Raspberry Pi3 with 3D printed case
I will show you, how I made hacking gadget from raspberry Pi, which you can infiltrate into network over Ethernet cable or Wi-Fi adapter. The gadget can be powered over power adapter or battery, which it makes even more portable. As soon as it is connected in network, it automatically create encrypted tunnel (SSH/TLS, port 443) to the C2 server, so you can control the gadget over the shell from any part of the world. In addition to avoid easy detection I tried to mask gadget, to looks like router. I changed MAC address, hidden SSH version and changed apache service name into routers one. It also includes phishing page of the real router login setting page. And its credentials are sending over email. Gadget also includes Wi-Fi access point, which give you option to control it over phone or PC, by using ssh protocol. It is practical in case, if you want to infiltrate gadget over Wi-Fi, and you do not know its password till beginning of penetration testing on-site. This gadget is very suitable for red teamers.
Lets start with explanation how I done it.
Hardware:
){kind=link}