![\"\"](\"http:\/\/www.jedge.com\/cpg15x\/albums\/APC%20Power%20Pwn\/normal_2012-08-03-13_02_36.jpg\" "\\"Custom")
<\/p>\n<\/p>\n
See the Security Bsides Atlanta talk (when it gets posted) at\u00a0http:\/\/www.securitybsides.com\/w\/page\/58266249\/BSidesATL-2012<\/a>. \u00a0Powerpoint slides can be found here<\/a>.<\/p>\n The people over at PwnieExpress are coming out with a neat device called the Power Pwn<\/a>. \u00a0This device follows up on the Pwn Plug<\/a> and the PwnPhone<\/a> (Nokia N900). With my experience as a penetration tester and junior hardware hacker I’ve been working on my own “pwn” hardware. I have a Nokia N810<\/a> as well as an Alix 6f2 (PCEngines.ch<\/a>). I purchased an APC BE650R Battery Backup Power Strip off of Ebay<\/a> and gutted the inside to fit the Alix board. I integrated the Alix connectors for the serial, ethernet, and external antenna connectors with the existing APC coax, rj45, and rj50 ports. The setup has an internal Xpal portable netbook charger that can run the Alix board for over 4 hours. \u00a0However, the main power to the board is integrated with the APC power strip. \u00a0Plugging in the APC will run power to the Xpal battery which in turn powers the Alix. \u00a0Four of the eight plugs on the APC are also functional. \u00a0I created a simple DB9 to RJ45 adapter for the serial connection so I can properly configure the device before use. \u00a0Since the Xpal battery powers it for 4 hours I have plenty of time to get it configured and to its final pwnage destination. \u00a0I didn’t take any photos of the gutting of the APC but it involved a lot of dremel, plastic nipper, and xacto knife work. \u00a0I do have photos<\/a> of everything fitting together. \u00a0The only missing item is the internal RP-SMA to female F pigtails. \u00a0But as you can see in the photos you can fit some rubber duck antennas inside the APC with no problems. \u00a0Also, the best part about the Alix 6f2 is that you can add a mini-pci express GSM card for out of band cellular access to the device. \u00a0You don’t see the card installed on the Alix in the pictures. \u00a0I currently have the card in a\u00a0Mini PCI-E WWAN to USB Adapter<\/a> for testing.<\/p>\n The software I run on the PCEngines Alix is Debian-for-Alix where I contributed<\/a> to the wiki with instructions on how to install all the tools<\/a>. <\/p>\n <\/p>\n Updated Images \/ Additional Work<\/strong><\/p>\n See the Security Bsides Atlanta talk (when it gets posted) at\u00a0http:\/\/www.securitybsides.com\/w\/page\/58266249\/BSidesATL-2012. \u00a0Powerpoint slides can be found here. The people over at PwnieExpress are coming out with a neat device called the Power Pwn. \u00a0This device follows up on the Pwn Plug and the PwnPhone (Nokia N900). With my experience as a penetration tester and junior […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[114],"tags":[56],"class_list":["post-596","post","type-post","status-publish","format-standard","hentry","category-hardware-hacking","tag-penetration-testing"],"_links":{"self":[{"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/posts\/596","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/comments?post=596"}],"version-history":[{"count":11,"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/posts\/596\/revisions"}],"predecessor-version":[{"id":670,"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/posts\/596\/revisions\/670"}],"wp:attachment":[{"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/media?parent=596"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/categories?post=596"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jedge.com\/wordpress\/wp-json\/wp\/v2\/tags?post=596"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\n
\nBelow are some images with arrows pointing to key features of my device.<\/p>\n![\"\"](\"http:\/\/www.jedge.com\/cpg15x\/albums\/APC%20Power%20Pwn\/APC_Power_Pwn_1.jpg\")
<\/p>\n![\"\"](\"http:\/\/www.jedge.com\/cpg15x\/albums\/APC%20Power%20Pwn\/APC_Power_Pwn_2.jpg\")
<\/p>\n![\"\"](\"http:\/\/www.jedge.com\/images\/new1.jpg\")
<\/p>\n![\"\"](\"http:\/\/www.jedge.com\/images\/new2.jpg\")
<\/p>\n","protected":false},"excerpt":{"rendered":"