Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Hacking Suite For Governmental Interception

Published byIzabela Renata Janowska Modified over 4 years ago

Similar presentations

Presentation on theme: "The Hacking Suite For Governmental Interception"— Presentation transcript:

1 The Hacking Suite For Governmental Interception

2 Today’s topic: RCS installation vectors.
So what are we talking about today?

3 The RCS Agent is a software.

4 You have to deploy it. This is the key point of the whole solution. If you cannot install it, you cannot retrieve the data you need.

5 On the target’s device. Anything that runs a modern operating system.
Desktops, Laptops, Smartphones, Tablets…

6 Locally. Remotely.

7 Let’s talk about local. You have access to the target device.
Here we face different scenarios…

8 Boot from a USB thumb drive. Plug a USB cable.
Desktop Mobile Hard drive tampering for desktop, usb connection for mobile (need to know the pin)

9 Easy installation. 100% success.

10 Let’s talk about remote. No physical access this time.

11 Deploy RCS while the target is…
Using the INFECTION AGENT Only from desktop (win) to mobile (winmo)

12 Browsing the internet. Using the INJECTION PROXY Wired or wireless
No matter if Desktop or smartphone. Just modify its traffic.

13 Opening a document file.
Using the HT Zero Day Exploit Portal

14 Receiving a SMS. Using the REMOTE MOBILE INSTALLER

15 Complicated scenario?

16 Rely on our consultancy services. i. e. BlackBerry controlled via BES
Rely on our consultancy services. i.e. BlackBerry controlled via BES. Windows PC in an enterprise domain. We provide consultancy

17 Curious about the real thing?
Using the REMOTE MOBILE INSTALLER

18 RCS has a simple and unified console
RCS has a simple and unified console. Your attacks are just one-click away.

19 Demo Time!

20 Exploitation Integrated 0-day exploits pack. Use documents as attack vector. Use websites as attack vector. 0) Factory to forge 1) FLAW, EXPLOIT 2) Word doc, Excel, PDF 3) Explorer or firefox L) Continue…

21 Easy to use exploit creation. No skills required.
Exploitation Easy to use exploit creation. No skills required. *** DEMO in Vmware *** Connessione e0 Menu Forge doc Copia su vmware Run

22 Network Injector Monitors the target and modifies its traffic. Inserts code into downloads and updates. Inserts code into web pages. Continue…

23 Bob’s laptop Internet Web site Network Injector

24 Network Injector It does the magic on-the-fly. No need to be inline. Think of it as a passive probe. Continue…

25 Network Injector Use it at ISP level. ISP: hardware version (gigabit)
Small: software *** DEMO ***

26 Use it on wi-fi networks. Open or Protected…
Network Injector Use it on wi-fi networks. Open or Protected… ISP: hardware version (gigabit) Small: software *** DEMO ***

27 “Is it true that someone can break HTTPS?” Let’s see…
Network Injector “Is it true that someone can break HTTPS?” Let’s see… ISP: hardware version (gigabit) Small: software *** DEMO ***

28 Insert RCS code into ANY USB device.
Disguised devices Insert RCS code into ANY USB device. Send, Lend, Sell them.. Automatic OS Recognition. *** DEMO ***

29 Jump from an infected PC to USB-connected smartphones.
Spreading Infection Jump from an infected PC to USB-connected smartphones. NO demo

30 Infecting Live Distros
They are used by most Criminal Groups. Defeats disk encryption. Resident on the USB device. Demo

31 Remote Mobile Installation
Sends a special crafted SMS to the phone. Once accepted, the phone will automatically install the Agent. Depending on the phone configuration the security settings are different. *** DEMO ***

32 Desktop vectors applies to mobile as well!
Remote Mobile Installation Desktop vectors applies to mobile as well! Depending on the phone configuration the security settings are different. *** DEMO ***

33 Q&A

Download ppt "The Hacking Suite For Governmental Interception"

Similar presentations

Facts about Welcome to this video from Ozeki. In this video I will present what makes Ozeki Phone System XE the Worlds best on-site software PBX for Windows.

Facts about Welcome to this video from Ozeki. In this video I will present what makes Ozeki Phone System XE the Worlds best on-site software PBX for Windows.
Speaker Name, Title Windows 8 Pro: For Small Business.

Speaker Name, Title Windows 8 Pro: For Small Business.
Network and Server Basics. 6/1/20152 Learning Objectives After viewing this presentation, you will be able to: Understand the benefits of a client/server.

Network and Server Basics. 6/1/20152 Learning Objectives After viewing this presentation, you will be able to: Understand the benefits of a client/server.
Back to Start 1 of 10 Connect with a Mobile Device You can use your company’s Windows SBS computer network to extend your connectivity by using mobile.

Back to Start 1 of 10 Connect with a Mobile Device You can use your company’s Windows SBS computer network to extend your connectivity by using mobile.
MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.

MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.
1 of 13 Back to Start Working Remotely Your company’s Windows SBS computer network makes it easy for you and your coworkers to work remotely—and to stay.

1 of 13 Back to Start Working Remotely Your company’s Windows SBS computer network makes it easy for you and your coworkers to work remotely—and to stay.
Sr. Manager Global Business Solutions Carlos Capó Master Macs in Business Easily integrate Macs into a Microsoft Shop.

Sr. Manager Global Business Solutions Carlos Capó Master Macs in Business Easily integrate Macs into a Microsoft Shop.
Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.

Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.
Elite Networking & Consulting Presents: Everything You Wanted To Know About Data Insurance* * But Were Afraid To Ask Elite Networking & Consulting, LLC,

Elite Networking & Consulting Presents: Everything You Wanted To Know About Data Insurance* * But Were Afraid To Ask Elite Networking & Consulting, LLC,
PowerPoint Presentation to Accompany Chapter 5 System Software Visualizing TechnologyCopyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall.

PowerPoint Presentation to Accompany Chapter 5 System Software Visualizing TechnologyCopyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall.
CS101 Lecture 14 Security. Network = Security Risks The majority of the bad things that can be done deliberately to you or your computer happen when you.

CS101 Lecture 14 Security. Network = Security Risks The majority of the bad things that can be done deliberately to you or your computer happen when you.
WINDOWS XP PROFESSIONAL Bilal Munir Mughal Chapter-1 1.

WINDOWS XP PROFESSIONAL Bilal Munir Mughal Chapter-1 1.
Move Pictures From Your Mobile Phone to Your PC.  You never know when a photo opportunity is going to arise, which is why having a camera phone can be.

Move Pictures From Your Mobile Phone to Your PC.  You never know when a photo opportunity is going to arise, which is why having a camera phone can be.
VERSION 2.6 FAE Group Demo Guide. Remote Control System Demo In order to standardize the way how Remote Control System is presented and to maximize the.

VERSION 2.6 FAE Group Demo Guide. Remote Control System Demo In order to standardize the way how Remote Control System is presented and to maximize the.
Visualizing Technology© 2012 Pearson Education, Inc. Publishing as Prentice Hall1 PowerPoint Presentation To Accompany Chapter 6 System Software.

Visualizing Technology© 2012 Pearson Education, Inc. Publishing as Prentice Hall1 PowerPoint Presentation To Accompany Chapter 6 System Software.
PowerPoint Presentation to Accompany Chapter 5 System Software Visualizing TechnologyCopyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall.

PowerPoint Presentation to Accompany Chapter 5 System Software Visualizing TechnologyCopyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall.
Microsoft Management Seminar Series SMS 2003 Change Management.

Microsoft Management Seminar Series SMS 2003 Change Management.
 Computer News/Tip  Google Docs  Printer Sharing  Scanning  Faxing  Your Computer Problems.

 Computer News/Tip  Google Docs  Printer Sharing  Scanning  Faxing  Your Computer Problems.
1 REMOTE CONTROL SYSTEM V7 www.hackingteam.it. 2 Introduction.

1 REMOTE CONTROL SYSTEM V7 2 Introduction.
May 25 – June 15, 2006. Technical Overview Bruce Cowper IT Pro Advisor Microsoft Canada Damir Bersinic IT Pro Advisor Microsoft.

May 25 – June 15, Technical Overview Bruce Cowper IT Pro Advisor Microsoft Canada Damir Bersinic IT Pro Advisor Microsoft.

Similar presentations

Ads by Google