usbsas is a free and open supply (GPLv3) device and framework for securely studying untrusted USB mass storage units.
Description
Following the idea of protection in depth and the precept of least privilege, usbsas’s purpose is to cut back the assault floor of the USB stack. To realize this, a lot of the USB associated duties (parsing USB packets, SCSI instructions, file techniques and so on.) often executed in (privileged) kernel area has been moved to person area and separated in several processes (microkernel fashion), every being executed in its personal restricted safe computing mode.
The principle goal of this undertaking is to be deployed as a kiosk / sheep dip station to securely switch recordsdata from an untrusted USB system to a trusted one.
It really works on GNU/Linux and is written in Rust.
Options
usbsas can:
- learn recordsdata from an untrusted USB system (with out utilizing kernel modules like
uas,usb_storageand the file system ones). Supported file techniques areFAT,exFat,ext4,NTFSandISO9660 - analyze recordsdata with a distant antivirus
- copy recordsdata on a brand new file system to a trusted USB system. Supported file techniques are
FAT,exFATandNTFS - add recordsdata to a distant server
- make a picture of a USB system
- wipe a USB system
Functions
Functions constructed on prime of usbsas:
- Net shopper / server: That is the principle utility of usbsas, for deploying a safe USB to USB file switch kiosk.
- Fuse implementation: mount USB units (read-only) with usbsas.
- Python: usbsas may also be used with Python, a script that copies every part from a tool to a different is given as instance.
Documentation
Contributing
Any contribution is welcome, be it code, bug report, packaging, documentation or translation.
License
Dependencies included on this undertaking:
ntfs3gis GPLv2 (see ntfs3g/src/ntfs-3g/COPYING).FatFshas a customized BSD-style license (see ff/src/ff/LICENSE.txt)fontawesomeis CC BY 4.0 (icons), SIL OFL 1.1 (fonts) and MIT (code) (see shopper/internet/static/fontawesome/LICENSE.txt)bootstrapis MIT (see shopper/internet/static/bs/LICENSE)Latofont is SIL OFL 1.1 (see shopper/internet/static/fonts/LICENSE.txt)
usbsas is free software program: you’ll be able to redistribute it and/or modify it beneath the phrases of the GNU Normal Public License as revealed by the Free Software program Basis, both model 3 of the License, or (at your possibility) any later model.
usbsas is distributed within the hope that it will likely be helpful, however WITHOUT ANY WARRANTY; with out even the implied guarantee of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Normal Public License for extra particulars.
It is best to have acquired a duplicate of the GNU Normal Public License together with usbsas. If not, see the gnu.org internet web site.
