• Online, Self-Paced
Course Description

Malicious devices are everywhere these days, whether you can see them or not. Some take the form of malicious wireless networks that steal information. Others are physically planted and can do practically anything a hacker desires. These devices are designed to destroy, steal, and infect all kinds of machines. Sometimes these devices can do their malicious tasks without a victim having any idea that they were attacked. In this course, you will learn about one of the most commonly used attacks, the USB drop attack.

Basic knowledge
No prior knowledge is required, however to fully participate in this course you will need the following:

A standard USB flash drive of any size
A USB device that functions as a Human Interface Device, preferably a USB Rubber Ducky
A computer with internet access
Text editing software, preferably Notepad++
A free Gmail account
A Windows 10 machine (labs will use attacks against Windows 10 OS)

Learning Objectives

This course will teach you what USB drop attacks are and why they are so effective. You will see the different forms these attacks take, including spoofing keyboards, using malicious files/code, using social engineering links that trick victims in various ways, destruction of machines using electricity, and the use of previously unknown vulnerabilities against a target. You will discover how attackers disguise these attacks to make them successful. You get an understanding of the work attackers put into researching targets and deploying devices. Then you will be shown step by step how to conduct three different types of attacks. After learning everything about these attacks, you will learn how to defend against these attacks

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.