Raspberry Pi Zero for credential snagging

Update: CVE-2016-3302 / MS16-112 patch was released by Microsoft to fix the issue.


This post is an extension to Rob Fuller’s (@mubix) work - https://room362.com/post/2016/snagging-creds-from-locked-machines/ to see how a Raspberry Pi Zero can be used for credential snagging. All credits go to @mubix for the original research. It is recommended to read mubix’s post (if you haven’t already !) before proceeding.