Jump to content


Photo
* * * * * 2 votes

Pineapple Kali Pi

raspberry pi wifi pineapple kali

This topic has been archived. This means that you cannot reply to this topic.
28 replies to this topic

#1 desarmy

desarmy
  • Active Members
  • Hackling

  • Pip
  • 15 posts

Posted 04 January 2013 - 07:53 PM

UPDATE: 4/16

I already had a usb rubby ducky and thanks to the Kali-Linux install script of the Rubber Ducky Payload Generator this device now has a new  attack vector granted I have access to a client station. Thanks Hak5!

 

UPDATE:

I am now running kali linux on raspberry pi

I am now going to automate as much as i can   :wub:

To use the setup I use a tablet and vnc into it

It takes about 3 minutes to power up everything, ssh into pi, startvnc and login

Screenshot_2013-03-13-18-07-45.png

I hooked up the AWUS036NHA to the kali pi and did a real world wifi cracking test (wifite is built into kali)

I found a good spot with multiple networks and the signal strength isnt great, It took around 5 min

Screenshot_2013-03-14.png

This whole getup is very easy to setup, I will actually be able to use this within 6 months on a clients network.

.P3180925.jpg

This is what it all looks like all parts cost around $350

Step 1 buy stuff: Buy raspberry pi, wifipineapple, 2 alfas, usb hub, 8gb usb drive, 16gb sdcard, ethernet cable

Step 2 setup pi: http://cdimage.kali....pberrypi.img.gz Dowload and write to sdcard put in pi thats it.

Step 3 setup pineapple: http://forums.hak5.o...rum/65-mark-iv/

Step 4 power them up: Plug the KaliPi into the pineapple poe jack. KaliPi automatically tries to connect on eth0, 

Step 5 My pi is always assigned the address 172.16.42.157. SSH in to kalipi (pw:toor) install tightvncserver.

Step 6 Install raspi-config on Kali pi

           git clone http://github.com/asb/raspi-config.git

           cd raspi-config
           sh raspi-config
Step 7: Use what the gods gave you
           wget wifipineapple.com/wp4.sh
           chmod+x wp4.sh
           ./wp4.sh
If you have questions... pm me!

 

 

I am a computer science student and just a nerd that likes to play with things

This is my first post. I recently got a raspberry pi and a wifi pineapple mark iv and set them up to work together. I just got a new battery pack (anker astro3 10000mAh) and it runs the two of them, it will run for close to 5 hours as pictured. I also use them with the Alfa AWUS036H (not pictured) and the AWUS036NHA. It took a little time but was not that hard. Raspberry pi instructions, Pwnpi and http://forums.hak5.o...rum/49-jasager/ I will update as the project gets better, for now...

project.png

With the raspberry pi you can make any tv or monitor your display with rca or hdmi. Or ssh and vnc into both devices from you laptop, tablet, or phone

PC300388.JPG

I am working on complete automation based off the fact that Karma will bring devices to the network, and the pwnpi will attack most hosts on the pineapple network

Making it mobile, I thought about a pizza box but figured a solar backpack was a better bet

In this pic i am using the pineapple with  the Alfa AWUS036H and AWUS036NHA.

P1140047.JPG

 

I decided to use 2 power supplies: anker astro3 10000mAh to run the pineapple and an anker 8400mAh to run the pi

P1070046.JPG


Edited by desarmy, 16 April 2013 - 07:06 PM.


#2 telot

telot
  • Active Members
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 714 posts

Posted 09 January 2013 - 07:05 PM

Heres a script I wrote up for my old mark3 for automated pineappling when connected to a backtrack5 laptop.  It will require some modification to work with your setup, but it might be a good way to learn :)  Hope you can get some value from it.  Cheers

 

Spoiler
 
telot

Edited by telot, 21 March 2013 - 04:58 PM.


#3 unixkey

unixkey
  • Active Members
  • Newbie

  • 6 posts

Posted 15 February 2013 - 03:32 PM

Sweet getup.  Nice script too.  Now I know what I'm gonna do with my 3 day weekend lol



#4 Foxtrot

Foxtrot
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 956 posts

Posted 15 February 2013 - 04:28 PM

Nice job man, I'll have to get the PwnPi distro running on my Pi, and also buy one of those pretty Pibow cases :D

 

But why the directional antenna in a backback?

 

-Foxtrot


WiFi Pineapple Wiki

Foxtrot @ irc.hak5.org:6667


#5 s3cz0ne

s3cz0ne
  • Active Members
  • Newbie

  • 4 posts

Posted 26 February 2013 - 08:08 PM

Never having actually used a pineapple I'm working on the assumption that there is a web gui for carrying out attacks as well as backend scripts for automation. That being said, i'm curious as to whether code from jasager responsible for the above could be borrowed and implemented in pwnpi for instance. Also, for a drop box easy use and automation through scripts/web ui is critical for fast deployment. Curious what peoples thoughts are here but it seems that with a rpi, two alphas, usb hub and power source you can create a far more powerfull and flexible pineapple and even a pwn plug for that matter. The possibilities seem wide open.

#6 hak4fun

hak4fun
  • Active Members
  • Newbie

  • 3 posts

Posted 05 March 2013 - 08:26 PM

hmm. isn't there a ARM version of backtrack you could put on the raspberry pi? if there is you could hide this like in a library SSH into it and do remote attacks. lol



#7 icedevil433

icedevil433
  • Active Members
  • Newbie

  • 5 posts

Posted 06 March 2013 - 11:44 AM

I've been tinkering around with my Pi and pineapple recently too.  It would seem the possibilities are somewhat endless.  I also prefer using good ol' wheezy instead of PwnPi, in my experience PwnPi has too many issues as its still in beta and has yet to work out many a kink.  Wheezy, with the right packages installed, is much more stable and if you remove some of the dead weight (with pen-testing in mind)  and boot with a UHS Class 1 SD card then you can speed up your pwnage significantly.  imho.



#8 telot

telot
  • Active Members
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 714 posts

Posted 18 March 2013 - 07:52 AM

I've been tinkering around with my Pi and pineapple recently too.  It would seem the possibilities are somewhat endless.  I also prefer using good ol' wheezy instead of PwnPi, in my experience PwnPi has too many issues as its still in beta and has yet to work out many a kink.  Wheezy, with the right packages installed, is much more stable and if you remove some of the dead weight (with pen-testing in mind)  and boot with a UHS Class 1 SD card then you can speed up your pwnage significantly.  imho.

Checkout Kali for Raspberry Pi icedevil433.  Its a lot more solid than pwnpi for some things.  Plus apt-get'ting all those tools on a fresh rasbian install would be extremely painful...apt-get just takes forever on the pi!

 

 

 

telot



#9 Foxtrot

Foxtrot
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 956 posts

Posted 19 March 2013 - 02:55 AM

I'd recommend over clocking it to 800Mhz though
:)

WiFi Pineapple Wiki

Foxtrot @ irc.hak5.org:6667


#10 desarmy

desarmy
  • Active Members
  • Hackling

  • Pip
  • 15 posts

Posted 19 March 2013 - 11:46 AM

I'd recommend over clocking it to 800Mhz though
:)

Thanks, i tried and it was not apparent. raspi-config is not installed on the kali pi image. I was able to clone it from github and then run it and set the overclock to 800Mhz   :lol:


Edited by desarmy, 19 March 2013 - 11:48 AM.


#11 telot

telot
  • Active Members
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 714 posts

Posted 19 March 2013 - 02:44 PM

Yep - the raspi-config is also oh-so-necessary for easily expanding the root fs to utilize your entire SD card

 

 

 

telot



#12 barry99705

barry99705
  • Active Members
  • Hak5 Junkie

  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 2,214 posts

Posted 19 March 2013 - 07:59 PM

Damn it!  Back ordered again!


Encryption is the chicken soup of security,
feel free to apply it if it makes you feel better because it’s not going to make things any worse,
but it may not make things any better either.  
---Peter Gutmann
1JRos2rbs9wKRBMchL9Ahw.png

#13 whitehat

whitehat
  • Active Members
  • Hak5 Zombie

  • PipPipPipPipPip
  • 183 posts

Posted 20 March 2013 - 10:43 PM

OMG I am soooo jealous OP, but thanks for the hacker porn!!!!!

 

Want to sell me one for a secondhand price loaded with Kali? If so PM me an offer. Btw I heard that the first production run of Rasberry Pi had a lot of glitches -- are they worked out now and what generation/version are you on?


Edited by whitehat, 20 March 2013 - 10:44 PM.

I'm still a hacker. I get paid for it now. I never received any monetary gain from the hacking I did before... I now do it with authorization.
Kevin Mitnick

 


#14 desarmy

desarmy
  • Active Members
  • Hackling

  • Pip
  • 15 posts

Posted 21 March 2013 - 09:01 AM

OMG I am soooo jealous OP, but thanks for the hacker porn!!!!!

 

Want to sell me one for a secondhand price loaded with Kali? If so PM me an offer. Btw I heard that the first production run of Rasberry Pi had a lot of glitches -- are they worked out now and what generation/version are you on?

I am using raspberry pi v2



#15 TechnoGeek

TechnoGeek
  • Members
  • Newbie

  • 2 posts

Posted 21 March 2013 - 08:36 PM

I am learning how to implement things on my Pi. Waiting on my pineapple. Already have one of my 10000mAh batteries. Old GameBoy Advance mini backpack. Let's see where we go from here.

#16 abo al-7roof

abo al-7roof
  • Active Members
  • Hackling

  • Pip
  • 13 posts

Posted 22 March 2013 - 08:44 AM

hello

 

i am using your set up, but with 2 AWUS036H

when i use airodump-ng mon0 i dont get anything i even tried –ignore-negative-one but still nothing

 

can you help me please?


Edited by abo al-7roof, 22 March 2013 - 09:19 AM.


#17 barry99705

barry99705
  • Active Members
  • Hak5 Junkie

  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 2,214 posts

Posted 25 March 2013 - 08:11 PM

Wooo!  Pi shipped!

 

 

Aaaand, it's here!!!  Flashing sd card now.


Edited by barry99705, 29 March 2013 - 03:01 PM.

Encryption is the chicken soup of security,
feel free to apply it if it makes you feel better because it’s not going to make things any worse,
but it may not make things any better either.  
---Peter Gutmann
1JRos2rbs9wKRBMchL9Ahw.png

#18 barry99705

barry99705
  • Active Members
  • Hak5 Junkie

  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 2,214 posts

Posted 29 March 2013 - 04:29 PM

Okay, quick question, how do you get the vnc client to actually show anything?  I can vnc in, but just get a gray screen and a mouse pointer.

 

 

 

Wait!!  Reboot fixed it!!


Edited by barry99705, 29 March 2013 - 04:34 PM.

Encryption is the chicken soup of security,
feel free to apply it if it makes you feel better because it’s not going to make things any worse,
but it may not make things any better either.  
---Peter Gutmann
1JRos2rbs9wKRBMchL9Ahw.png

#19 desarmy

desarmy
  • Active Members
  • Hackling

  • Pip
  • 15 posts

Posted 02 April 2013 - 09:33 AM

Okay, quick question, how do you get the vnc client to actually show anything?  I can vnc in, but just get a gray screen and a mouse pointer.

 

 

 

Wait!!  Reboot fixed it!!

Are you having fun now?



#20 barry99705

barry99705
  • Active Members
  • Hak5 Junkie

  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 2,214 posts

Posted 02 April 2013 - 01:28 PM

Are you having fun now?

It's a little slow....


Encryption is the chicken soup of security,
feel free to apply it if it makes you feel better because it’s not going to make things any worse,
but it may not make things any better either.  
---Peter Gutmann
1JRos2rbs9wKRBMchL9Ahw.png