Home Hardware USBSamurai – Less Than $10 a Remotely Controlled Malicious USB HID Injecting Cable

USBSamurai – Less Than $10 a Remotely Controlled Malicious USB HID Injecting Cable

August 21, 2019 Leave a Comment

USB is not just hardware to send files, charging or anything. In hacker hand USB is can be dangerous hardware. With some knowledge hacker will make over the USB to another functions, USB can remote your computer, injecting virus and make you device crash/error. That’s what hacker doing, you have to know to protect yourself from it.

Overview

TL;DR: The Video is self-explanatory. (Wanna know how to make it? Read the article below.)

One of security expert Luca Bongiorni is have an idea to make cheapest and tiny malicious USB. He said “All started with this Tweet last April, when I wanted a damn cheap USB implant capable of injecting keystrokes.”

It had to be:

  • Remotely Controllable
  • Fast in Typing
  • Tiny as f***k
  • Cheaper than a bottle of Vodka

The main idea (for the hardware-side) is to re-use the Logitech’s inexpensive Unifying dongles as implants within USB cables.

How to Make USBSamurai

To give you an idea… this is how much this dongle cost (CU-0007): 7.74 EURO!

USBSamurai Logitech Wireless - Malicious USB HID Injecting Cable

What you need to do is DEAD SIMPLE:

USBSamurai - Less Than $10 a Remotely Controlled Malicious USB HID Injecting Cable
  • Remove the top black case without breaking the dongle;
  • PULL out the PCB & the orange plastic holder [gently hold the metal case with a vice (use gum for projecting it) then with a pair of pliers gently but firmly pull out the stuff];
  • Pop-open an USB Cable (I do suggest either [1] or [2]) and solder the Vcc& GND to their related pins on the CU-0007.
USBSamurai - a Remotely Controlled Malicious USB HID Injecting Cable
  • Once everything will be in place, mount back the metal case of the USB male connector.
  • Then check if it fits the USB case and glue it with a drop of super-glue.

DONE. Congrats! You just created your First USBsamurai!

Now you just need to pair it with @mame82’s LOGITacker v.0.1.3-beta and you are ready to pwn targets!

For the Software-side, the good @mame82 came to help with his majestic LOGITacker framework!

So far it supports 4 different NRF-based boards:

  • Nordic nRF52840 Dongle
  • MakerDiary MDK Dongle
  • MakerDiary MDK
  • April Brother nRF52840 Dongle

I personally opted for the 4th one [3] since is the only one with external Antenna (i.e. Longer Range).

https://github.com/mame82/LOGITacker#24-april-brother-nrf52840-dongle

Just follow LOGITacker’s readme and install the v.0.1.3-beta and install https://github.com/mame82/LOGITacker/releases/download/v0.1.3-beta/logitacker_aprdongle.uf2

I recorder a video to explain how to easily pair USBsamurai with LOGITacker.

Enjoy 🙂

  1. https://aliexpress.com/item/33052091501.html
  2. https://aliexpress.com/item/32771548306.html
  3. https://www.aliexpress.com/item/32975184100.html

You May Also Like

MetaFinder - Tool for Searching Documents in a Domain with search engine google, bing, baidu, yandex

MetaFinder – Tool for Searching Documents in a Domain

Dirsearch - Web Content Fuzzing Scanner to find juicy APIs or endpoints, sensitive data exposure, config file

Dirsearch – Web Content Discovery Scanner

ApkLeaks - Tool For Scanning Mobile Application APK file to Extract All Data URIs, Endpoints & Secrets

ApkLeaks – Tool For Scanning APK file to Extract URIs, Endpoints & Secrets

Fully automated Log4j RCE Scanning and Exploit Tool Kali Linux

log4j-scan – Log4j RCE Scanning and Exploit Tool

Subzy - Subdomain Takeover Vulnerability Scan Tool

Subzy – Subdomain Takeover Vulnerability Tool

IntruderPayloads - a Collection of Burpsuite Intruder Payloads For Bug Hunting

IntruderPayloads – Collection of Burpsuite Intruder Payloads For Bug Hunting

Leave a Reply

Your email address will not be published. Required fields are marked *

four + 14 =