Top 15 hacking devices (2020)

Nfc kil

We have selected the top fifteen hacking devices with which you can pentest anything you want: from physical devices to contactless cards. This did not include more common tools like screwdrivers and soldering irons; they are easier to choose as you like. We hope you find something interesting in our list of the best hacker gadgets.

The last time we made a similar selection. Since then, a lot has changed. So here is a list of the best relevant hacker gadgets for 2020.

Raspberry pi 4
Price: from $ 35
Official Web site

Raspberry Pi mini computer of the latest model range run on quad-core Armovy chips, equipped with 1, 2, or 4 GB of RAM, are Wi-Fi and Bluetooth compatible, and have two micro HDMI and four USB ports. They can almost replace a low-cost office desk, often used to create media centers and home servers, as well as a variety of different projects, from musical instruments to robots.

But we are interested in something else: raspberry can become a portable system for pentests. And ready-to-go cases, displays, batteries, and other body kits, many more. By the way, in revision 1.2 they solved the compatibility problem with some USB-C types, please note.

raspberry-pi-4

Proxmark 3
Price: 100-300 euros
Kickstarter page

One of the best helpers for performing contactless card attacks has been and still is a hacker device called Proxmark3.

It is available in various versions.

  1. RDV1 is an older version of the device, rarely found on the market, and has no special advantages.
  2. RDV2: The advantage of this version is the availability of a connector for an external antenna.
  3. RDV3 is the most popular (and cheapest) model on the market, Chinese clones are available with the same features, but not always stable performance.
  4. RDV4 is the latest version of Proxmark, which at the same time includes hardware and software to work with smart cards. The most expensive model on the list.

Proxmark will replace all the similar devices for you, but it is worth noting that if you are going to study only Mifare cards, it is better to look towards the Chameleon Mini.

Proxmark 3 RDV4
 

APImote
Price: $ 150
Official Web site

If you managed to come across a smart home, you probably heard about the ZigBee protocol. It is many years old, but there are not so many devices ready to test network security. Among them are the APImote dashboard, which works in conjunction with the killerbee framework. The device comes ready to use, but for fans of soldering, developers have posted KiCad schematics on GitHub.

APImote

E-mate x
Price: $ 100
Official Web site

The E-Mate X Kit will be a useful gift for those who often work with embedded systems or smartphones. It consists of thirteen non-volatile memory chip adapters in the BGA package to different programmers and even to the SD input (which in some cases allows memory to be read without a programmer).

The cost of analogs with just one of the adapters can exceed the cost of the E-Mate X twice, or even more.

e-mate x

Magspof
Price: $ 60
Official Web site

When working with magnetic cards, many face the same problem: a three-way card reader with the ability to write sometimes costs five times more than the same reader without the ability to write.

It was for such tasks that the MagSpoof board was developed, on which you can record the data from three magnetic strips and falsify them. Therefore, the device replaces the actual card. And along with a magnetic card reader, you’ll save half the money and get a complete device to test access security or payment system.

O.MG cable
Price: $ 120
Official Web site

The O.MG hacker cable became known primarily due to the performance of its developers at DEFCON 2019. In this cable, a Rubber Ducky complete with Wi-Fi is sewn, allowing you to remotely enter keyboard commands on the connected device. And the main advantage of O.MG is that its appearance is indistinguishable from a conventional charging cable. There are several options: Type-C, micro-USB and Lightning.

omg cable

DSLogic
Price: $ 60–150
Official Web site

A logic analyzer helps to debug digital circuits. And the DSLogic series analyzers have established themselves as one of the best in terms of price and quality. Also, unlike Saleae products, they support open source projects like PulseView.

In total, three DSLogic models are available on the official website: Plus, U3Pro16 and U3Pro32. And if you are fond of soldering, you can search for DSLogic Basic on AliExpress. This model is no different from DSLogic Plus, except for a lower price and memory. BTW, there will be an additional challenge if you want to upgrade.

DSLogic

FaceDancer21
Price: $ 85
Official Web site

The FaceDancer21 hacker device is a must-have for a payment terminal tester. Using it, you can do the following.

  1. Emulate different USB devices. For example, you can create a device with a specific ID and omit the list of allowed connected devices.
  2. Determine what types of devices the USB port supports. Useful when working with ATMs and wireless chargers (in case wireless charging is the port of a small computer).
  3. Fuzz: convenient to find 0 days on USB drivers.
  4. Interact through USB using the Python library.

Due to the fact that the board is Open Source, its price varies according to the greed of the manufacturer.

Yard stick one
Price: $ 100
Official Web site

If you tried to unlock your car lock by repeating the unlock signal, then maybe you will evaluate this device. Yard Stick One allows you to send and receive traffic at popular frequencies (up to 1 GHz). Its distinctive feature is the use of the CC1111 chip, which allows the hardware to demodulate or modulate the signal, which improves the quality of reception and transmission. To use the Yard Stick, you will need to install the free RFCat utility.

Yard stick one

Yard stick one

NFC kill
Price: 180/250 dollars
Official site

Few can now be surprised with devices to test contactless cards. But the NFC Kill hacker device will definitely interest you: First of all, it is intended for fuzzy testing of contactless reading systems. And additional features let you disable both readers and contactless cards.

The device works on three frequencies: low frequency (125-134 kHz), high frequency (13.56 MHz) and ultra high frequency (850-930 MHz). It comes in two versions: standard and professional. The difference between them is the ability to run tests without physical interaction with the device.

Nfc kil

Bash bunny

Price: $ 100
Official Web site

Chances are, you’re already familiar with Rubber Ducky, a device that emulates a keyboard and automatically injects malicious commands into the victim’s computer. The Bash Bunny device is a more sophisticated version of the device for HID attacks.

In addition to the keyboard, you can emulate any serial port, file storage, and USB – Ethernet adapters. This device is perfect for testing the Red Team and saves you money and space on the camping set.

bash bunny

Hydrabus
Price: 75 euros

Official Web site

 

HydraBus was originally designed as a complete replacement for the outdated BusPirate. Here is a list of the main advantages of HydraBus:

  • provides a complete user interface to work with popular hardware interfaces (I2C, SPI, UART, 1-3 threads, JTAG / SWD);
  • HydraBus can be used in conjunction with PulseView to operate in logic analyzer mode;
  • There is a library in Python, which simplifies the use;
    There is a microSD slot to store information while you work.

The rate is from 40 to 75 euros. In addition, for 110 euros, you can buy a HydraNFC module to work with contactless cards or an open HydraLINCAN scarf to work with a CAN bus.

Hydrabus

OpticSpy
Price: $ 65-100.
Official Web site

Devices such as routers often transmit a lot of valuable information using flashing LEDs, especially when they are on. It happens that these LEDs are connected to a data line, for example, to the TX pin of the UART bus.

To receive information from this data channel without solders and expensive logic analyzers, we developed a scarf called OpticSpy. To work, you’ll need to install the Python library, connect OpticSpy to the computer via USB, and take your photodiode to the light source. You can see the work of the hacker device on YouTube.

optispy

Hunter cat
Price: $ 35
Official Web site

In 2019, an interesting hacker device appeared on the market: Hunter Cat. Although it is more for protection than for piracy and pentest. It was developed to search banks and other skimmers. Its essence is simple: we insert it into the card reader, take it out and look at the LED. If it lights up green, the skimmer is not detected, otherwise it is better not to use this ATM. The Hunter Cat’s size is slightly larger than a bank card, and the cost is about $ 35.

hunter cat

dongle nRF52840
Price: $ 18
Official Web site

Well, at the end of the list: nRF52840 USB dongle. You have many opportunities, among which there are two. First of all, you can upgrade it and get a full low-energy Bluetooth sniffer with a beautiful plugin for Wireshark. Second, with the open source LOGITacker project, you can turn this security device into a device for testing wireless computer peripherals – mouse, keyboard, and more.

The cost of the device starts at $ 18, but on AliExpress you can find cheaper Chinese clones.

nRF52840 dongle

conclusion
That is all. The next list of the best hacking devices will be next year!

Leave a Reply

Your email address will not be published. Required fields are marked *