A keylogger that charges your phone
Keysweeper is a keylogger disguised as a simple charger.
Samy Kamkar does some reversing to figure out what radio frequencies are used on certain Microsoft keyboards and piles a few embedded devices into a wall charger to do some real time keylogging.
Part of it is retrofitting a $1 radio chip to be promiscuous on the network, based on Travis Goodspeed's article Promiscuity is the nRF24L01+'s Duty. Travis also finds a way to force the Nordic nRF24L01 to send more than the contained packet information, such as the MAC address of the target machines.
Samy goes over strategies he used to reduce scan time around finding Microsoft keyboards on the network. Additionally, he leverages the KeyKeriki Project's research which reaveals that the "encryption" process is an XOR of the MAC address on each byte.
Lastly, he uses the AdaFruit Phonoboard to send the keys to a server to display over the web and SMS messages to a phone for particular string matches.
Of course, this machine can be retrofitted to attack other weakly protected systems.
More information about his project can be found here: http://samy.pl/keysweeper/
Sources: Travis Goodspeed's article http://travisgoodspeed.blogspot.com/2011/02/promiscuity-is-nrf24l01s-duty.html
KeyKeriki Project http://www.remote-exploit.org/articles/keykeriki_v2_0__8211_2_4ghz/












