Hak5 Gear Overview
This section covers the Hak5 tools I use for controlled security testing, awareness demonstrations, and lab-based attack simulation.
WiFi Auditing
- WiFi Pineapple Mark VII: Rogue access point testing, Evil Portal workflows, credential-capture demonstrations, and wireless misconfiguration assessment.
- MK7AC adapter: Dual-band support for improved range and reliability during wireless assessments.
USB-Based Attack Simulation
- Bash Bunny: Multi-function USB attack platform for automated payloads, credential-testing scenarios, and endpoint workflow validation.
- USB Rubber Ducky: HID-based keystroke injection for fast, repeatable payload execution in controlled environments.
- OMG Cable and OMG Plug: Covert payload delivery and remote-control testing for awareness and defense validation.
Network Access and Reconnaissance
- Shark Jack: Portable network reconnaissance and payload deployment for internal network testing.
- LAN Turtle: Ethernet-based remote-access testing and network persistence scenarios.
Defensive Awareness
- OMG malicious cable detector: Defensive validation against compromised cable scenarios.
All work is performed in authorized lab or engagement contexts and is used to explain practical risk, detection opportunities, and remediation steps.