Introduction: The Deck - Portable Penetration Testing and Forensics System

Note: The information contained in this instructable has not been updated to reflect current development of The Deck and penetration testing with multiple networked devices based on the BeagleBone Black. Details on this and more can be found in the book Hacking and Penetration Testing with Low Power Devices by Philip Polstra available from publisher, Amazon, or your local book retailer.

The Deck is a full featured penetration testing and forensics system based on the BeagleBoard-xM. It will also run on the BeagleBone. The Deck is an Ubuntu-based Linux distribution. It contains everyone you would ever need and more in a small package. Because the system is low power it can be run for days or weeks from battery power. It should be possible to run The Deck indefinitely from solar power. Having a full set of tools that run on the BeagleBoard-xM and also the BeagleBone allows a lot of flexibility. The Deck is equally suited as a portable penetration testing platform and as a drop box.

More information on The Deck can be found here http://ppolstra.blogspot.com/2012/09/introducing-... Please note that this website will not allow uploading the 3GB install file for The Deck. The appropriate images can be downloaded from my website listed on the blog or preloaded microSD cards are available from a vendor also listed on my blog (I don't get any money from the vendor, so don't feel like you have to use them, it is up to you to decide if you want to save the hassle).

The Deck works equally well on systems with a 7" ULCD7 touchscreen or with an external monitor/TV via the BeagleBoard-xM HDMI or S-video port. My personal setup consists of a BB-xM with the ULCD7 mounted in a Buzz Lightyear lunchbox, a second BB-xM without a display, and a BeagleBone. I connect them together with a USB-powered network hub. I also have 2 Alfa wifi adapters and a directional antenna for wifi hacking.

The Deck debuted at 44Con 2012 in London in September 2012. The slides from my 44Con presentation are available at http://www.slideshare.net/ppolstra1/polstra-44con... You may find these useful if you want to build one of these devices. You might check the website http://www.slideshare.net/ppolstra1/polstra-44con... as the audio and video from this presentation may appear there. It was also presented two weeks later at GrrCON in Grand Rapids, Michigan so you might want to check http://www.slideshare.net/ppolstra1/polstra-44con... for that video as well.

You can find out more about this an other projects on my blog http://ppolstra.blogspot.com or by following me on Twitter @ppolstra.

Step 1: Gather Materials

You will need the following to create your own version of The Deck:
1. A BeagleBoard-xM. True it will run on the BeagleBone, but I recommend the BB-xM for the main system and the BBone for drop boxes and such.
2. A microSD card of at least 8GB. The Deck needs about 6GB (yes, there are lots of goodies in there). Personally, I recommend a 16GB or larger card.
3. A linux computer with the ability to write to a microSD card (perhaps with an adapter).
4. You will need to download the install archive (see next step) or alternatively you can buy preloaded cards at https://specialcomp.com/beagleboard/thedeck.htm (Disclaimer: Special Computing offers these products as a convenience and I am not involved with this company).
5. Optional: If you want to have a small self-contained system you might pick up the ULCD7 7" touchscreen. These run about $139 and you can plug the BB-xM right into them. Alternatively, you can hook your BB-xM up to any TV or monitor that supports HDMI or S-Video.
6. A presenter keyboard/mouse combo. I like the Favi unit which you can get for about $25 from Amazon or other retailers.
7. Optional: If you want a small power supply you can make one with the following: 2 9V battery clips, a 7805 voltage regulator, a small capacitor (100 uF is probably good), a 2.1 by 5.5 mm barrel plug, and a few pennies to use as a heat sink. Note that this can be used to power the device without a touchscreen. The touchscreen sucks a lot of power and I'm not responsible for any fires you start trying to run it off this power supply. You can also use any combination of batteries that are above 6V, including rechargeables.
8. Optional: If you aren't getting the display you might want to get a case for your BB-xM. The same source that sells the preloaded microSD cards also sells acrylic cases. They might even sell you a laser engraved one that those in the picture if you ask. There are other sources of cases for the BB-xM as well or you can custom make your own.

Step 2: Load Your Card

You will need to download the archive which includes an install script (and instructions too).

1. Create a directory to work in on your Linux computer "mkdir thedeck".
2. Change to the directory "cd thedeck".
3. Download the archive to your Linux computer using "wget http://facstaff.bloomu.edu/ppolstra/TheDeck/TheDeck-v2.0.tar.gz". If you have trouble, the code is also available from https://sourceforge.net/projects/thedeck/

4. Uncompress the archive with "tar xzvf thedeck*.tar.gz"
5. You need to determine the device for your microSD card. If you haven't already done so, insert your microSD card. You can use the setup script to figure out the right device using "sudo ./setup_sdcard.sh --probe-mmc". Make a note of the device letter.
6. Now you can load the card. If you are loading a card for a system with the ULCD7 the command is
"sudo ./setup_sdcard.sh --mmc /dev/sdX --uboot beagle_xm --addon ulcd" Where X is your drive letter (don't add any numbers!)
If you do not have the ULCD7 just leave off the last part and use "sudo ./setup_sdcard.sh --mmc /dev/sdX --uboot beagle_xm"
or if you are installing on a BeagleBone
"sudo ./setup_sdcard.sh --mmc /dev/sdX --uboot bone"
7. Go do something else for a while! Installing to a class 4 card takes about 1.5 hours. If you have a faster card it will take less time, maybe as little as 20 minutes for a class 10 card.

Step 3: First Boot

Now you are ready to boot up the system for the first time.
1.  Install the microSD card into the BB-xm (or BBone).  
2.  Attach any peripherals before you power it up.  This is especially important for any monitors.
3.  Power it up.
4.  It should boot.  Note that the first boot may take a little longer than normal.
5.  The "Demo User" with user name ubuntu has a password of "temppwd" which you will need to login.
6.  Once you are logged in go exploring.  You should have all the fun tools installed.  You may wish to update your copy of Metasploit and possibly the OS itself.
7.  At a terminal change to the Metasploit directory "cd msf".  Then update your exploits "sudo ./msfupdate".
8.  To update the OS "sudo apt-get update && sudo apt-get upgrade".

Step 4: Go Forth and Pwn!

Everything you could want is installed already in The Deck.  Most of the packages are stored in reasonable places.  This is a bit different from what is done in other distributions such as BackTrack.  Things that don't easily fall into a standard place (like password crackers) are stored in the /pentest directory.  the screenshots give you an idea of just some of the things you can do.  Several tools which debuted at DEFCON XX in July 2012 are included in The Deck.  If you think something should be included make your case, or better yet port it then tell me about it. :-)

Step 5: Optional: Install Addons

The first addon for The Deck is the 4Deck.  The 4Deck allows you to create a magic hub that automatically mounts every USB mass storage device connected to it read only.  You can install it on The Deck by downloading the install script using "wget http://www.udcis.org/TheDeck/4deck-v1.0.tar.gz", uncompressing the archive with "tar xzvf 4deck*.tar.gz".  Note that this should be done ON THE BEAGLEBOARD not on your Linux desktop or laptop.  Follow the install instructions included and you should be in business.

Step 6: Optional: Create a Battery Power Supply

Put the 7805 flat on the table.  The leftmost pin is the positive for your battery (6-14 volts), the middle pin is ground, and the right pin is +5V.  If you are using 9V batteries attach the red wires to the left pin and the black wires to the middle pin.  Attach the outer connector for your 2.1 by 5.5 mm barrel plug to the middle pin and the inner conductor to the right pin.  Connect your optional capacitor to the middle and right pins.  If you use an electrolytic capacitor be careful since they are polarized, so make sure the + side is connected to the right pin.  For a heat sink most any small piece of metal will work.  I used 3 pennies with a hole drilled in them bolted and soldered to the 7805 heat sink.  There are variations on this supply.  Note that the higher your voltage is over 5V the more heat (and waste) you will have.  If your supply voltage is too high you might consider something better than the 7805.  The biggest pluses for the 7805 is that it is cheap and small.  As previously noted, do not use this supply with the touchscreen.  The touchscreen uses a lot of power and you might start a fire.  At a minimum you will burn through batteries pretty quickly.

Comments

author
gwenhastings made it!(author)2014-10-21

http://www.udcis.org/TheDeck doesnt seem to be alive for downloads

author
ppolstra made it!(author)2014-10-21

Sorry. Moved to new university. Try sf.net or facstaff.bloomu.edu/ppolstra for current downloads.

author
AlexiS3 made it!(author)2014-08-11

I was led to this article after viewing DefCon21 presentation that you put together. I visited your blog, but haven't seen any updates for this (http://ppolstra.blogspot.com/2012/09/introducing-d...).

Are you still giving this project any attention? I've got two beagle bone blacks that I'd like to use for this and wanted to make sure I was using updated distros.

author
ppolstra made it!(author)2014-08-11

Oh, yes. This is very much an ongoing project. In fact, I have written a book Hacking and Penetration Testing with Low Power Devices to be released shortly by Syngress. There will be a brand new 2.0 release to correspond with the book launch. Watch sourceforge or philpolstra.com for the latest. The Deck 2.0 may be released before the book, shortly after I return home from DEFCON 22.

author
amandaghassaei made it!(author)2012-10-05

this looks like a really interesting project! but I'm a little confused about what penetration testing is? what is the purpose of the device? is there a reason you want it to be solar powered? do you take it outside?

author
ppolstra made it!(author)2012-10-05

Penetration testing is something often done by computer security professionals. Essentially what we do is to try and break in (or hack) a company's computer systems in order to make sure that the bad guys can't easily do so.

The biggest thing The Deck has going for it is that it is extremely portable and low-powered. This allows you to bring it anywhere and run it off of battery power. You can also run the same software on the smaller BeagleBone which is even easier to plant as a network sniffing device. Such a planted device is normally called a drop box. Because of its low power, when run as a drop box on the BeagleBone you can run stuff for days on batteries then pick it up later. You could also put something outside a company's office in which case solar power could be used for extremely long-term deployments.

Hope this helps.

About This Instructable

11,603views

38favorites

License:

Bio: Born at an early age and causing trouble ever since.
More by ppolstra:The Deck - Portable Penetration Testing and Forensics SystemCheap and Effective USB Write BlockerFun Hackable Speaker Timer
Add instructable to: