding Hardware – e.g. USB peripherals to Raspberry Pi, shelves • Adding Software – e.g. drivers, config changes, installs, etc. • Bishop Fox – Danger Drone Research – Parts Lists, Assembly, and Config Guidance see: https://www.bishopfox.com/resources/tools/drones-penetration-testers/ 18 •

  19. DRONE DEFENSES THERE ARE NO BEST PRACTICES … YET

  20. Drone Defenses Gone Wild NO BEST PRACTICES, SO PENTEST TOOLS NEEDED TO VALIDATE THESE ARE WORKING Fox News - Watch a police eagle take down a drone - 01Feb2016 “I’d like to spend my security training budget on falconry classes, please.” – Every Security Professional Next Year 20

  21. Drone Defenses Gone Wild NO BEST PRACTICES, SO PENTEST TOOLS NEEDED TO VALIDATE THESE ARE WORKING Security Affairs - The Dronecatcher evolves featuring a new improvement - 04April2016 Popular Mechanics - Drone-Mounted Net Cannon Snags Other Drones with Ease - 12Jan2016 21

  22. Drone Defenses Gone Wild NO BEST PRACTICES, SO PENTEST TOOLS NEEDED TO VALIDATE THESE ARE WORKING Security Affairs - DroneDefender, electromagnetic gun that shoot down drones - 16Oct2015 Only really work against Wi-Fi controlled drones, ineffective against those like the Danger Drone (i.e. cellular/GPS control) • 22

  23. Drone Defenses Gone Wild NO BEST PRACTICES, SO PENTEST TOOLS NEEDED TO VALIDATE THESE ARE WORKING Gizmodo - The Next Star Wars Movie Has Recruited a Team of Drones to Protect Its Secrets - 22Feb2016 https://www.droneshield.com/ • Why monitor a problem if you don’t do anything about it, though? • 23

  24. Drone Defenses Gone Wild NO BEST PRACTICES, SO PENTEST TOOLS NEEDED TO VALIDATE THESE ARE WORKING The Register - Airbus doesn't just make aircraft – now it designs drone killers - 27July2016 http://www.dedrone.com • 24

  25. LEGAL ISSUES YOU HAVE THE RIGHT TO REMAIN FRUSTRATED

  26. FAA Rule on Small Drones CHANGING LEGAL LANDSCAPE Effective: 29 Aug 2016 • https://registermyuas.faa.gov/ 26

  27. Hard to Legally Defend Against Drones IF YOU CAN’T JAM THE SIGNAL, AND YOU CAN’T BLAST WITH A SHOTGUN… THEN WHAT? The Register - Bloke cuffed for blowing low-flying camera drone to bits with shotgun - 20July2015 “What the h*** are we supposed to use, man, harsh language?” – Aliens (1986) 27

  28. IOT TARGETS ‘OVER THE AIR’ HACKING VIA DRONE

  29. IoT = Target Rich Environment LOTS OF NEW TARGETS FOR ‘OVER THE AIR’ ATTACKS Ideal platform to launch ‘over the air’ attacks against new IoT products popping up in both the home & office • Drone hacking threats need to be considered by consumers, security pros, and IoT product manufacturers • + = Target Rich Environment Danger Drone Internet of Things (IoT) 29

  30. IoT – ‘Over The Air’ Attack - Examples HACKING SMART TV AND STREAMING DEVICES – FROM DRONE • http://www.bishopfox.com/blog/2014/07/rickmote-controller-hacking-one-chromecast-time/ 30

  31. IoT – ‘Over The Air’ Attack - Examples HACKING SMART FRIDGES – FROM DRONE Aug 2 2015 015 • http://securityaffairs.co/wordpress/39558/hacking/samsung-smart-fridge-hack.html 31

  32. FUTURE IS AWESOME 1980’S SCI-FI… FINALLY HAPPENING

  33. The Future was on TV in the Past GADGETS – SMALLER FLYING DEVICES & DROPPING OFF GROUND DEVICES Wearable drones “Bugs” Transformers – Laserbeak Call of Duty - RC-XD Remote Sand Flea - Jumping Infiltrating Robot 33 24 (TV) – Spy Bot Control Car (w Camera/Mic)

  34. Bishop Fox – Danger Drone Research: • https://www.bishopfox.com/resources/tools/drones-penetration-testers/

  35. Attributions (Images in Slides) Wi-Spy image BlueTooth Module Breakout image Adapter image BlueTooth Bee image ASUS USB image tkemot/Shutterstock Wi-Fi Antenna image dizain/Shutterstock Blue-Tooth USB adapter image WEB-DESIGN/Shutterstock Roving Networks image BlueSMiRF image Arduino BlueTooth image Raspberry Pi BlueTooth image O’Reilly BlueTooth Book image SENA Adapter image Wi-Fi Pineapple image Raspberry Pi image

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Drone accidents have increased Drone accidents have increased Drone Crashes Through Window Drone

Drone accidents have increased Drone accidents have increased Drone Crashes Through Window Drone

Matthan : Drone Presence Detection by y Id Identifying Physical Sig ignatures in in the Drones RF F Communicati tion Phuc Nguyen , Hoang Truong, Mahesh Ravindranathan, Anh Nguyen, Richard Han, Tam Vu Drone accidents have increased Drone

628 views • 24 slides
THE SPLASH DRONE 3 THE MODULAR ALL WEATHER WATERPROOF DRONE The Splash drone 3 is the most

THE SPLASH DRONE 3 THE MODULAR ALL WEATHER WATERPROOF DRONE The Splash drone 3 is the most

THE SPLASH DRONE 3 THE MODULAR ALL WEATHER WATERPROOF DRONE The Splash drone 3 is the most advanced Splash drone ever released.Its the first fully integrated modular amphibi- ous . (1) flying platform. Thanks to its new flight control system,

201 views • 7 slides
70 Min Drone Presentation 1. introduction 2. display of drone

70 Min Drone Presentation 1. introduction 2. display of drone

70 Min Drone Presentation 1. introduction 2. display of drone 3. parts of a drone 4. video presentation Presentation 5. drone flight breakdown: 6.

578 views • 4 slides
Drone businesses run on IDRONECT OS General Presentation July 20th 2020 1 Let your drone

Drone businesses run on IDRONECT OS General Presentation July 20th 2020 1 Let your drone

Drone businesses run on IDRONECT OS General Presentation July 20th 2020 1 Let your drone business take off with IDRONECT OS The operating system for your drone business. From customer request to invoice, manage and streamline all your

467 views • 8 slides
TOTAL AIRSPACE SECURITY DroneTracker is the complete drone detection and counter-drone platform

TOTAL AIRSPACE SECURITY DroneTracker is the complete drone detection and counter-drone platform

TOTAL AIRSPACE SECURITY DroneTracker is the complete drone detection and counter-drone platform for all applications. www.dedrone.com www.dedrone.com 1 Be Prepared for Aerial Threats Incidents +++ Man Jailed for Using Drone to Fly

337 views • 12 slides
Fully Automated Drone Platforms: Actionable Insights Without Hassle First of its kind Drone

Fully Automated Drone Platforms: Actionable Insights Without Hassle First of its kind Drone

Fully Automated Drone Platforms: Actionable Insights Without Hassle First of its kind Drone -in-a- Box is a game changer for agriculture Eliminating the Barriers to Real-Time Insights In order for drones to really find their place in

648 views • 6 slides
What is a Drone? Definitions: Drone is a generic term for a remote-controlled pilotless aircraft

What is a Drone? Definitions: Drone is a generic term for a remote-controlled pilotless aircraft

What is a Drone? Definitions: Drone is a generic term for a remote-controlled pilotless aircraft or missile The personally-owned drones are referred to by the FAA as Small Unmanned Aircraft Systems The FAA abbreviates this as sUAS They

308 views • 29 slides
Drone warfare and international law Prof. Dr. Tom Ruys 6 February 2014 Drone warfare and

Drone warfare and international law Prof. Dr. Tom Ruys 6 February 2014 Drone warfare and

Drone warfare and international law Prof. Dr. Tom Ruys 6 February 2014 Drone warfare and international law Tom Ruys 6/02/2014 Introduction - Unhelpful to speak of drone warfare as if it were governed by a specific normative framework

100 views • 9 slides
Illegality of US Drone Killings MQ-1B Predator Wingspan: 55 Feet MQ-1B Predator carries 2

Illegality of US Drone Killings MQ-1B Predator Wingspan: 55 Feet MQ-1B Predator carries 2

Illegality of US Drone Killings MQ-1B Predator Wingspan: 55 Feet MQ-1B Predator carries 2 AGM-114 Hellfire Missiles each 100 lbs and 5 feet long - Alwaki Drone Assassinations Pakistan 297 drone strikes killing 1800 people,

480 views • 29 slides
End-to-end Analysis and Design of a Drone Flight Controller Zhuoqun Cheng, Richard West, Craig

End-to-end Analysis and Design of a Drone Flight Controller Zhuoqun Cheng, Richard West, Craig

End-to-end Analysis and Design of a Drone Flight Controller Zhuoqun Cheng, Richard West, Craig Einstein Boston University Emerging Drone Applications Current State of the Art Most drone apps controlled by humans Use SBCs based

493 views • 33 slides
Ethics of Drones Trygve Lodin Terms Drone = UAV (Unmanned Aerial Vehicle ) Drone Types

Ethics of Drones Trygve Lodin Terms Drone = UAV (Unmanned Aerial Vehicle ) Drone Types

Ethics of Drones Trygve Lodin Terms Drone = UAV (Unmanned Aerial Vehicle ) Drone Types Military $10,000-$100 Million Older Diverse Recreational Commercial Growing Industry Beginning Stages

536 views • 16 slides
Health care in danger A matter of life & death Health care in danger project is a global

Health care in danger A matter of life & death Health care in danger project is a global

Health care in danger A matter of life & death Health care in danger project is a global initiative launched by ICRC aiming to: Improve delivery and security of effective and impartial health care in armed conflict and other situations

259 views • 9 slides
Drones - the new mashup target? Preben Thor October 2015 Agenda I have a drone, why do I

Drones - the new mashup target? Preben Thor October 2015 Agenda I have a drone, why do I

Drones - the new mashup target? Preben Thor October 2015 Agenda I have a drone, why do I need a use case? Where are my things? How does a drone work? Controlling the drone (from software) Final words Me Software

1.11k views • 67 slides
Human Gesture Recognition for Drone Control Drones are cool - Flying is hard 2 Drone

Human Gesture Recognition for Drone Control Drones are cool - Flying is hard 2 Drone

Human Gesture Recognition for Drone Control Drones are cool - Flying is hard 2 Drone Controllers 3 Proposed Solution: Gesture Control Drones already have cameras No additional HW required - Use human body as the controller Visible

400 views • 22 slides
Highway Infrastructure Challenges Highway Infrastructure Challenges Presentation Ottawa,

Highway Infrastructure Challenges Highway Infrastructure Challenges Presentation Ottawa,

Highway Infrastructure Challenges Highway Infrastructure Challenges Presentation Ottawa, September 19, 2005 Canadian Trucking Alliance The National Highway System The National Highway System NHS comprises 25,000 kilometres of highway

304 views • 9 slides
Precious wildlife Illegal poaching Himalayan foothills Park protection Himalayan foothills

Precious wildlife Illegal poaching Himalayan foothills Park protection Himalayan foothills

Precious wildlife Illegal poaching Himalayan foothills Park protection Himalayan foothills Drone training Footage from a conservation drone Drone image: rhinos What is a conservation drone? + + Model aircraft Autopilot Payload

568 views • 26 slides
NETWORKING NETWORKING PART RT 2: 2: LI LINUX UX commands PART 2: LINUX commands Agenda

NETWORKING NETWORKING PART RT 2: 2: LI LINUX UX commands PART 2: LINUX commands Agenda

Moreno Baricevic CNR-IOM DEMOCRITOS Trieste, ITALY INTRO TO INTRO TO NETWORKING NETWORKING PART RT 2: 2: LI LINUX UX commands PART 2: LINUX commands Agenda Agenda Network Interfaces Network Interfaces LINUX command line utilities

612 views • 46 slides
Green Security How Can AI Help in Protecting Forests, Fish and Wildlife MILIND TAMBE Helen N.

Green Security How Can AI Help in Protecting Forests, Fish and Wildlife MILIND TAMBE Helen N.

Green Security How Can AI Help in Protecting Forests, Fish and Wildlife MILIND TAMBE Helen N. & Emmett H. Jones Professor in Engineering University of Southern California WHAT MIGHT WE LOSE? Murchison Falls National Park, Uganda 2/23

665 views • 27 slides
35 th Shared Awareness Meeting 15 July 2020 Introduction and Area of Interest Brief Event Video

35 th Shared Awareness Meeting 15 July 2020 Introduction and Area of Interest Brief Event Video

35 th Shared Awareness Meeting 15 July 2020 Introduction and Area of Interest Brief Event Video Download: https://drive.google.com/file/d/1Esm3TR7TbwnFkoRQ52cv8LfhZy7ulrd3/view?usp=sharing Welcome Speech SLTC Gary Ow, Head IFC Mission To

622 views • 28 slides
Algebraic Aspects of Symmetric-key Cryptography Carlos Cid (carlos.cid@rhul.ac.uk) Information

Algebraic Aspects of Symmetric-key Cryptography Carlos Cid (carlos.cid@rhul.ac.uk) Information

Algebraic Aspects of Symmetric-key Cryptography Carlos Cid (carlos.cid@rhul.ac.uk) Information Security Group Royal Holloway, University of London 04.May.2007 ECRYPT Summer School 1 Algebraic Techniques in Cryptanalysis Algebra is the

659 views • 61 slides
A Course in Applied Econometrics 1. Introduction Lecture 12 2. Basics 3. Graphical

A Course in Applied Econometrics 1. Introduction Lecture 12 2. Basics 3. Graphical

Outline A Course in Applied Econometrics 1. Introduction Lecture 12 2. Basics 3. Graphical Analyses Regression Discontinuity Designs 4. Local Linear Regression 5. Choosing the Bandwidth Guido Imbens 6. Variance Estimation IRP

279 views • 8 slides
The Asia-Pacifjc Analysis and PDE Seminar New Sharp Inequalities in Analysis and Geometry

The Asia-Pacifjc Analysis and PDE Seminar New Sharp Inequalities in Analysis and Geometry

New Sharp . . . . . . . . . . . . . . . . . . . . . . The Asia-Pacifjc Analysis and PDE Seminar New Sharp Inequalities in Analysis and Geometry Changfeng Gui University of Texas at San Antonio Based on a joint paper with

1.53k views • 124 slides
5 Thoughts on Staying Sharp and Relevant Some thoughts and ideas on learning and thinking for

5 Thoughts on Staying Sharp and Relevant Some thoughts and ideas on learning and thinking for

5 Thoughts on Staying Sharp and Relevant Some thoughts and ideas on learning and thinking for todays IT pros Scott Lowe, VCDX 39 vExpert, Author, Blogger, Geek http://blog.scottlowe.org / Twitter: @scott_lowe Before we start Get

279 views • 15 slides
Sharp phase transition for Bargmann-Fock percolation Hugo Vanneuville (ICJ, Universit e Lyon

Sharp phase transition for Bargmann-Fock percolation Hugo Vanneuville (ICJ, Universit e Lyon

Sharp phase transition for Bargmann-Fock percolation Hugo Vanneuville (ICJ, Universit e Lyon 1) joint work with Alejandro Rivera (IF, Universit e de Grenoble) Random waves in Oxford, 19 th june, 2018 1/9 Hugo Vanneuville (ICJ, Universit

602 views • 33 slides

More recommend