Darren Kitchen

Built my first Denial of Drone attack using the MK5 and a DJI to attack the AR.Drone. Will be on Hak5 next week. Code to follow :)

Seems the AR.Drone has a default IP address of 192.168.1.1 and listens for UDP instruction packets on port 5556. Each UDP packet has an incremented sequence number. Should simply be a matter of sniffing one and doing a replay attack. There seem to be a bunch of built in commands for taking off, hovering and landing in the SDK. I'm feeling pretty good about this. If the version of netcat on the MK5 support the -u option for UDP this should be fairly simple.

Well I know the perl script and all of the aircrack magic should work no problem. I really don't care to fly the drones - maybe just send a command to say "turn off motors" and have 'em fall out of the sky. Then we could strap a MK5 to a DJI Phantom and have it pwn the AR.Drone. Do I hear a segment coming on? Just need to find an alternative to the node interface program. ...Off to read the AR.Drone control protocol :)

I did an entire day in the sun running the MK5 in the travel bag at the happiest place on Earth with no problem. Sure it gets hot, but it's well within the thermal limits of those chips. (also FWIW, over 60k probes) ;-)

https://youtu.be/EHKV01YQX_w Seems pretty straight forward https://github.com/samyk/skyjack/blob/master/skyjack.pl Anyone have an Ar.Drone to test? Shouldn't be too hard to put this on the pineapple.

Sara will provide instructions though I don't believe sending the whole travel pack will be necessary.

One of the reasons a password change is required at initial setup. It used to be that the default was "pineapplesareyummy" - much like backtrack's root password is "toor". We also changed from basic auth to a nicer php auth. Seb can speak more to this - but essentially, yes - these have been ironed out.

I may be experiencing similar issues on one of my pineapples. It'll take some time for me to be able to properly verify that it's the same issue. After your dropout are you able to reconnect at all or is a power cycle required?

It's nearly insignificant. The orientation (vertical vs horizontal) will have a higher impact than the quarter inch of plastic. It does look pretty 1337 with the antennas sticking out, but it's more discrete without.

Contact shop@hak5.org - we'll get you sorted.

Email shop@hak5.org and we'll have a replacement right out to you.

We don't pre-drill since many customers like the discrete look without the antennas poking out. Just a 1/4" hole will do. I've seen marine attachments for Ethernet.

Yep. First video is being recorded tomorrow. Stay tuned!

We made this network. This community was around before Netflix, before Google, hell - before Hak5. We're not going away anytime soon.

Nice find. I love me some pineapple case mods!

The battery that comes with the elite is rated at about 3 days. With two of 'em you could have a constant swap, as long as your come back to your pineapples location on a regular basis. Those all in one solar chargers are nice, but I've yet to see one that can go for days on end. I forget the name of the solar company but I featured them in one of the first hack across america episodes from the overland expo - they made a roll out panel + LiIon kit that seemed promising.

Those ZTE modems from T-Mobile are great. Even better that in the states they don't require ID or a credit card. Interesting regarding the redial issue. I did a lot of 3G testing in dev and was surprised at how stable it is over the MK4. I had a modem up for days that rarely had to redial and when it did the network picked right back up almost immediately. Can you post your logs of the issue? I wonder if it's just that modem. I have the older 3G version that's my goto :-)

Thank you. Also, I love your avatar!

Yeah please keep us updated.

Doubtful. There's not much that isn't solved with software. I'm not sure what's causing it as I've never tested in this manner. Can you try scp'ing the file from the other direction? Meaning ssh into the pineapple then scp the file from your host to the SD card and report back? Also what filesystem are you using? Ext4?

Thanks for the honest feedback, I really do appreciate it. I understand we are in the early days of a new platform and that's going to mean a whole set if new challenges. I'm confident the next firmware update will address these known bugs, as well as the upcoming video series to introduce the product to the newcomers. I know there's a greater expectation on us now that we're an OEM and I hope that we can learn and grow from these early experiences in a way that will foster a welcoming community for all.

Where are you getting these ash commands that reference dropbear? The MK5 moved from dropbear to openssh so your keys should be in /root/.ssh

It shouldn't take more than 12 hours to charge. If your pineapple runs for ~3 days - it was fully charged.

Foam would not have been the best choice thermally, however I see your point about the velcro. Will be making an update to the kit soon. Thanks for the feedback. Also FWIW regarding 3G antennas, I can't speak highly enough about the Wilson signal processors - at least here in the US. My CDMA booster took my sprint Note2 from 2mbps to 20!

I have a meeting with our UPS rep this week because I'm completely appalled by their additional fees. I'm also looking into DHL and other carriers. I agree that in many cases USPS is the best carrier, albeit not the fastest. As for customs, as others have noted, we have to play by the rules. Perhaps A discount may be applied to the unit cost, perhaps the customer asks for it as a gift in the notes section at checkout, but never will it say "model railroad parts" or otherwise. Nations have as much right to inspect parcels entering their borders are you have the right to inspect packets entering your network.