Kiosk Hacking Demonstration – Defcon 16

By | May 28, 2017
0 Comment
Looking for Accessible Kiosks?

🔊

Last Updated on March 28, 2026 by Craig Allen Keefner

Kiosk Hacking Demo

Lots of tools out there. This one sorts of puts the wrap on Windows XP (and 7 to extent).Complete how-to from Defcon 16 and Paul Craig (who has since moved onto ATMs).

Here is pdf of entire presentation — defcon-16-craig

Industry Group Kiosks Digital Signage

The web address for iKat is ikat period h period cked period net

  • An online tool you visit from any Kiosk terminal.
  • Provides content to help an escape from any application jail.
  • “Sure would help me during penetration tests”

 

Available Remote Input Vectors:
 Remotely hosted content, viewed by a Kiosk.
 JavaScript.
 Java Applets.
 ActiveX.
 ClickOnce applications (.NET Online Application Deployment).
 Internet Zone protocol handlers.
 File type handlers.
 Flash, Director, Windows Media Player, Real, QuickTime, Acrobat, other browser plug-ins.

More Security Kiosk news

    Posts 2026: 5,038
    security
    Author: Craig Allen Keefner

    With over 40 years in the industry, Craig is considered to be one of the top experts in the field. Kiosk projects include Verizon Bill Pay kiosk and thousands of others. Craig was co-founder of kioskmarketplace and formed the KMA. Note the point of view here is not necessarily the stance of the Kiosk Association or kma.global -- Currently he manages The Industry Group

    Need a rugged touchscreen with thick glass and an air gap?

    Related Posts