Hacking with Metasploit on a Nokia N800

Hacking with Metasploit on a Nokia N800

Summary: Earlier this month at the RSA conference, I got a chance to see a demo of Immunity's Silica, a $3600 handheld devide that can search for and join 802.11 (Wi-Fi) access points, scan other connections for open ports, and automatically launch code execution exploits from a built-in exploit platform.

SHARE:
TOPICS: Security, Nokia
11
Earlier this month at the RSA conference, I got a chance to see a demo of Immunity's Silica, a $3600 handheld devide that can search for and join 802.11 (Wi-Fi) access points, scan other connections for open ports, and automatically launch code execution exploits from a built-in exploit platform.

Now comes word from David Maynor that, for the cost of a new Nokia N800 Tablet PC ($399 new), pen testers can use the Metasploit point-and-click attack tool in the most covert manner.

Using a free utility from Maemo.org and a custom-built Ruby package, Maynor found that it was pretty easy to get Metasploit running on the Nokia N800.

"Its not as fast as a laptop but it's still pretty quick," Maynor said, explaining that he was able to break into a Windows 2000 SP4 server using a Metasploit exploit.

He said the six-hour battery life of the device makes it perfect for covert security auditing. "You can turn it on, toss it in a backpack, and just let it gather data," Maynor explained.

"You can turn it [the Nokia N800] into a Metasploit/Bluetooth/Wi-Fi auditing device in a few hours. Just copy Metasploit on to your memory card and you're ready to go."

Metasploit running on Nokia N800 Tablet PC

Metasploit running on the Nokia N800

Topics: Security, Nokia

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

11 comments
Log in or register to join the discussion
  • Most cool

    nt
    D T Schmitz
    • Yes

      It is definitely cool.

      I love my N800.
      I tried to get scratchbox and the maemo development kit installed on my debian box but ran into a fews issues. Fortunately there is a Ubuntu VMware image available which includes all of these tools and runs on the free VMware player.

      The N800 is a great device!
      Tim Patterson
      • Pushing me over the edge

        OK. I can't take it anymore!
        Gonna have to get me one! ;)
        D T Schmitz
      • What would be 'way' cool...

        ...I am wonder how [url=http://www.nomachine.com]NX[/url] would do hold up on it (I know vnc would but speed?)

        Too cool for school. ;)
        D T Schmitz
  • Hacking gone wild

    And now we are proposing putting a $100 computer in everybodies hands, in the world!
    Watch out, here they come.....
    TN-Limey
  • Handy I suppose...

    I imagine that it would indeed be handy if you're not the type to lug your laptop around... But if you do, might as well use Backtrack or one of the countless other LiveCD's out there.

    Could be nice for a nice demo if you're a security analyst pitching to a prospective client... "Hey look, I just hacked into your wireless LAN with my Nokia." Then again, it might not be the best way to instill confidence...
    rickeldarwish9
  • Cheap Mobile Easy Securit Scan

    OMG now those darn kids lives just got easier! When I was a teen we was trying to get Slack kernel v 1.1.13 (or was it 1.13) to installed and configured on out pentium 133 Packard Bells and though SATAN was the coolest thing. We dreamed of 1gb networking and MS Win 95 was just coming out! Or when those hot new 28.8k isa modems came out (I miss non win modems) and it took all of our Mc Donalds pay check to buy, but boy could we download from our favorite BBS! Kids have it made ware running, no dial up less rish high jacking Jacks in the Box HQ servers.
    paul_e_wog_333
  • ugh

    Well, you can already do that with a laptop . . .

    And I absolutely loathe "pure" tablet PCs. I absolutely must have a keyboard.
    CobraA1
  • Protect your ass... ets...

    Just goes to show that you will always be vunerable if you don't take heed and protect your assets from attacks. Alls fair in love, war and computers...
    Narg
  • Meatsploit

    I wish I knew what the hell you people were talking about!
    sscott2000
  • The Silica is a Nokia 770

    This isn't surprising since the Silica is just software running on a Nokia 770...
    philipaaa1