0ITM - 0 in the middle - 15$ Malware Lab

Italian Hacker Camp

0ITM - 0 in the middle - 15$ Malware Lab

Speakers:

red5heep


0-ITM is a portable (ALTOIDS contained), cheap, easy-to-setup malware analysis tool, built to speed up the reverse engineering and analysis of malware or any other software. Based on Raspberry Pi 0 W. Features: + analysis of infected PC where it's not obvious how to extract the malware + analysis of malware requiring a lot of human interaction + analysis of malware with strong anti VM functionalities + analysis, through the Wifi, of Android, iOS and in general IoT behaviors + highly portable and configurable + ready to use in a quick way (menu driven) + veeeery cheap + several operating mode: AP, station, sniffing mode + secure (internal net are not routed, in routed mode) It has been specifically built for Android base software: it contains a customized version of fakenet-ng to handle Android requests (pending a pull request on github).

--

red5heep

Computer and technology enthusiast from the early '80. Computer and programming are my hobbies and then became also a real job. On the professionalside, I work from more then 20 years in IT field, covering during the years a lot of different roles: programmer, system admin, DBA and in the last years, network and security engineer and analyst.During the years he worked on a lot of opensource projects. From 2008 I focused my interest on hardware platforms, developing a lot of projectsavailable in the opensource (http://enerduino.blogspot.com). I also developed a custom board based on Atmel MCU and compatible with Arduino IDE.On this board I built an opensource GPS tracker available at https://github.com/cecio: hereyouARE (Agile Rescue Engine). I presented my work at several editions of Maker Faire in Europe.I also developed the first PoC af an Arduino code injection, published at https://github.com/cecio.

Informazioni pratiche

Data
03/08/2018 14:30
Durata
30 minuti
Location
KRIKKIT