David Maynor and Robert Graham gave a DEFCON presentation on Bringing Sexy Back: Breaking in with Style, which included one of the cooler pentesting ideas I’ve seen lately.
The iPhone wireless LAN ownage in a box is an Apple iPhone, dressed out with an extended battery (5 days of life in this example), and packed with wireless reconnaissance tools.
You ship this little gem to a nonexistent person at your target organization, where it sits in the shipping department, seemingly lost, but not lonely…
The iPhone can be remotely controlled over the AT&T network, neatly avoiding wireless monitoring gear. And assuming you give a real return address, they even send it back to you after a while…
So. Cool.
