Jump to content

Cap_Sig

Dedicated Members
  • Posts

    550
  • Joined

  • Last visited

  • Days Won

    27

Everything posted by Cap_Sig

  1. Cap_Sig

    WarBox

    Just wanted to share a project I've been working on. Currently calling it "WarBox" as the initial intent was for wardriving and mobility. The unit at most only required one cable for power or can be used we certain battery packs. Control connection is made wireless offering SSH and VNC. Main reason for the build was to have a very clean device that had full linux capabilities for pentesting but in a compact package. It is a single enclosure containing: Raspberry Pi 3 - running Kali 2017.1 Two alfa network adapters GPS module Custom power distribution board Power supply Filtered cooling fan Input voltage is 8-26 volts allowing the use of many sources. GPS module is configured to work with kismet for logging while on wardrives. Also has external power switch that acts as a "Main" for the whole device. Also added power LED for easy visual reference. I plan to soon make a solar battery pack that will mount to the WarBox. I apologize for the poor quality picture and plan to post some more soon. Please share your thoughts on the WarBox!
  2. @BatPlack So far no luck with the card on the Raspberry Pi 3. I have tried @i8igmac suggestion of using a powered hub. This also did not fix the issue. In my testing with the Pi 3 a powered hub is not required. The actual adapter card only draws a 200-300 mw which is well within range of the USB abilities of the Pi 3. I'm sure with other cards a powered hub would be required, especially on older model raspberry pis. I have tested alfa AWUS036H, 500 mw and 1W, with no powered hub. What seems to make a difference is having a power supply that can provide a true, clean, 5v and 2.5 amps. The pi 3 seems to be capable of running two AWUS036H at full tx with no power issues. The AWUS036NH seems to work as a basic adapter(connecting to networks) but has issues when in monitor mode looking for clients. It will find many APs with good signal strength just no clients that are associated. From my research and testing the Pi 3 can provide a total of 1.2 amps via usb IF the pi has a proper power source. Many power issues are due to not using the right type of power source that results in voltage drops and lack of current. This is just my experience with using the adapters on the Pi 3 and could change depending on your exact setup.
  3. Was your BB working correctly before your firmware update? Are you sure you properly setup your payload? If the payload is not correctly placed in the switch1 folder it can at times just open the usb file system if not correctly setup. Also if your payload requires any of the tools and you have not installed them it will not function properly. Tools install: https://forums.hak5.org/topic/40971-info-tools/
  4. I have done some light searching on github with no luck. Probably do some more looking there later on today. Probably will ping him on twitter and hope for a solution. The ath9k driver is working so far flawlessly on another alfa adapter. Thanks!
  5. @digip thanks for the great info! I have looked at the Re4son kernel previously for some of the other benefits that come with it, especially CPU performance increase. I did go ahead and install to see if it would fix the AWUS036NH issues. It did not fix the issues with seeing clients and capturing handshakes. Hopefully there will be support in the near future.
  6. I am having some trouble with the Alfa AWUS036NH. When connected to a raspberry pi 3 with kali 2017.1 it will not capture handshakes as well as not showing associated clients. The adapter can find APs but that is all. airmon-ng is showing the adapter running driver rt2800usb. I have tried "airmon-ng check kill" prior to monitor mode with no luck. Also have tried "apt-get install firmware-misc-nonfree" which is supposed to help with rt2800usb issues on a rt3070 chip. I have tried using the adapter on a full install kali x64 2017.1 machine install and all appears to be working plug and play. I have searched the raspberry pi, kali, and aircrack forums but have yet to find anything with a working solution. (most threads were dead before solution was posted) Any help with this issue is greatly appreciated!
  7. @digip thanks for the response. I am familiar with the options you are talking about. I just wasn't sure if there was a way to exclude with a rule so if you were to run airodump-ng to scan for APs you would not see familiar/non-target APs. Not really something that is required/needed, was just curious.
  8. Is there a way to have a permanent filter in airodump-ng for a mac address? For example to prevent it from finding your own AP. Something similar to the kismet option filter_tracker=ANY(!"MAC") I'm sure I have just over looked it in the documentation. Thanks in advance!
  9. Just depends on your setup preference. One way would be to buy two xbee wifi modules, one USB breakout for connection to a base station computer, and then whatever you mobile "pocket sized" hardware would be. One mobile option being an arduino with xbee dev board. This option probably has the most documentation. Im not sure but I would think you could possibly use a raspberry pi as well. Just have to do some research on that topic. One thing you never stated is what kind of data you are looking to transmitter back to a base station? You said it would require 1 mbps but is it a particular app or data logged from a sensor? The reason I ask is this could really alter what your mobile main board requirements are. If it is sensor data then an arduino would probably fit the bill. But if it is something along the lines of a software application then you will have to pick something based on that apps running requirements.
  10. @PaPawGeek has some valid points in my opinion. @mgamache I am not completely sure on the xbee broadcasting ssid for I have not used them in the exact setup that we are talking about, but I do believe there is a to make it act as a hidden network. Now depending on your requirements this might still be an issue if your attacker was using something like aircrack-ng suite that can find hidden ssid networks. Like previously said, I think your best defense would be encryption. The xbee itself can implement WPA-PSK, WPA2-PSK and WEP. Also like you said app level encryption would be great if you know the rf will be possibly under attack. Like I said though, I have not used the modules in the exact configuration being discussed. I would do some testing out of curiosity but I don't currently have any xbee wifi modules on hand. Depending on your budget you could probably purchase all the hardware required between $100 - $150 for the xbee setup and do some actual testing. Some websites offer dev kits that come with modules, breakout boards, etc for a good price.
  11. I forgot to attach the link to this PDF that describes how to setup an ad hoc connection: http://ftp1.digi.com/support/documentation/90002124_K.pdf refer to page 29 of the manual. This would be a point to point connection between two xbee modules or you could also do an ad hoc connection with one xbee wifi module and a laptop with wifi card. Just have to configure your xbee and laptop card accordingly. Another option would be have a router at your base station with a private hidden network. This would allow you to have multiple portable units sending data back to the same base station. Im not sure if this would be out of your "no wifi" parameter but just another possible solution. Im sure there are plenty of other solutions out there. I just have been recommending the xbee due to the huge amount of documentation, tutorials, videos, etc that can help in setup and troubleshooting!
  12. I see. When you say "no wifi" do you mean as in a connection to a wifi network to tx/rx data or no wifi rf band? The wifi xbee offers data rates up to 72 mbps and can be used as a direct connection between two modules. Here is a basic setup guide: https://learn.sparkfun.com/tutorials/xbee-wifi-hookup-guide?_ga=2.159357427.839007374.1501162703-1446297197.1501162703 You may want to directly refer to the "Communicating with Other XBees" part of the guide. This allows a direct point to point connection between two modules. This will only work though if the wifi frequency band is an option. Xbee is probably not an option if no wifi band is required.
  13. Have you considered using a Xbee and Arduino? May not be the most cost effective method but would allow simple setup and development. You can find several tutorials for setup and operation. It would be possible to have one for mobile "in a pocket" and another as a ground station hooked up to a computer. Here is a basic setup tutorial: https://learn.sparkfun.com/tutorials/xbee-shield-hookup-guide Link to one of the many zigbee boards: http://www.mouser.com/ProductDetail/Digi-International/XB24CAUIT-001/?qs=%2FPVulymFwT182AEOKkqEXw%3D%3D&gclid=EAIaIQobChMIiJKXg86p1QIVl4izCh3arg7REAYYASABEgKVefD_BwE
  14. https://wiki.openwrt.org/toh/alfa.network/hornet-ub I have used this tutorial to fix bricked Mark IV. Openwrt will give you all the functionally and probably more that the stock firmware.
  15. There are many options when it comes to satellite antennas. It will be hard to find a design that wont require at least soldering a connector or feed coax to the antenna. Here is a website with some great beginner info and links to diy antenna design. http://www.rtl-sdr.com/rtl-sdr-tutorial-receiving-noaa-weather-satellite-images/ I would also check ham radio websites for 2 meter satellite antenna designs. These may not be the best option but could be done with no soldering http://www.amateurradio.bz/4_dollar_satellite_antenna.html or this http://www.rtl-sdr.com/simple-noaameteor-weather-satellite-antenna-137-mhz-v-dipole/
  16. Thanks SymPak for the reply. I have checked my log. It is showing nothing. It is not even showing that there were changes to the interface. I have even tried reflashing and reinstalling network manager. I have also tried installing networkmanager on internal storage and USB. Doesn't seem to make a difference either way. Is there any other way to set the adapter in client mode? possibly some commands? Or should I still try 2.8.1 open beta 2?
  17. are you connected to the POE LAN port on your pineapple? If not you may try that. Also make sure your ip address is static 172.16.42.42 netmask 255.255.255.0 and DNS 8.8.8.8
  18. I'm having some trouble. I am using networkmanager v1.9 and the pineapple is on 2.8.0. Everything for client mode is setup and I do a save and commit. But once I try to do a DHCP Request nothing happens. I have tried with an open, wep, and wpa network. When I do a "iwconfig wlan1" it says the adapter is still in managed access point mode but networkmanager after a auto-detect still is showing that it is in client mode. Any help would be greatly appreciated.
  19. Nope. just wanted to make sure I was thinking in the right direction. Thanks for all the help Mr-Protocol
  20. ok. I will have to install it later this evening and give it a try. How would you go about doing a steup like that?
  21. Thanks for the reply. I dont seem to have the issue with it grabbing wlan0. I may have answered my question though about being able to connect to internet via the Alfa adapter instead of lan. Can I use to networkmanager infusion to do so? The way it sounds it has options to set the external adapter(in my case the alfa adapter) to be used as internet connection for the pineapple correct?
  22. I need some help setting up my markIV to use the Alpha AWUS036H to connect to a network so I can run karma with no lan connection required for internet. I have it connected and checked that it is connected in the pineapple's UI. It is curently broadcasting as openwrt. My goal is to be able to remotely use my setup via wifi and have the Alfa adapter connect to one AP for internet while using karma on the pineapple. Any help would be greatly appreciated.
  23. I am really interested in getting rid of the laptop too. I really just need help with setting up my alfa adapter so that I am able to connect to an AP and use Karma. I having my adapter connected and is broadcasting as openwrt . I would really appreciate any help with doing this!
  24. Yes. I am using 172.16.42.1:1471 Not sure what was wrong but after restarting my phone it is now working. Strange Thanks for the help!
×
×
  • Create New...