Drewdroid
-
Posts
31 -
Joined
-
Last visited
Posts posted by Drewdroid
-
-
Been a while since I've been back on the boards.. here's my Mark II and MarkIV - some might have seen it on my twitter feed.
RPi coming on the slow boat from China and some other things in the works
-
I am trying to teach myself how to program in C. I have a very little experience in VB6 back in high school. So what I am looking for is what books should I pick up to help myself out.
Any help with this would be helpful.
This is one of the sites I ran across that was/is a good resource when I started back up again last year - http://www.cprogramming.com/tutorial.html It covers C, C++, OpenGL, STL - I'll double check the books I picked up as well when I'm back at the homestead.
-
Just saw these come through my news feed and I think these are even smaller than my Sony drives - http://www.deonet.com/news.html
Tiny! The new Micro UDP-chip measures 19,5 x 14,5 mm, barely the size of a fingertop, and it is only 2,9 mm thin. This super small USB-stick is available in 4, 8 and 16 GB and will be introduced in January at the biggest business fair for promotional gifts in Europe: PSI Düsseldorf.
-
Guys, what do you think about this DIY Classic Paper clip Antenna? expected gain up to 9 dBi.
I think it might work but I'm not sure about the gains. It's small enough for sure to fit anywhere but I'd worry about the measurement of the elements.
-
I wanted to add an antenna that I had disassembled for internal use - it's one from this N300 Wireless PCI Adapter
http://support.netgear.com/app/products/model/a_id/2605
The internals, although split for MiMo workings show how tiny they can end up being. The traces are on both sides of the board and are setup for frequency ranges covering B,G and N. It's an example of an antenna tuned for 2.4 GHz and 5 GHz bands.
The ground is going to the ground plane traces - far side of the pcb in the picture (which is actually the "front" of the antenna)
The positive is going to the near plane traces. Notice how they are mirrors of each other and the center trace is thinner on this side to make up for the extra distance added. They both have the same trace surface area.
For scale, a standard business card covers all three of those antenna elements.
I'm going to run a few signal tests on an individual element and try to get back with some hard data.
-
@ The Sorrow, it sounds like you're essentially against the hacker spirit. I'd posit that a career in law enforcement living by the letter of the law is appropriate for you. Many times there are rules or laws that are in place, but it does not mean that they were created by knowledgeable IT personnel. Most of those "laws" and rules are in place to cover the collective legal behinds of the administration. Would you prefer to use a cryptography suite that wasn't poked and prodded at until it broke and was fixed? The cryptography that has been hacked to death and fixed is more trustworthy than something that lives behind a shroud of secrecy. It's by pushing boundaries that we find issues in the software or security procedures.
Should the kid have been poking around? No, not if he signed the acceptable use policy. He did bring it to the attention of the school rather than using it for his own personal gain. We exist in many gray areas when it comes to what is right or wrong. I see what you are saying about going against the policies. Do I fault him for poking around the network? Hell, no. It's human nature to explore.
I'm growing tired of a society that is being forced to think in black and white terms. OBEY, all else is wrong and shall be punished.
In regards to the actual question - Communicate with that youth that brought it up and if it something that he did do successfully, find out what paths he took to get there. I often have other eyes to check my work and verify I didn't miss something glaring in the details. Discuss the use policies and get his input on why they did not deter him. The administration might not agree but I believe you may be able to guide that kid in ways and levels that other teachers have not been to reach him on yet.
-
I changed mine to SST-PR1
Nope, didn't see any Sears trucks running through the airport LOL
-
Having built antennas for Ham radio, I'm cautious about DIY without an analyzer. (the Analyzer I have stops at 150MHz
) Dialing in the SWR, impedance and resonant freq is what makes them work *right*Granted an HF rig cost a bit more then a WiFi adapter ;)
Anode, I definitely agree with needing a good analyzer but the prices for the nice ones hovering around $3k or so is definitely cost prohibitive. I'm hoping some of the members will have contacts with universities with RF labs or possibly work contacts that can lend some time to properly test. I've been trying to find designs that have been fully tested to work from as a basis. Throwing a shout out to other hams is a good way of tracking down equipment as well. Some of them have more disposable income to be able to get all the bells and whistles along with just doing ham activities versus all around hacking of things and software.
The thing is to not let us get discouraged. I had a friend that was astounded when I built a bandpass sub enclosure by using pen and paper to do the spec design back when they were still a new idea. He insisted it was a miracle it worked as efficiently as it did. Common sense and some good basic knowledge can get us mostly there with antennas. For the true optimum performance gains we need the tools to tweak them. Look at how Marconi started out in the late 1800's.
Another thing I wanted to bring up for everyone is that just because you've got the range to receive the signal doesn't mean you'll get back there. We need to make sure our send gets as far as our receive. Without that balance we've got a great listening device at the far ranges and that's not what we're looking for here.
73, KB1JPW
-
As others have said Deauth helps - which is why a Neinsager backpack (deauth drone) using either a MK3/4 or AWUS036H is on the roadmap.
Here's a screenshot from my galaxy note from a recent pineapple outing. No deauth's running and as you can see it did quite well. Just a matter of getting out to a target rich environment.
Any of you been out at Philly International lately? I was there a couple of weeks ago and one of the open access points was "pineapple" :) I connected to it with hopes it was and one of "us" and opened a browser to http://www.wifipineapple.com/ as a discrete "Hello!"
-
Updated with more sources - 03/10/2012
After Darren had posted the Mk4 Pineapple Urban Assault Mod, I started wondering again about concealed antenna options with high-gain possibilities. I've not come to any definitive conclusions but started looking at the circuit board patch antennas which led me to fractal antennas. (I guess it's the Ham operator in me) I'm going to test some of the fractal designs as well as some patch antennas. Keep in mind that the enclosures will definitely affect the antenna tuning. Even just a layer of plastic can shift the frequency response and make it less efficient. This is where designing the antenna comes in handy. You can also take the knowledge below here and use it to correct for your enclosures.
I've started this with the hopes of coming up with a good community guide for antenna selection and options for increasing the pineapple range. Yes, there's plenty of high gain antennas such as the yagi and parabolic but sometimes we want to be a bit more discrete. Please keep in mind that what you end up using could be considered illegal by the FCC if you output too much power. What I'm hoping for is as follows:
A) A list of antennas that you've tried either commercial or DIY
1)cost and construction
2)actual gain compared to what was marketed
3)environments tested in such as urban, heavy foliage, rolling hills, rocky terrain etc. with a description of line of sight
4)actual db readings of before/after
B)Links to resources you've found and any designs you want to share
c)overall opinion of your various antennas and types of WiFi hunting scenarios such as omnidirectional/sniping/combo and how they work for that purpose.
D)how well would the antenna blend in if left in place somewhere
E)Possible pictures along with pineapple for scale
Some resources I found so far in my searches:
http://www.dxzone.com/cgi-bin/dir/jump2.cgi?ID=22298 Design and material types selection guidelines
http://fermi.la.asu.edu/w9cf/yagipub/index.html Yagi antenna modeler software to scale up or down and get perfect measurements of elements and location
http://jcoppens.com/ant/helix/calc.en.php Helical antenna calculator
http://www.dxzone.com/catalog/Antennas/WiFi/
http://www.andrewhazelden.com/blog/2011/02/homemade-sierpinski-gasket-fractal-wifi-antenna/
http://members.fortunecity.com/scienziatopazzo/fractalantennas.htm
http://www.jpier.org/PIERC/pierc16/03.10062206.pdf
http://www.orbanmicrowave.com/The_Basics_Of_Patch_Antennas.pdf
http://highfrequencyelectronics.com/Archives/Mar09/HFE0309_Tutorial.pdf
http://archive.rocketreviews.com/reviews/all/scratch_patch_antenna.shtml
http://colinkarpfinger.com/blog/2010/the-dropouts-guide-to-antenna-design/ - Awesome guide and intro to designing/testing antennas
http://www.n5ebw.com/2008-09/antenna-solutions-on-the-cheap/ Images of a patch antenna and Yagi antenna both on etched on circuit boards
http://www.qsl.net/n9zia/wireless/appendixD.html - Bi-Directional 2.4 GHz One Watt Amplifier With Receive Pre-Amp
http://www.iw5edi.com/ham-radio/?building-a-2.4-ghz-10-el.-yagi,115 Building a 2.4 GHz 10 element Yagi
http://www.dxzone.com/cgi-bin/dir/jump2.cgi?ID=12603 slotted waveguide antennas - Unidirectional & Omnidirectional High gain, Simple construction
http://www.trevormarshall.com/biquad.htm Very simple and compact Bi-quad design
http://www.ti.com/lit/an/swra350/swra350.pdf 2.4 GHz YAGI PCB Antenna compact and VERY Flat - 100 x 150 mm.
http://www.instructables.com/id/Easy-to-Build-WIFI-24GHz-Yagi-Antenna/ Slightly Ghetto version of Yagi using popsicle sticks - but the theory and measurements are sound
http://www.ab9il.net/wlan-projects/wifi6.html another wood and copper Yagi
http://www.instructables.com/id/Bi-Quad-WiFi-Antenna/ Double Bi-quad antenna
http://www.ab9il.net/wlan-projects/wifi3.html Interesting helical coil attached to satellite dish collector - apparent 26dB gain!
http://www.ab9il.net/wlan-projects/wifi3A.html simple helical antenna with better gain than bi-quads
-
Awesome, no worries, I take notes as I'm playing around and post them for the Mark IV unless someone beats me to the punch. Unfortunately I just found some scripting ideas I want to take a look at for automating the web traffic capturing and sorting.
-
If you don't mind posting the code you're using I'd like to play around with it a bit. I just uploaded the new firmware, reset my password and already have "customers" showing up. Might as well do something interesting with them since they're using my "ISP." :D
-
That works slick! I think the https: would clinch it but it looked and acted good from watching the video. The only issue I could see would be any systems that cached the DNS for Facebook prior to connecting to you but chances are they would already have logged in so I suppose it would be a missed attempt either way. Have you attempted that with a profile that uses the location aware feature (aka IP address block check for new locations)? I can't see it being an issue if you're tying into the same ISP connection but it might be if they're being routed through a wireless modem such as the USB 3g or 4G.
-
I have been looking at encryption and should be able to have a version which includes it.
I will report back later.
Best,
Seb
As if you guys don't hear it enough - You Rock!
-
Wow, already taken down.. Ill reupload with no music.. one sec
Edit: It shouldnt matter, your victim is entering his credentials using your non-HTTPS page then redirected to the real facebook
To bypass the "savvy" users that check for SSL you could possibly integrate an SSLSniff proxy which will dynamically generate certs for all requested domains, but most will notice the alert for the cert validity too.
-
Xtronic, The firmware compels you!
Guys, awesome feature updates list! I was hoping there would be a ui method to changing the scripts for the hardware buttons.
Damn having to work, I'll have to wait until this evening to get the new one uploaded. I'm definitely interested to see how the backpack mode will work with the Mark III down the road.
Sebkinne, do you want us to post any issues with the upgraded firmware here?
-
I just want to add props to all of the community that has made this pineapple what it is today. Crowdsourcing, testing, refining and brainstorming for new ideas has been well proven here in these forums. I've been following the project for quite a while (way before I ever joined the forums) and am impressed with the functionality that just seems to keep growing. I had a question regarding compensation as well a while back and am glad someone brought it up. I totally understand doing things for the love of something and am guilty myself of not putting enough value on my effort and time occasionally. With that being said I was more than happy to pay the meager price for an updated and more capable WiFi pentest tool knowing that it would help further development. I've sourced my own hardware in the past but I think this time I wasn't capable of waiting. :) Cheers All!
-
While I'm waiting for my mk4 to arrive, I have a question. Is hashalot or any other filesystem encryption supported by the mk4 to read/write encrypted USB drives?
Wouter, it looks like not at the moment. There's been work on the OpenWRT base to get it fully functioning and at the moment it would seem that you'd need to compile your own version with that baked in. https://dev.openwrt.org/ticket/8784 <- This ticket is referencing the issues still encountered with Encrypted FS support. From the reports you can mount the filesystem but that's about it. I might have missed where someone has something working on the boards so if I did, please someone add the corrections.
-
Fixed it for you. ;)
Barry, that's awesome and needed. It reminded me of Airplane II-
Ted Striker: Which passenger is Joe Solucci?
Testa: 16C. Why?
Ted Striker: He's carrying a bomb.
Testa: A bah—[hands fly up to her mouth to muffle her words]
Striker: No, Not a bah. A bomb.
Maybe there should be a shiny, candy red button that is irresistible to not push. Perhaps a "trojan" version that will randomly select different sites for dns redirects for everyone that is connected wirelessly.
-
Despite my earlier post about less conspicuous enclosures, I don't see anything suspicious or dangerous about this one. ;) Maybe have some wires coming out of the case for a carry handle? :D
-
Definitely clean looking on the outside. Function is key and it looks like you've got the battery capacity for a long run time!
-
Internal (to an enclosure) antennas all depend on the materials used for the enclosure. Aluminum, steel, metal of any sort = very very bad, particularly for such high frequency RF. Plastics should be ok, but external is always better. External antennas can be "suspicious" I guess - but not really in a metro area where already wifi everywhere. As for waterproofing - a little dab of silicon around the edge on the outside, and maybe even inside does the trick just fine :)
telot
Power and reception definitely depends on the case choice. I should have specified that I meant with the plastic cases. I'm sort of more careful with anything looking too suspicious since we've all seen how Boston reacts to strange electronics devices. We've just hit the five year anniversary of this one - http://bostinno.com/2012/01/31/boston-celebrates-the-5-year-anniversary-of-cartoon-bomb-scare/ So I suppose not having any flashing lights or strange glows emanating from the case is warranted here. ;)
-
Yes, I should point out that this is indeed a penetration testing tool and here at Hak5 we don't condone messing with the coffee drinkers. I was only mention that because my target at XYZ corp which I've been legally granted permission to audit frequents this establishment and my pineapple has been configured to white list him only. So, be nice out there.
Yep, aluminum with steel plate for the magnets. Next one will be a plastic hobby box with aluminum backing, steel plate & more magnets allowing me to put directional antenna inside the box (like a claymore), 3G, more batteries.
I won't get in trouble as SXSW has given me permission to do this for my panel. Or, at least I'm told I have permission. Hope I don't have to ask for forgiveness. Whatever, it's just kittens.
I've been looking into the smaller form factor antennas and keep running back to the circuit board based trace kind for the sheer flatness and size constraints. I found some like this one http://www.amazon.com/4-Bay-Antenna-Wireless-Assembled-Tested/dp/B000FMNZ8C/ref=sr_1_21?s=electronics&ie=UTF8&qid=1330874770&sr=1-21 that should be good for a 12 dB gain. It definitely looks like it will fit in the size constraints of most cases. The added benefit is no "suspicious" antennas poking out of the case along with the waterproofing concerns.
I haven't looked too hard but these are based off of WA5JVB's antenna designs which can easily be diy etched to save on cost if you can find the proper specs for tuning.
-
very nice compilation, telot! Would love to see battery and power related things added! Still waiting on my pineapple as I live in europe and it takes a while to get here, cant wait to apply all that i learnt and try stuff out. Anyways, good read and hope to seefurther expansion :) Deffinitely going in my bookmarks.
From the quick start guide:
Power: AC adapter accepts 100-240V ~50/60 Hz 0.5A (UK/EU adaptable)
Output: DC 12V 1A
Plug: Barrel 5.5mm OD 2.1mm ID center positive
Observed requirements: Using a USB power pack providing 5V we have observed 1A draw at idle with no WiFi.
1.7A draw with WiFi enabled and 3.5A -5.5A draw with USB 3G/4G modems. Some modems may require a powered hub for reliable continuous operation with 5V supply.
Hope that helps a bit, Andrei0427. :)
) Dialing in the SWR, impedance and resonant freq is what makes them work *right*
Recommended hardware to flash the Pineapple MARK IV
in WiFi Pineapple Mark IV
Posted
Midnightsnake,
I tried flashing mine with my bus pirate (3.6 running 5.9 and current bootloader) and was completely unable to actually get the 1 entered at any point to break the boot sequence. I was getting a good read of data coming through the RX but figure it was an issue on the TX side. I believe the issue is actually the voltage on the bus pirate vs the needs of the pineapple to be. I was able to get to console on other older pineapples fine with the BP though, just not the 121U.
For the sake of others, I went from Hiz< , b to set to 115200, m to choose UART, defaults for all UART options, and went into mode (1) for transparent bridge to use putty for the terminal. (pinouts differ depending on Seeed cable/Adafruit/Etc)
I actually gave up and went with a straight USB to TTL adapter using the prolific 2303HX chip. It connected right up at 115200 without a problem and dropped me straight to the prompt.
When in doubt - go with the hardware offered in the Hakshop :)