As a red team researcher, there is a need to investigate cost-effective methods to develop countermeasures on BadUSB (Malicious) attacks on any USB device.
This project focuses on creating a BadUSB (Malicious) with a commonly used USB storage device to test the robustness of any system. This is a proof-of-concept to simulate a user picking up an unknown USB and plugging it into his notebook (which is the intent of a Hacker). Plugging in the USB will lead to the following harmful activities: • Stealing password hashes from victim’s computer • Phishing • Using PowerShell scripts • Able to choose how to acquire the stolen file (Local, HTTP, FTP, SCP) • Converting PowerShell to an executable • Social Engineering
Our project helps users to test if a computer system is safe from attacks.
JORDAN IRSHAAD ZHENG YU AMIN, GERBELLE LIM ZI XUAN
Sayed Hamzah Alhabshe (Mr)