PlugBot is a hardware botnet project and more than just a plug computer with a bunch of security tools. It can be used as a vulnerability assessment or penetration testing device (bot) for covert use during physical penetration tests. PlugBot is a research project led by Jeremiah Talamantes, a Security Researcher and Managing Consultant for RedTeam Security.
UPDATE 8/18/2014: Plugbot is not dead. Please sign up for our newsletter to be notified of the project's progress.
PlugBot is a research project that I had hoped to fund over Kickstarter. After trying my best at creating attractive rewards, it never got off the ground. I never intended to "sell" Plugbot as a hardware+software package; it was only to fund Kickstarter. My intent was to release it as an open source project. Although it has been a stagnant project for quite a long time, I plan to release the code for free under an open source license as originally promised.Please sign up for our newsletter to be notified of the project's progress.
PlugBot is a hardware bot. It's a covert penetration testing device designed for use during physical penetration tests. PlugBot is a tiny computer that looks like a power adapter; this small size allows it to go physically undetected all the while powerful enough to scan, collect and deliver test results externally.
How Do You Use It?
Gain access to the target location (conference room?), plug the PlugBot in the nearest wall outlet and walk out. The PlugBot is configured to make an external connection (Wi-fi or Ethernet) to a specified IP address to receive instructions. Central Command allows the penetration tester to invoke scripts and applications. Output as a result of testing is encrypted and securely transmitted to the Drop Zone where data is imported into Central Command for analysis by the pen tester.
What makes this little guy run is a 1.2 GHz processor, 512 MB RAM and drawing just under 5 watts of power. Extra hard disk space can be added with an SD card. Here are some of the on board components: 802.11b, Gigabit Ethernet, Bluetooth, 1.2 GHz processor, 512MB RAM, USNAP I/O, MicroSD socket and more.
About the Security Researcher
PlugBot was brought to life by security researcher and managing consultant, Jeremiah Talamantes. Jeremiah (CISSP, CEH, CHFI, CCISO) has been in Information Security for 15 years. He founded RedTeam Security, a Minneapolis based IT Security consulting company with a group of extremely talented friends.
NOTICE: THE FOLLOWING CODE HAS BEEN PUBLISHED FOR EDUCATIONAL PURPOSES ONLY. DO NOT USE MALICIOUSLY. REDTEAM SECURITY CORPORATION IS NOT LIABLE FOR ANY DAMAGES AS A RESULT OF THE USE OF THIS INFORMATION. USE AT YOUR OWN DISCRETION.
Please contact RedTeam Security regarding your next information security project!Contact us
We save your business reputation and money by simulating real-world hacker attempts in order to identify security vulnerabilities before they are exploited.Contact us
RedTeam consultants are highly-skilled, experienced and certified experts. Our certifications include: CISSP, CEH, CHFI, CCISO, CASS, CEPT and others.Contact us