Alternative ARMING Script

[Tech Man]

Is there an exit in the owl framework that would allow an alternative arming script, I would like an arming script that rather than to create an access point, it connects to my local WIFI and starts a sshd servce, so that I can connect to it from a host on my network. 

I can see where the alarming code is called, but I don’t see an obvious override. 

Thoughts?

[chrizree]

Is it mandatory that this needs to happen in arming mode specifically? You could include the possibility to connect to a known wireless network if it's available "in the air" and circumvent any scripted attack in attack mode if so.

[Tech Man]

chrizree,

No it doesn’t have to be in the arming mode. After I posted the question, I thought about an extension would probe and connect if available to an arming network, otherwise continue with the attack script. Thank you for confirming that idea. This also leaves the default arming as a back door should it be needed to recover.

-tim 

[chrizree]

Yes, I agree to your thoughts on having Arming Mode as a way to recover. If one messes around with Arming Mode, it might end up in a Owl that gives you problems. Better to leave it "as is". You can get at least some inspiration from the Owl script/payload example that I have on my GitHub. It connects to a known network if available, otherwise it goes on doing any attack set up in Attack Mode.

https://github.com/chrizree/Hak5-SignalOwl-Loot-or-Scan

[Tech Man]

Chrizree,

Yes this is very much in the sprit of what I am thinking, and will be very helpful in creating my variant. Thank you.

-tim