Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cyber intelligence made easy.

Published byCory Long Modified over 6 years ago

Similar presentations

Presentation on theme: "Cyber intelligence made easy."— Presentation transcript:

1 Cyber intelligence made easy.
Remote Control System 7 Cyber intelligence made easy.

2 Can you intercept Skype calls? Can you open PGP encrypted files?

3 Skype adoption is growing fast
Skype adoption is growing fast. People trust it for confidential communications. Criminals too.

4 There’s more.

5 Everyone uses the Web. It’s cheap, easy and global.

6 The new Web is the social web. Highly dynamic. Vastly networked
The new Web is the social web. Highly dynamic. Vastly networked. Big data.

7 Actually, too much data. Mostly noise. Difficult to correlate.

8 Tap a cable and try to figure out what’s happening
Tap a cable and try to figure out what’s happening. 99% of that is of no interest.

9 Interesting data often never gets to the Web. It stays on the device.

10 And that device may be out of reach. Linked to the Internet
And that device may be out of reach. Linked to the Internet. But anywhere on Earth.

11 So what we want. Get access to secret data
So what we want? Get access to secret data. Figure out the interesting parts. Reach them, anywhere they are.

12 What you already have. Traditional passive interception
What you already have? Traditional passive interception. Not effective against encryption. You lose half the picture. Must pass through your network.

13 Traditional is good. Innovative is better.

14 Thinking about offensive interception? You should.

15 “Governments must have offensive IT capabilities.” The Financial Times

16 “Spy on suspected terrorists by inserting a remote forensic agent on their computers.” The Economist

17 A remote forensic agent. Clever idea. A sort of 007 for the digital age.

18 We have it.

19 Remote Control System 7

20

21 Evidence collection is always running. Configurable behavior
Evidence collection is always running. Configurable behavior. Autonomous.

22 What kind of evidences can be collected?

23 Voice conversations Browsed URLs Accessed documents Keystrokes Printed documents Messaging
Microphone Location Camera snapshots File system browsing Passwords … and more

24 RCS collected the evidences. They stay on remote device
RCS collected the evidences. They stay on remote device. How can we gather them?

25 Let’s talk about Desktops first.

26 Internet connection. Firewalls and proxies are passed through
Internet connection. Firewalls and proxies are passed through. Domain credentials are stolen.

27 Evidence can also be collected offline.

28 What about mobile platforms?

29 GPRS / UMTS / 3G+. You can provide a custom APN.

30 Open WiFi networks. Known protected networks
Open WiFi networks. Known protected networks. Access Points are automatically detected.

31 What if no data connection is available?

32 Bluetooth. Short Range. Let’s introduce RCS Mediation Node.

33

34 What happens if someone tracks the connection back?

35 Anonymizer Chain. Prevents disclosure of RCS server addresses
Anonymizer Chain. Prevents disclosure of RCS server addresses. Configurable on-the-fly.

36

37 RCS is also flexible.

38 Real-time alerting system. Custom commands execution on remote target
Real-time alerting system. Custom commands execution on remote target. Event-driven logic.

39 A few examples of event-driven logic.

40 When entering the meeting room, start the mic
When entering the meeting room, start the mic. On low battery, stop microphone capture. Special SMS is received, send back a SMS with position. Call is made or received, take a snapshot with the camera.

41 Combine them to suit your needs.

42 What if my target is very skilled?

43 Invisible to target user. Invisible to antivirus and anti-rootkits
Invisible to target user. Invisible to antivirus and anti-rootkits. Anti-forensic measures. Resistant to DeepFreeze restoration.

44 How can I install it on desktop systems?

45 Embed RCS into common file formats (0-day exploits)
Embed RCS into common file formats (0-day exploits). On-the-fly injection into downloaded applications or updates. Webpage code injection during browsing.

46

47 I’m lucky. Physical access is granted.

48 Bootable CDROM or USB thumb drive. Direct hard disk tampering.

49 What about installation on mobiles?

50 Memory Card. ActiveSync while synchronizing or charging
Memory Card. ActiveSync while synchronizing or charging. Embed RCS into smartphone applications. Over-the-Air installation.

51 Supported platforms?

52 Microsoft Windows XP up to 7 (32 and 64 bits) Mac OS X Leopard and Snow Leopard Linux coming in Q4 2011 Windows: we’re working on Windows 8 Mac: we’re working on OS X Lion Linux: will be ready before the end of the year

53 Windows Mobile 6. 0 up to 6. 5 iOS 3. 0 up to 4
Windows Mobile 6.0 up to 6.5 iOS 3.0 up to 4.2 Symbian S60 3rd & 5th edition BlackBerry OS from 4.5 Android from 2.2 iOS: we’re working on iOS 5 (released on October 12)

54 Demo time

Download ppt "Cyber intelligence made easy."

Similar presentations

®® Microsoft Windows 7 Windows Tutorial 8 Connecting to Networks with Mobile Computing.

®® Microsoft Windows 7 Windows Tutorial 8 Connecting to Networks with Mobile Computing.
Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.

Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.
Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility. Simplify authentication.

Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility. Simplify authentication.
Content  Overview of Computer Networks (Wireless and Wired)  IP Address, MAC Address and Workgroups  LAN Setup and Creating Workgroup  Concept on.

Content  Overview of Computer Networks (Wireless and Wired)  IP Address, MAC Address and Workgroups  LAN Setup and Creating Workgroup  Concept on.
1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
Netop Remote Control Trusted. Secure. Experienced.

Netop Remote Control Trusted. Secure. Experienced.
Introducing Quick Heal Endpoint Security 5.3. “Quick Heal Endpoint Security 5.3 is designed to provide simple, intuitive centralized management and control.

Introducing Quick Heal Endpoint Security 5.3. “Quick Heal Endpoint Security 5.3 is designed to provide simple, intuitive centralized management and control.
MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.

MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.
1 Computer Security: Protect your PC and Protect Yourself.

1 Computer Security: Protect your PC and Protect Yourself.
A+ Certification Guide Chapter 10 Mobile Devices.

A+ Certification Guide Chapter 10 Mobile Devices.
Chapter 4: What is an operating system?. What is an operating system? A program or collection of programs that coordinate computer usage among users and.

Chapter 4: What is an operating system?. What is an operating system? A program or collection of programs that coordinate computer usage among users and.
Tutorial 11 Installing, Updating, and Configuring Software

Tutorial 11 Installing, Updating, and Configuring Software
By Jonathan….and Darion……….. Reliability Windows File Protection protects core system files from being overwritten by application installs. Driver certification.

By Jonathan….and Darion……….. Reliability Windows File Protection protects core system files from being overwritten by application installs. Driver certification.
Chapter 13 Users, Groups Profiles and Policies. Learning Objectives Understand Windows XP Professional user accounts Understand the different types of.

Chapter 13 Users, Groups Profiles and Policies. Learning Objectives Understand Windows XP Professional user accounts Understand the different types of.
Your Interactive Guide to the Digital World Discovering Computers 2012.

Your Interactive Guide to the Digital World Discovering Computers 2012.
1 REMOTE CONTROL SYSTEM version 7.0 A Stealth, Spyware-Based System for Attacking, Infecting and Monitoring Computers and Smartphones. Full intelligence.

1 REMOTE CONTROL SYSTEM version 7.0 A Stealth, Spyware-Based System for Attacking, Infecting and Monitoring Computers and Smartphones. Full intelligence.
VERSION 2.6 FAE Group Demo Guide. Remote Control System Demo In order to standardize the way how Remote Control System is presented and to maximize the.

VERSION 2.6 FAE Group Demo Guide. Remote Control System Demo In order to standardize the way how Remote Control System is presented and to maximize the.
Visualizing Technology© 2012 Pearson Education, Inc. Publishing as Prentice Hall1 PowerPoint Presentation To Accompany Chapter 6 System Software.

Visualizing Technology© 2012 Pearson Education, Inc. Publishing as Prentice Hall1 PowerPoint Presentation To Accompany Chapter 6 System Software.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
1 REMOTE CONTROL SYSTEM V7 www.hackingteam.it. 2 Introduction.

1 REMOTE CONTROL SYSTEM V7 2 Introduction.

Similar presentations

Ads by Google