66% or better

Security Audit Kit in a Mouse

Sometimes it helps to have an entire set of tools with you to tackle a problem, and sometimes it helps to take the discreet route. [StenoPlasma] took the latter of these approaches, and stuffed a USB hub, a 16 GB flash drive, and an Atheros based USB wireless adapter into a regular looking USB mouse to make a Linux bootable system in a mouse. Because he chose the Atheros adapter, he is also capable of doing packet injection with tools like Aircrack-ng, which can invaluable in a security audit or (white hat) hacking situation.

This is the only photo we have, so it could be possible that the mouse is no more than a mouse, however we know all of what [StenoPlasma] claims is 100% possible, so we’ll give him the benefit of the doubt, and hope this inspires others to hack up your own mouse kits. Be sure to check out the full parts list after the break.

Parts:

  • Targus USB 2.0 4-Port Bend-a-Hub (Stripped and re-soldered)
  • Belkin USB 10′ Extension Cord (with the extension USB in place to make it easy for me to change cable lengths)
  • IOGEAR Atheros Wireless B/G Injectable Cracking Adapter
  • Corsair Voyager Mini 16 GB Thumb Drive
  • Logitech MX310 Wired Optical Mouse

Comments

  1. Gray says:

    Cute!

  2. M4CGYV3R says:

    That is an awesome idea. I just found about 4 USB hubs and about 6 mice I wasn’t using as I packed to move. When I get back home I might just have to build one of these.

    Anyone got a link on the Atheros WiFi bit? Haven’t been able to find one that wasn’t g-only or n-only.

  3. Jake says:

    Bah, I have a 16GB microSD slot hidden inside a USB mouse. The SD card is connected to a USB hub chip that is only activated when you do the correct sequence of mouse clicks (uses a small PIC). This is better because noone even knows its there until you activate it :D

  4. madwelder says:

    I’ve seen drives installed in mice for inconspicuous data theft but this takes the utility of the concept to the next level.

    Keep being awesome.

  5. I like that idea a lot! Very clever!

    @Jake the top secret sequence to activate your SD card is also very James Bond, I like it!

  6. ups says:

    What in hell is a “IOGEAR Atheros Wireless B/G Injectable Cracking Adapter”

    @Jake An instructable is welcome.

  7. ceaserone says:

    Suuurrrrree a “White hat” audit

  8. Typo Police:

    Aircrack-ng, which can invaluable in a security audit

    ^be

  9. YaBa says:

    @ups:
    It’s this, without the gay/fancy/l33t name:
    http://www.wireless-driver.com/wp-content/uploads/2009/11/IOGEAR_GWU523.jpg
    LOL…

  10. ferdinand says:

    thats smart idee
    but i wand to see so photo,s from the inside

  11. EverestX says:

    This is almost identical to my Uber Keyboard project over in the SoldierX forums.

    http://www.soldierx.com/bbs/My-Crashcart-Uber-Keyboard

    The thread hasn’t been updated in a while, but the keyboard is working :)

  12. strider_mt2k says:

    Seriously, where’s the beef?

  13. @Jake, nice idea!

    I came up with something similar a while back, but in my case it used a magnetic sensor as the trigger.
    The original plan was to multibank an SD card so it could be set as “1 of 4″ or “3 of 4″ etc with a simple magnet wave past the device.

    Would also work for making a super pendrive with several different internal drives and LiveCDs etc on each.

  14. StenoPlasma says:

    Hey everyone. Sorry for the lack of pictures. Here is a picture of the inside of the mouse.

    https://www.exploitdevelopment.com/Articles/mouseinside.jpg

  15. Frogz says:

    jake: DIE DIE DIE IM GOING TO WIN!!! WOOHOO!!! IM GONNA BE THE HALFLIFE TOURNEY VICTOR!! DIE DIE….w……WHAT THE HELL, MY PORN COLLECTION!!!

  16. Shadyman says:

    I’m guessing that one’s going to be chalked up to ‘checked baggage only’. And even then..

  17. John Avitable says:

    The only thing that I’d have to suggest is that he puts a longer USB cable on it so that it doesn’t need an extension cable on it, because that looks uber suspicious.

  18. Jake says:

    @ups
    Instructions not necessary, it’s really simple:
    1 – Get a 2+ port USB hub on a chip from your favorite supplier, connect the incoming USB connection to the chip, as well as to your SD USB adapter and the mouse’s PCB
    2 – Sample a really simple microcontroller
    3 – Wire the micro to the buttons of your choice
    4 – Wire the micro to the chip enable line of the SD reader’s control IC

    So, when you enter the correct combination, the SD reader IC is enabled and appears on the USB bus. Up to that point, the only things you’ll see w/the mouse connected is an additional USB hub, and the mouse. Mine is in a logitech G5 and it works well. There was plenty of space in that mouse to fit everything in there. I used one of the side buttons to turn it back off. I think it would be sweet to be able for it to automatically disconnect when you eject it in windows, but I never took it that far.

    @Frogz
    I think you have me confused with someone else? The last time I played Half Life was about 10 years ago.

  19. Michael Chen says:

    To most secret button combo sd reader

    That has a great fault:
    Live usb requires the usb to be connected at startup. That would require you to press the combo really fast, as some motherboards only check for the presence of the device when opening the menu to seleck boot source at startup.

    You would either need to input the combo fast when starting up, or have a separate battery for the microcontroller.

  20. M4CGYV3R says:

    Well, after seeing how cramped it would be and looking inside some of my hubs I think I’m going to opt for the hacker’s toolkit KEYBOARD as I have much more room in there.

  21. walt says:

    cool, but that short little USB cable is retarded. why did he do that?

  22. StenoPlasma says:

    Walt,

    I left the extension USB in place to make it easy for me to change cable lengths as needed. Anyone that wants to put this together can just replace the male extender out with a straight through.

    StenoPlasma

  23. Jake says:

    @Michael Chen

    I think you misunderstood, the point of my project was simply to have hidden storage inside of a mouse… I am sure I could click my combo fast enough, though ;)

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s