Exploiting a system means taking advantage of a bug, glitch, or vulnerability in the system and causing unintended behavior of the system. Typically, the unintended behavior is permitting an attacker to gain access to a system or being taken through a denial-of-service technique. With regards to a Raspberry Pi that is sitting on a target network, the goal is to leverage the Raspberry Pi as an insider that will be used to attack local systems. This way, perimeter defenses will not be able to detect the attack unless they have visibility into the same network segment using behavior analytics or a Switch Port Analyzer (SPAN) tap that is monitored by an IPS/IDS. We find that many administrators place their best security defenses on the edge of their network, making them blind to host-to-host communication. This is the ideal situation for placing a Raspberry Pi on such a network and controlling it using a remote connection from anywhere in the world. You will see diagrams of this attack model in many sections of this chapter.

A full-blown installation of Kali Linux has a ton of applications that are available to exploit systems; however, many of these tools do not come preinstalled on the Kali Linux ARM image. You can install most of the missing tools using the apt-get command, but some won't function properly or will render the Raspberry Pi useless by consuming too much processing power. For this reason, we have designed this chapter around very specific attacks that are customized for a Raspberry Pi.

Let's start off by building an attack using the most popular exploit framework: Metasploit.