This document describes IRON-HID, a project for creating custom USB devices that can exploit system vulnerabilities. It discusses using a modified portable charger called PowerShock to test vulnerabilities in smartphones, POS systems, and PCs. The PowerShock uses a Teensy or Arduino board running IRON-HID firmware to emulate a keyboard or mass storage device. It can automatically enter PINs, log keystrokes, capture screenshots, and execute commands on connected devices. Demo attacks show exploiting backup PIN locks on Android phones and grabbing card data from vulnerable POS systems. Additional ideas include modifying USB keyboards and card readers to secretly run the IRON-HID tests on colleague's devices.