Migration to Python3 + Enhancements in cherry_attack #5
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Python3
start with known ID and key and skip searching (-hex -key) direct execute and quit an attack with (-x) help added (-h)
New insights in cherrys encryption
|
@Einstein2150 Thanks! Nice talking to you at it-sa 2024. @mdeeg That last part sounds interesting. Not sure were it comes from. Had been a long time since I looked at the protocol. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This pull request includes a complete migration of the existing codebase from Python 2 to Python 3. In addition to the migration, several enhancements and improvements have been implemented.
As discussed yesterday at the IT-SA conference in Nuremberg with Gerhard Klostermeier @ikarus23 , I am pleased to present my extensions and modifications to the project.
cherry_attack.py v.1.1 by Einstein2150
New commandline Features
The
-keyparameter specifies the cryptographic key used for the Cherry keyboard. It must be provided in a hex format (16 bytes) without spaces or special charactersThe
-adrparameter specifies the device address of the Cherry keyboard. This address must also be in hex format (5 bytes) and formatted similarly to the key, with pairs of hexadecimal digits separated by colons (e.g., 00:11:22:33:44).The
-por--payloadparameter allows users to pass a custom payload that will be used during the attack. This gives users more flexibility when conducting their tests and attacks.The new
-xor--executeoption allows users to execute an attack immediately without using the application's user interface. When both the-p(payload) and-xoptions are provided at startup, the attack is executed with the supplied payload right away.Example:
New insights in cherrys encryption
During testing with the extensions, I @Einstein2150 also noticed that multiple valid keys for keystroke injection can be concurrently valid at the same time. With the enhanced debugging output, the keys along with their corresponding device MAC addresses are documented as entries in the log. Feel free to collect as many working keys for your device as you can.