Hackers of India

The Pwnage Saga Continues

By  Nikhil Mittal  on 16 Mar 2012 @ Blackhat

This talk covers following tools where the speaker has contributed or authored
KAUTILYA

Presentation Material

Teensy Programming for Everyone from Nikhil Mittal

Abstract

When Kautilya was being written, only one thing was thought of: utter pwnage. Operating Systems continue to trust Human Interface Devices. If you are a HID it means no X-Ray, no pat down and no random security check either ;)You are not supposed to be a threat by any countermeasure or security mechanism.

Many of us, for our Penetration Tests have been using Teensy. A programmable USB Micro-controller which can be used as a ‘keyboard’ and could be programmed to type as per our wish. Kautilya is the toolkit for easing the use of Teensy in Penetration Tests. Some new and shiny attack methods have been implemented into it. This talk will focus on these new methods to get into modern Operating Systems. The talk will be full of live demonstrations.