Remote Wireless Pentesting in a nutshell (or ammo can)

Eric Escobar

Eric Escobar

Matt Orme

Matt Orme

Speaker Bio

Eric & Matt are seasoned pentesters and Principal Security Consultants at Secureworks. On a daily basis they attempt to compromise large enterprise networks to test their physical, human, network and wireless security. They have successfully compromised companies from all sectors of business including: Healthcare, Pharmaceutical, Banking, Finance, Technology, Insurance, Retail, Food Distribution, Government, Education, Transportation, Energy and Industrial Manufacturing.

Eric and Matt’s team consecutively won first place at DEF CON 23, 24, and 25’s Wireless CTF, snagging a black badge along the way.

Presentation

Wireless pentesting typically requires physical proximity to a target which requires time, limited resources, and constant traveling. Eric & Matt have pioneered an inexpensive device to covertly perform wireless pentests anywhere on earth. Their unique solution to the problem centers around the ability to perform a wireless pentest remotely. To achieve this lofty goal they did what any hackers would do; scrounge up pieces and parts until they had a workable prototype that could phone home via multiple LTE connections and give remote access to the wireless environment surrounding their device. Much improved since it’s tangle of wires and packing peanuts, a year later their device has compromised dozens of enterprise networks spanning 3 continents. In this talk we’ll discuss why we built it, how it works, and why we think it will revolutionize wireless pentesting.