[Release] 2.0.4 - Codename: (Pine)APatosaurus

[Sebkinne]

Hey everyone,

First of all, we are sorry for the delay in posting this, we were completely busy at Defcon and have been catching up with everything since then. Darren and myself gave a talk at the Defcon 22 Wireless Village talking about all the new features. Sadly, the recording audio quality was horrible, so we did a hangout on air. We advise you all to check it out to be up-to-date on the latest features.

Since before the launch of the WiFi Pineapple MKV we envisioned the launch of a certain feature which we now lovingly call PineAP. This feature augments karma and I have to say, this release is just the first view at what we are able to do with PineAP. We have also finally integrated a new view, something we call reconnaissance mode. This view is more than just a site-survey - see for yourself!

Without further ado, there are the changelogs!

Changelog 2.0.4:

• Reconnaissance

  • Replaced the back end to eliminate high CPU usage.

  • Improved Reconnaissance interface's responsiveness.

• Fixed some CSS issues in large tiles.

Changelog 2.0.3:

• Fixed the logout button and stop unauthenticated users being able to log out authenticated ones.

• Made sure that SSL is being used to check for upgrades, infusions and the IP.

• Corrected a couple of typos.

Changelog 2.0.2:

• Fixed the firmware version showing up incorrectly.
• Fixed an issue with PineAP having issues bringing up mon0.

Changelog 2.0.1:

• Security fixes.

Changelog 2.0.0:

• Introducing PineAP, a modular RogueAP suite
  • Send "Beacon replies" on probe requests
  • Send beacons to specific target / broadcast to augment Karma.
  • Harvest SSIDs from surroundings
• Introducing Reconnaissance
  • Get a detailed look at your surroundings.
  • Display Access Points, their BSSID, signal strength, channel, and encryption type.
  • Display clients and what Access points they are associated to.
  • Display unassociated or out of range clients.
  • Easily add SSIDs to PineAP.
• Reworked the notification system
  • Notifications are now persistent until they are cleared.
  • Notifications can now be sent from the command line (pineapple notify 'this is a test').
• Webinterface API
  • The API has been re-worked and cleaned.
  • Documentation can be found on our wiki.
  • Lots of new functions to make infusion development easier.
• Various security fixes.
• Various other small tweaks.

Download: Over the air through the web-interface. (alternatively at https://wifipineapple.com?downloads)

MD5: 3d5ea8c65c4ef2b291d2aa7b9e931b2d

Note: To flash this over the web-interface, please make sure your info tile is at it's latest version.

As usual, please leave any feedback in this thread.

Bugs, suggestions can also (and should be) be left here.

We hope you enjoy this release!

-The WiFi Pineapple Team

[Sebkinne]

Future Updates:

There are a few updates we have planned for the very near future to enhance the current 2.0.X releases. Please note that this is by no means a complete list, but rather a general overview.

• Security enhancements
  • Add HTTPS to the webinterface to prevent session hijacking. This will be an optional but highly recommended way of accessing the webinterface.
    We plan on making this as easy as possible for the users, so that their WiFi Pineapple experience is as smooth and secure as possible
  • Make sure that all inputs are secured, so that even if sessions are stolen, nothing critical can be done without the password.
• PineAP enhancements
  • Review PineAP performance and tweak speeds / CPU load if we are in an environment with a lot of clients.
  • Implement methods to make PineAP more stealthy.
  • Add smart deauthentication to PineAP.
  • Add ability to control PineAP over the command line.
• Reconnaissance enhancements
  • Currently, reconnaissance takes up a LOT (80%+) of CPU. This is caused by the fact that for the current version, we are using airodump-ng to gather data. We have created and are working on implementing our own, customized program which will perform similarly to airodump-ng. The reason for this is the high CPU usage and because we feel that there is quite a bit of room for improvement. We haven't fully decided on if this implementation will have any sort of GUI or if it will simply log data to a file for continuous display in reconnaissance mode. Fixed in 2.0.4
  • Add the ability to deauth, target, kick, and much more to recon mode.
  • Add the ability to generate reports.
• Add DIP switches and CLI program to couple two WiFi Pineapple MKVs together (using the Pineapple Plug).
• Add ability to steal WPA2-Enterprise username and passwords
• Lots of other fixes and improvements

[Darren Kitchen]

For those interested I've uploaded an HD wallpaper version of this dino.

http://imgur.com/XAdJQM5

I mean, Seb did a great job on the firmware but we all know why we're here... ;-)

[Foxtrot]

Well done guys :)

[toan3000]

I like the new UI and new firmware's features, thanks for your hard work!

Edited August 15, 2014 by toan3000

[Boosted240]

This new version is MIND blowing, excellent stuff everyone at HAK5! Love that my Raspple Pi sitting in the closet is getting upgraded and more versatile for no effort or $$$ on my part.

[THCMinister]

Wonderful work. Great job to everyone at Hak5. Looking forward to future enhancements.

[andyfive]

Very pleased with 2.0.x. I have had great success with PineAP vs just karma. Kudos guys! :)

[C3PBRO]

yeeww, been following hak5 for years now... awesome to watch you guys move up in the world

[ARDETROYA]

Great work! i love the new implementations and I can´t wait for the future updates!

[t31m0]

Perfect xDDDDD .... I going testing NOW .... hahahahhahaa ... Thanks for god work .... :)

[droose]

Forget this "PineAP" noise.....the background has improved my life 100 fold!

[t31m0]

hello ... after successfully perform the update ... and test for a while and everything was perfect....but I do not know why does not work I went back to reboot the rj45 (eth0) above ever happened to me ... but rebooting solved it. .. but I can not do anything now (dead) ... https://forums.hak5.org/index.php?/topic/33360-mk5-does-not-work/

and re-flash bricked stayed

[Darren Kitchen]

hello ... after successfully perform the update ... and test for a while and everything was perfect....but I do not know why does not work I went back to reboot the rj45 (eth0) above ever happened to me ... but rebooting solved it. .. but I can not do anything now (dead) ... https://forums.hak5.org/index.php?/topic/33360-mk5-does-not-work/

and re-flash bricked stayed

Followed up to your thread. Sounds like a hardware problem. We'll get you sorted.

[dustbyter]

Can someone do a diff of the changes? I have my pineapple nicely configured and want to avoid reflashing from start!

Seems that most the changes are UI changes.

[Darren Kitchen]

The two most significant changes are PineAP and Reconnaissance. I'm working on documentation for these now.

[plasticphyte]

Fantastic video guys (partway through watching it), although it got quite distracting while Google was auto managing which feed was being displayed, especially so when some of the more 'technical' aspects of PineAP were being discussed, and references made to the slides, which would flick on screen for a brief moment.

[ki2k]

Bit of a bummer- been rolling along through the upgrades up to 2.0.3 with no fuss. After going to 2.0.3, lost access to excellent quality, reliable-to-now SD card. Formatting via Pineapple not working, or if it is, taking 60 minutes plus. I'm not asking for help in any way, just passing along a data point. I've been with Mark IV for last few upgrades, then with V since release. Not new to the process, but this time it seemingly borked the SD card inexplicably...

[q4m]

I am liking where the Hak5/Pineapple team is heading with the firmware. Thank you all for your hard work in all that you do.

On a semi-related note, I think I may have discovered a bug and I am hoping that some of the other forum members will help test and confirm or deny possible issues with USB tethering to Android under 2.0.3? I had this working under 1.4.1 but now my phone reports "No USB device connected". I will report the bug but would appreciate some additional confirmation of my findings before I do.

[daniboy92]

Yes, sometimes when I tether my android with the pineapple ?, it's disconnects from pineapple, but the USB cable it's plugged...

[Oli]

Nice to see that the source and firmware have been updated!

• https://github.com/WiFiPineapple/MK5_Interface
• http://wiki.wifipineapple.com/uploads/

Also, where can I find the HDK documentation / add-on board information? This new add-on is supposed to be open hardware right? I was led to believe that we would have something by DEFCON other than a Powerpoint slide? Thanks!

[catohagen]

So....will there be an firmware update to the Mark IV, implementing the PineAP suite of tools ?

[NovaSam]

Very unlikely as to fully implement PineAP you will want more then one radio, and in some cases two. This is one of the primary reasons Hak5 developed the custom hardware for the Mark V. I believe Darren has pointed this out several times on the forms already.

Now this does not mean there will be no more updates, but I would recommend possibly investing in the Mark V.

So....will there be an firmware update to the Mark IV, implementing the PineAP suite of tools ?

[Darren Kitchen]

Nice to see that the source and firmware have been updated!

• https://github.com/WiFiPineapple/MK5_Interface
• http://wiki.wifipineapple.com/uploads/

Also, where can I find the HDK documentation / add-on board information? This new add-on is supposed to be open hardware right? I was led to believe that we would have something by DEFCON other than a Powerpoint slide? Thanks!

Source will be updated soon. Our timeline has been non-stop work on 2.0 leading up to DEFCON. Then the massively huge, awesome and insane conference itself, followed by a moment of rest. Seb is currently on his first ever vacation/holiday while I work on backend infrastructure.

We have a backlog of releases, including the HDK. It is open hardware. There is much more than a powerpoint slide (Illustrator actually). There are already a small number of sample boards in developers hands now. I was hoping to run into you at DEFCON. HDK Boards are being produced now and we expect to have them in September. That is when the documentation will be live.

[Oli]

Source will be updated soon. Our timeline has been non-stop work on 2.0 leading up to DEFCON. Then the massively huge, awesome and insane conference itself, followed by a moment of rest. Seb is currently on his first ever vacation/holiday while I work on backend infrastructure.

We have a backlog of releases, including the HDK. It is open hardware. There is much more than a powerpoint slide (Illustrator actually). There are already a small number of sample boards in developers hands now. I was hoping to run into you at DEFCON. HDK Boards are being produced now and we expect to have them in September. That is when the documentation will be live.

Thanks! Unfortunately I couldn't make it to DEFCON this year.

If it is open hardware then you can always send me the schematics / KiCad files now if you want and I'll check them out - I don't require any documentation / source above and beyond this.

Or even can you / somebody can post some high res images of the board and I can take a closer look at the implementation - I'm interested as to how it compares with my unofficial board, how the logic level conversion is performed and how the communication occurs (perhaps bitbang SPI since the serial pins aren't used as with an Arduino Yun?).

I have a ton of constructive feedback regarding the HDK and add-on board - it would have been nice to provide feedback earlier on rather than when it is too late...