i realize now that hitman is a series about penetration testing. except theres people to kill once ur in of course

Flipper Zero - tomagotchi patsan multitool for pentester

Part 1

Flipper Zero - a project of a pocket multitool based on the Raspberry Pi Zero for the IoT Pentest and wireless access control systems. This is also the tamagotchi where the cyber dolphin lives. He will be able to: Work in the 433 MHz band - for the study of radio controls, sensors, electronic locks and relays. NFC - read / write and emulate ISO-14443 cards. 125 kHz RFID - read / write and emulate low-frequency cards. iButton keys - read / write and emulate contact keys operating on the 1-Wire protocol. Wi-Fi - to check the security of wireless networks. The adapter supports packet injection and monitor mode. Bluetooth - supported bluez package for Linux Bad USB mode - can be connected as a USB-slave and emulate a keyboard, ethernet adapter and other devices for code injection or network pentest. Tamagotchi! - The low power microcontroller works when the main system is turned off. I am excited to present my most ambitious project, the idea of which I have hatched for many years from one technology news site. This is an attempt to combine all the often necessary tools for a physical pentest into one device, while adding personality to it so that it is nice to shit. At the moment, the project is at the stage of R&D and functional approval, and I invite everyone to participate in the discussion of functions or even take part in the development. Under the cut, a detailed description of the project. Why is this needed? I love to explore everything around and constantly carry around with me various tools for this. I have in my backpack: WiFi adapter, NFC reader, SDR, Proxmark3, HydraNFC, Raspberry Pi Zero (because of this there are problems at the airport). All these devices are not so easy to use on the run, when you have a cup of coffee in one hand or you ride a bicycle. You need to sit down, decompose, get out the compuctor - this is not always convenient. I dreamed about a device that would implement typical attack scenarios, was always on alert and at the same time was not a pack of falling apart boards wound with electrical tape. Raspberry Pi Zero W with battery-shield UPS-Lite v1.0 as a stand-alone flooder for sending pictures to Apple devices via AirDrop Recently, after the open implementation of the AirDrop owlink.org protocol was published and a study from HexWay guys about Apple-Bleee iOS vulnerabilities, I began to have fun in a new way: meeting people on the subway, sending them pictures through AirDrop and collecting their numbers phones. Then I wanted to automate this process and made an autonomous dick-peak car from the Raspberry Pi Zero W and batteries. This topic deserves a separate article, which I can’t finish writing. Everything would be fine, but this device was extremely inconvenient to carry, it could not be put in your pocket, because sharp drops of solder tore the fabric of the pants. I tried to print the case on a 3d printer, but I did not like the result. Special thanks to Ana koteeq Prosvetova, the host of the Telegram channel @theyforcedme, who, at my request, wrote the Telegram bot @AirTrollBot, which generates pictures with text, telegram and the correct aspect ratio so that they are fully displayed on the preview when sending via Airdrop. You can quickly generate a picture suitable for the situation, it looks something like this. Pwnagotchi assembly with e-ink screen and battery shield Then I saw the amazing pwnagotchi project. It's like tamagotchi, only as a meal he eats WPA handshakes and PMKID from Wi-Fi networks, which can then be brute on GPU farms. I liked this project so much that for several days I walked with my pwnagotchi through the streets and watched how he enjoyed the new booty. But he had all the same problems: you can’t put it in your pocket normally, there are no controls, so any user input is possible only from a phone or computer. And then I finally realized how I see the perfect multitool, which I missed. I tweeted about this and my friends liked the industrial designers who make serious electronic stuff. They proposed to make a full-fledged device, instead of a tricked DIY-craft. With real factory production and quality fit parts. We began to search for a design concept. Clickable. The first sketches of the design of Flipper Zero The case and design took a lot of time, because I was tired that all hacker devices look like a bunch of PCBs wound with electrical tape and it is impossible to use them normally. The task was to come up with the most convenient and compact body and device that would be easy to use autonomously without a computer or phone, and this is what came of it. The following describes the current non-final concept of the device. Next part: What is Flipper Zero?