Abstract
The USB protocol is prone to vulnerabilities raised from the lack of device authentication and authorization that could allow a USB device to impersonate other peripheral devices and the lack of a security mechanism that needs to verify the data or the messages received from a device. Thus, USB traffic analysis tools are needed to identify the USB devices built to exploit the mentioned vulnerabilities. The digUSB is a USB traffic analyzer tool that leverages the power of ELK Stack and Wireshark to provide increased USB traffic analysis capability to discover USB devices hidden features. It is organized into a modular structure and covers all the analysis cycle starting from capturing the USB traffic, processing and viewing low level transactions and identifying badUSB devices trough defined charts. It integrates a built-in data extraction module that can be used to recover keystrokes and small files from PCAP files.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
