PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

U3 enabled device

From: dninja at gmail.com (Robin Wood)
Date: Mon, 23 Nov 2009 18:26:00 +0000
2009/11/23 Butturini, Russell <Russell.Butturini at healthways.com>:

So I think Gonz0r's site has been down for quite a while. ?You do need a different version of the U3 universal 
customizer to work on Vista. ?Also, one of the issues with the original payload is about 95% of the tools on it are 
snared by AV. ?Of course the benefit of having them loaded on the U3 side is that antivirus can't erase the files.

Check here for some update information. ?The U3 solution presented here is a different concept than attack, but you 
should be able to take the information and create your own solution)Once again I'm a shameless self promoter):

http://www.irongeek.com/i.php?page=videos/incident-response-u3-switchblade

I hope you share your work with all of us! Feel free to reach out to me if you have more questions.


The best thing I can suggest is to Go through the Gonz0r and Hak5
stuff and learn the concepts. From that you can easily update it to
use current tools.

The basic concept is to use the autorun script to fire off a batch
file which then runs whatever tools you want. You can customize the
tools as you need them then.

Robin
Previous By Date Next
Previous By Thread Next

Current thread: