Jump to content


Photo
* * * * * 2 votes

Pineapple Kali Pi

raspberry pi wifi pineapple kali

  • Please log in to reply
28 replies to this topic

#1 desarmy

desarmy

    Hackling

  • Active Members
  • Pip
  • 11 posts
  • Gender:Male

Posted 04 January 2013 - 07:53 PM

UPDATE: 4/16

I already had a usb rubby ducky and thanks to the Kali-Linux install script of the Rubber Ducky Payload Generator this device now has a new  attack vector granted I have access to a client station. Thanks Hak5!

 

UPDATE:

I am now running kali linux on raspberry pi

I am now going to automate as much as i can   :wub:

To use the setup I use a tablet and vnc into it

It takes about 3 minutes to power up everything, ssh into pi, startvnc and login

Screenshot_2013-03-13-18-07-45.png

I hooked up the AWUS036NHA to the kali pi and did a real world wifi cracking test (wifite is built into kali)

I found a good spot with multiple networks and the signal strength isnt great, It took around 5 min

Screenshot_2013-03-14.png

This whole getup is very easy to setup, I will actually be able to use this within 6 months on a clients network.

.P3180925.jpg

This is what it all looks like all parts cost around $350

Step 1 buy stuff: Buy raspberry pi, wifipineapple, 2 alfas, usb hub, 8gb usb drive, 16gb sdcard, ethernet cable

Step 2 setup pi: http://cdimage.kali....pberrypi.img.gz Dowload and write to sdcard put in pi thats it.

Step 3 setup pineapple: http://forums.hak5.o...rum/65-mark-iv/

Step 4 power them up: Plug the KaliPi into the pineapple poe jack. KaliPi automatically tries to connect on eth0, 

Step 5 My pi is always assigned the address 172.16.42.157. SSH in to kalipi (pw:toor) install tightvncserver.

Step 6 Install raspi-config on Kali pi

           git clone http://github.com/asb/raspi-config.git

           cd raspi-config
           sh raspi-config
Step 7: Use what the gods gave you
           wget wifipineapple.com/wp4.sh
           chmod+x wp4.sh
           ./wp4.sh
If you have questions... pm me!

 

 

I am a computer science student and just a nerd that likes to play with things

This is my first post. I recently got a raspberry pi and a wifi pineapple mark iv and set them up to work together. I just got a new battery pack (anker astro3 10000mAh) and it runs the two of them, it will run for close to 5 hours as pictured. I also use them with the Alfa AWUS036H (not pictured) and the AWUS036NHA. It took a little time but was not that hard. Raspberry pi instructions, Pwnpi and http://forums.hak5.o...rum/49-jasager/ I will update as the project gets better, for now...

project.png

With the raspberry pi you can make any tv or monitor your display with rca or hdmi. Or ssh and vnc into both devices from you laptop, tablet, or phone

PC300388.JPG

I am working on complete automation based off the fact that Karma will bring devices to the network, and the pwnpi will attack most hosts on the pineapple network

Making it mobile, I thought about a pizza box but figured a solar backpack was a better bet

In this pic i am using the pineapple with  the Alfa AWUS036H and AWUS036NHA.

P1140047.JPG

 

I decided to use 2 power supplies: anker astro3 10000mAh to run the pineapple and an anker 8400mAh to run the pi

P1070046.JPG


Edited by desarmy, 16 April 2013 - 07:06 PM.


#2 telot

telot

    Hak5 Ninja

  • Active Members
  • PipPipPipPipPipPipPip
  • 698 posts
  • Gender:Male
  • Location:Here in your bedroom
  • Interests:m2m telecommunication (by profession)
    hacker mentality/culture
    embedded systems
    everything wireless
    DIY solutions
    opensource everything
    Intellectual Property Litigation

Posted 09 January 2013 - 07:05 PM

Heres a script I wrote up for my old mark3 for automated pineappling when connected to a backtrack5 laptop.  It will require some modification to work with your setup, but it might be a good way to learn :)  Hope you can get some value from it.  Cheers

 

Spoiler
 
telot

Edited by telot, 21 March 2013 - 04:58 PM.


#3 unixkey

unixkey

    Newbie

  • Active Members
  • 6 posts
  • Gender:Male
  • Location:Charleston IL

Posted 15 February 2013 - 03:32 PM

Sweet getup.  Nice script too.  Now I know what I'm gonna do with my 3 day weekend lol



#4 Foxtrot

Foxtrot

    1.21 Giga Wat?

  • Active Members
  • PipPipPipPipPipPipPip
  • 799 posts
  • Gender:Male
  • Interests:Pineapples, Computers, Security, Hacking, Opensource Development.

Posted 15 February 2013 - 04:28 PM

Nice job man, I'll have to get the PwnPi distro running on my Pi, and also buy one of those pretty Pibow cases :D

 

But why the directional antenna in a backback?

 

-Foxtrot



#5 s3cz0ne

s3cz0ne

    Newbie

  • Active Members
  • 4 posts

Posted 26 February 2013 - 08:08 PM

Never having actually used a pineapple I'm working on the assumption that there is a web gui for carrying out attacks as well as backend scripts for automation. That being said, i'm curious as to whether code from jasager responsible for the above could be borrowed and implemented in pwnpi for instance. Also, for a drop box easy use and automation through scripts/web ui is critical for fast deployment. Curious what peoples thoughts are here but it seems that with a rpi, two alphas, usb hub and power source you can create a far more powerfull and flexible pineapple and even a pwn plug for that matter. The possibilities seem wide open.

#6 hak4fun

hak4fun

    Newbie

  • Active Members
  • 3 posts

Posted 05 March 2013 - 08:26 PM

hmm. isn't there a ARM version of backtrack you could put on the raspberry pi? if there is you could hide this like in a library SSH into it and do remote attacks. lol



#7 icedevil433

icedevil433

    Newbie

  • Active Members
  • 5 posts

Posted 06 March 2013 - 11:44 AM

I've been tinkering around with my Pi and pineapple recently too.  It would seem the possibilities are somewhat endless.  I also prefer using good ol' wheezy instead of PwnPi, in my experience PwnPi has too many issues as its still in beta and has yet to work out many a kink.  Wheezy, with the right packages installed, is much more stable and if you remove some of the dead weight (with pen-testing in mind)  and boot with a UHS Class 1 SD card then you can speed up your pwnage significantly.  imho.



#8 telot

telot

    Hak5 Ninja

  • Active Members
  • PipPipPipPipPipPipPip
  • 698 posts
  • Gender:Male
  • Location:Here in your bedroom
  • Interests:m2m telecommunication (by profession)
    hacker mentality/culture
    embedded systems
    everything wireless
    DIY solutions
    opensource everything
    Intellectual Property Litigation

Posted 18 March 2013 - 07:52 AM

I've been tinkering around with my Pi and pineapple recently too.  It would seem the possibilities are somewhat endless.  I also prefer using good ol' wheezy instead of PwnPi, in my experience PwnPi has too many issues as its still in beta and has yet to work out many a kink.  Wheezy, with the right packages installed, is much more stable and if you remove some of the dead weight (with pen-testing in mind)  and boot with a UHS Class 1 SD card then you can speed up your pwnage significantly.  imho.

Checkout Kali for Raspberry Pi icedevil433.  Its a lot more solid than pwnpi for some things.  Plus apt-get'ting all those tools on a fresh rasbian install would be extremely painful...apt-get just takes forever on the pi!

 

 

 

telot



#9 Foxtrot

Foxtrot

    1.21 Giga Wat?

  • Active Members
  • PipPipPipPipPipPipPip
  • 799 posts
  • Gender:Male
  • Interests:Pineapples, Computers, Security, Hacking, Opensource Development.

Posted 19 March 2013 - 02:55 AM

I'd recommend over clocking it to 800Mhz though
:)

#10 desarmy

desarmy

    Hackling

  • Active Members
  • Pip
  • 11 posts
  • Gender:Male

Posted 19 March 2013 - 11:46 AM

I'd recommend over clocking it to 800Mhz though
:)

Thanks, i tried and it was not apparent. raspi-config is not installed on the kali pi image. I was able to clone it from github and then run it and set the overclock to 800Mhz   :lol:


Edited by desarmy, 19 March 2013 - 11:48 AM.


#11 telot

telot

    Hak5 Ninja

  • Active Members
  • PipPipPipPipPipPipPip
  • 698 posts
  • Gender:Male
  • Location:Here in your bedroom
  • Interests:m2m telecommunication (by profession)
    hacker mentality/culture
    embedded systems
    everything wireless
    DIY solutions
    opensource everything
    Intellectual Property Litigation

Posted 19 March 2013 - 02:44 PM

Yep - the raspi-config is also oh-so-necessary for easily expanding the root fs to utilize your entire SD card

 

 

 

telot



#12 barry99705

barry99705

    Hak5 1337 Fan

  • Active Members
  • PipPipPipPipPipPipPipPipPipPip
  • 1,471 posts
  • Gender:Male

Posted 19 March 2013 - 07:59 PM

Damn it!  Back ordered again!


The Pineapple Wiki

http://wiki.wifipineapple.com

1JRos2rbs9wKRBMchL9Ahw.png


#13 whitehat

whitehat

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 183 posts
  • Gender:Male

Posted 20 March 2013 - 10:43 PM

OMG I am soooo jealous OP, but thanks for the hacker porn!!!!!

 

Want to sell me one for a secondhand price loaded with Kali? If so PM me an offer. Btw I heard that the first production run of Rasberry Pi had a lot of glitches -- are they worked out now and what generation/version are you on?


Edited by whitehat, 20 March 2013 - 10:44 PM.

I'm still a hacker. I get paid for it now. I never received any monetary gain from the hacking I did before... I now do it with authorization.
Kevin Mitnick

 


#14 desarmy

desarmy

    Hackling

  • Active Members
  • Pip
  • 11 posts
  • Gender:Male

Posted 21 March 2013 - 09:01 AM

OMG I am soooo jealous OP, but thanks for the hacker porn!!!!!

 

Want to sell me one for a secondhand price loaded with Kali? If so PM me an offer. Btw I heard that the first production run of Rasberry Pi had a lot of glitches -- are they worked out now and what generation/version are you on?

I am using raspberry pi v2



#15 TechnoGeek

TechnoGeek

    Newbie

  • Members
  • 2 posts

Posted 21 March 2013 - 08:36 PM

I am learning how to implement things on my Pi. Waiting on my pineapple. Already have one of my 10000mAh batteries. Old GameBoy Advance mini backpack. Let's see where we go from here.

#16 abo al-7roof

abo al-7roof

    Hackling

  • Active Members
  • Pip
  • 13 posts

Posted 22 March 2013 - 08:44 AM

hello

 

i am using your set up, but with 2 AWUS036H

when i use airodump-ng mon0 i dont get anything i even tried –ignore-negative-one but still nothing

 

can you help me please?


Edited by abo al-7roof, 22 March 2013 - 09:19 AM.


#17 barry99705

barry99705

    Hak5 1337 Fan

  • Active Members
  • PipPipPipPipPipPipPipPipPipPip
  • 1,471 posts
  • Gender:Male

Posted 25 March 2013 - 08:11 PM

Wooo!  Pi shipped!

 

 

Aaaand, it's here!!!  Flashing sd card now.


Edited by barry99705, 29 March 2013 - 03:01 PM.

The Pineapple Wiki

http://wiki.wifipineapple.com

1JRos2rbs9wKRBMchL9Ahw.png


#18 barry99705

barry99705

    Hak5 1337 Fan

  • Active Members
  • PipPipPipPipPipPipPipPipPipPip
  • 1,471 posts
  • Gender:Male

Posted 29 March 2013 - 04:29 PM

Okay, quick question, how do you get the vnc client to actually show anything?  I can vnc in, but just get a gray screen and a mouse pointer.

 

 

 

Wait!!  Reboot fixed it!!


Edited by barry99705, 29 March 2013 - 04:34 PM.

The Pineapple Wiki

http://wiki.wifipineapple.com

1JRos2rbs9wKRBMchL9Ahw.png


#19 desarmy

desarmy

    Hackling

  • Active Members
  • Pip
  • 11 posts
  • Gender:Male

Posted 02 April 2013 - 09:33 AM

Okay, quick question, how do you get the vnc client to actually show anything?  I can vnc in, but just get a gray screen and a mouse pointer.

 

 

 

Wait!!  Reboot fixed it!!

Are you having fun now?



#20 barry99705

barry99705

    Hak5 1337 Fan

  • Active Members
  • PipPipPipPipPipPipPipPipPipPip
  • 1,471 posts
  • Gender:Male

Posted 02 April 2013 - 01:28 PM

Are you having fun now?

It's a little slow....


The Pineapple Wiki

http://wiki.wifipineapple.com

1JRos2rbs9wKRBMchL9Ahw.png






Also tagged with one or more of these keywords: raspberry pi, wifi pineapple, kali

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users