Upgrade to Pro — share decks privately, control downloads, hide ads and more …

BadUSBを作ろう / how to make your own BadUSB and Ke...

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for mu2in mu2in
June 29, 2019
Technology
0
480

BadUSBを作ろう / how to make your own BadUSB and Keyboard

BadUSBを作ってみた話です。

「オープンセミナー2019@岡山 懇親会」でのLT資料です。 https://oso.connpass.com/event/129843/

Avatar for mu2in

mu2in

June 29, 2019
Tweet

More Decks by mu2in

See All by mu2in
スイッチ沼へようこそ / Welcome to the Key Switch Rabbit Hole
Avatar for mu2in mu2in
0
220
Astroで サクッと作るWebサイト(仮) / Quickly create webpages with Astro
Avatar for mu2in mu2in
1
320
CircuitPythonで動く自作キーボードの紹介 / Introducing Self-Made Keyboard from CircuitPython
Avatar for mu2in mu2in
0
2.5k
スクリーンセーバーキラーを作ってみた / Making Mouse Jiggler with CircuitPython
Avatar for mu2in mu2in
0
830
Pythonで始める自作キーボード入門 / Introduction to Self-Made Keyboard from Python
Avatar for mu2in mu2in
1
2.3k
私のエンジニアライフHacks / my-engineer-lifehacks
Avatar for mu2in mu2in
0
570
PyCon mini Hiroshima 2018 でノベルティを作ってみた話/pycon-mini-hiroshima-2018-novelty
Avatar for mu2in mu2in
1
1.6k
家に帰ると灼熱地獄なのをなんとかする/obniz-universal-remote-control
Avatar for mu2in mu2in
0
1k
最近ハマってるゲームとか
Avatar for mu2in mu2in
0
800

Other Decks in Technology

See All in Technology
GitHub Issue Templates + Coding Agentで簡単みんなでIaC/Easy IaC for Everyone with GitHub Issue Templates + Coding Agent
Avatar for AEON aeonpeople
1
260
Webhook best practices for rock solid and resilient deployments
Avatar for Guillaume Laforge glaforge
2
310
OCI Database Management サービス詳細
Avatar for oracle4engineer oracle4engineer
PRO
1
7.4k
【Oracle Cloud ウェビナー】[Oracle AI Database + AWS] Oracle Database@AWSで広がるクラウドの新たな選択肢とAI時代のデータ戦略
Avatar for oracle4engineer oracle4engineer
PRO
2
180
pool.ntp.orgに ⾃宅サーバーで 参加してみたら...
Avatar for Fuminori -Tany- Tanizaki(谷崎文義) tanyorg
0
570
SREチームをどう作り、どう育てるか ― Findy横断SREのマネジメント
Avatar for adachi.ryo rvirus0817
0
350
SREが向き合う大規模リアーキテクチャ 〜信頼性とアジリティの両立〜
Avatar for Kuniaki Moriya zepprix
0
480
StrandsとNeptuneを使ってナレッジグラフを構築する
Avatar for やくも yakumo
1
120
Agile Leadership Summit Keynote 2026
Avatar for seki at druby.org m_seki
1
670
顧客との商談議事録をみんなで読んで顧客解像度を上げよう
Avatar for shibayu36 shibayu36
0
300
こんなところでも(地味に)活躍するImage Modeさんを知ってるかい?- Image Mode for OpenShift -
Avatar for Masataka Tsukamoto tsukaman
1
170
AIと新時代を切り拓く。これからのSREとメルカリIBISの挑戦
Avatar for ktykogm 0gm
2
3.1k

Featured

See All Featured
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
400
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
234
17k
How to Align SEO within the Product Triangle To Get 
Buy-In & Support - #RIMC
Avatar for Aleyda Solis aleyda
1
1.4k
Building a Scalable Design System with Sketch
Avatar for Laura Van Doore lauravandoore
463
34k
DevOps and Value Stream Thinking: Enabling flow, efficiency and business value
Avatar for Helen Beal helenjbeal
1
110
The Cult of Friendly URLs
Avatar for Andy Hume andyhume
79
6.8k
Un-Boring Meetings
Avatar for Sebastian Deterding codingconduct
0
200
Measuring & Analyzing Core Web Vitals
Avatar for Philip Tellis bluesmoon
9
760
Code Review Best Practice
Avatar for Trisha Gee trishagee
74
20k
Groundhog Day: Seeking Process in Gaming for Health
Avatar for Sebastian Deterding codingconduct
0
97
Java REST API Framework Comparison - PWX 2021
Avatar for Matt Raible mraible
34
9.1k
How to audit for AI Accessibility on your Front & Back End
Avatar for davetheseo davetheseo
0
180

Transcript

  1. #BE64#Λ࡞Ζ͏ʂ Φʔϓϯηϛφʔ!Ԭࢁ࠙਌ձ

  2. ‣ @mu2in ‣ JavaΤϯδχΞ6೥໨ ‣ ޷͖ͳϓϩάϥϛϯάݴޠɿJavaScript ‣ ࢀՃίϛϡχςΟ ▹ ͍͢͝޿ౡ

    (ਫ༵΋͘΋͘ձ) ओ࠵ ▹ PyCon mini Hiroshima 2019 ▹ Φʔϓϯηϛφʔ2020@޿ౡ ࣗݾ঺հ

  3. BadUSBͱ͸ ‣ USBϙʔτʹૠ͚ͩ͢ͰPCյͤΔ΍ͭ

  4. BadUSBͱ͸ ‣ USBϙʔτʹૠ͚ͩ͢ͰPCյͤΔ΍ͭ ▹ ͦΕ͸USB Killer

  5. BadUSBͱ͸ ‣ 2014೥8݄ʹ։ൃऀձٞ Black Hat 2014 USAͰ ൃද͞Εͨ߈ܸख๏ ▹ USBͷϑΝʔϜ΢ΣΞΛॻ͖׵͑Δ͜ͱʹΑͬͯɺෆਖ਼ͳ

    ϓϩάϥϜΛ࣮ߦ͢Δ͜ͱ͕Ͱ͖Δɻ ▹ Өڹ͕େ͖͍ͨΊɺ࣮ূίʔυΛެ։͞Ε͍ͯͳ͔ͬͨɻ ‣ ཌ݄ͷ9݄ʹߦΘΕͨηΩϡϦςΟձٞͷ DerbyCon 4.0 Ͱผͷݚڀऀ͕GitHubʹެ։ ▹ USBΩʔϘʔυͷϑΝʔϜ΢ΣΞΛॻ͖׵͑ͯɺ
 উखʹΩʔΛೖྗͤ͞ΔσϞ͕ߦΘΕͨɻ

  6. Ͱ͸࡞ͬͯΈ·͠ΐ͏

  7. ༻ҙ͢Δ΋ͷ • CJMCU Beetle ▹ Arduino Leonardoޓ׵ͷϚΠίϯ • HID(ώϡʔϚϯΠϯλʔϑΣʔεσ όΠε)ͱͯ͠ৼ෣͏͜ͱ͕Ͱ͖Δ

    • USBΦε͕෇͍ͯΔͨΊ௚ૠ͠Մೳ • ී௨ͷUSBϝϞϦΑΓ΋খ͍͞ • AmazonͰ¥1,000 தࠃ௚༌ೖ¥300

  8. ϚΠίϯʹBadUSBͷίʔυΛॻ͖ࠐΉ

  9. USBΛૠ͚ͩ͢ͰϩάΞ΢τ

  10. ͜ΕͰօ͞Μ΋#BE64#͕࡞Ε·͢ʂ

  11. ण࢘ΩʔϘʔυΛ࡞Ζ͏ʂ

  12. • Ruby Kaigi 2017Ͱ໯ͬͨण࢘ΩʔΩϟοϓ
 ( Misoca͞ΜϒʔεΑΓ ) • CJMCU Beetle

    • Cherry MXΩʔεΠον • Cherry MX Switch Breakout • μΠΦʔυɺ఍߅ • ϐϯϔομ • LED • δϟϯύʔϫΠϠʔ • ϒϨουϘʔυ ༻ҙ͢Δ΋ͷ

  13. ૊ΈཱͯΔ

  14. #include <Keyboard.h> #define PIN_KEYSW (0) int preState; int currentState; void

    setup() { pinMode(PIN_KEYSW, INPUT); preState = HIGH; Keyboard.begin(); } void loop() { currentState = digitalRead(PIN_KEYSW); if((currentState != preState) && (currentState == HIGH)) { Keyboard.press(KEY_LEFT_ALT); Keyboard.print("d83c"); Keyboard.print("df63"); delay(10); Keyboard.releaseAll(); } preState = currentState; delay(10); } ण࢘ΩʔϘʔυͷίʔυΛॻ͖͜Ή Ωʔ͕ԡ͞ΕͨΒ 6OJDPEFೖྗͰ ͷαϩήʔτϖΞΛೖྗ

  15. MacͷೖྗιʔεΛมߋ

  16. ण࢘ΩʔΛಈ͔͢

  17. ·ͱΊ ‣ BadUSB͸ૠ͚ͩ͢ͰΩʔೖྗΛ࣮ߦͰ͖ͯɺ ϚΫϩʹศརɻ ‣ ࣗ࡞ΩʔϘʔυ࡞Γ௒ָ͍͠ɻ ‣ ৭ΜͳΩʔϘʔυ࡞Γ͍ͨʢপʣ ‣ ѱ͍USB͚ͩͲɺ࢖͍ํ࣍ୈͰ৭ʑͳ͜ͱ͕

    Ͱ͖Δͧʂ