Low cost production of penetration artifact based on OpenWRT

Author: qxz_xp Published: 2017-12-05 09:42 Classification: Hacker Tools , Hacker technology , Hacker attack and defense   1 comment  

I don't know if you have heard of Hak5 products. They are hacker And penetration testers. Among them, there are many PoCs hacker Tools have appeared in the popular American TV series The Hacker Corps. Hak5's PACKETSQUIRREL It has been on the shelves for several weeks, and in this article, I will analyze this $59 "gadget" and make a similar tool at a low cost.

1.png

What is PACKET SQUIRREL?

This is a multi-functional Ethernet tool, which can provide us with highly covert remote access, network packet capture, and secure VPN connection and other functions. Attackers can directly insert PACKET SQUIRREL into the target computer network, and then conduct operation control through remote access. Hak5 has launched a popular tool called WiFi Pineapple before, and PACKET SQUIRREL can be regarded as its brother.

2.png

In the process of looking for alternatives, I found the SWORD project developed by Bilal Bokhari (@ zer0byte), which is based on OpenWRT/lede infiltration Test tools.

3.png

SWORD is developed based on OpenWRT, and provides an easy to operate graphical interface on the Web side, which includes a variety of commonly used infiltration Test tools. For example, URLSnarf Ettercap, tcpdump, nmap, etc.

4.png

Zer0byte used TP LinkMR3040 when developing this project, but the method we introduced is applicable to most router devices that support OpenWRT. Now, what we need is a low-cost tool similar to PACKET SQUIRREL, and a cheaper tool similar to the TP Link router. After searching for some time, I found a tool that is very suitable for our requirements- NEXXWT3020F : It is compact in appearance and cheap in price, perfectly supports OpenWER, and also has two Ethernet interfaces (similar to PACKET SQUIRREL).

5.png

Nexx WT3020F is an excellent OpenWRT device, and its basic configuration is as follows:

400MHz RAMIPS CPU

64MB RAM

8 MB SPI flash

USB A port

Dual 100/10t ethernet

2.4GHz 802.11n MIMO 2T2R (300Mbit)

The internal structure of Nexx WT3020F is shown in the following figure:

6.png

At present, The price of Nexx WT3020F in Gearbest is 14.5 dollars【 Purchase address 】。 The installation of OpenWRT is relatively simple. I won't repeat it here. There are many online【 Relevant information 】, interested students can refer to it.

Next, we need to install SWORD to convert this small router (Nexx WT3020F) into a portable network attack tool.

The relevant resource addresses of SWORD project are as follows:

GitHub download address:【 Portal

Zer0byte project introduction:【 SWORD white paper

Tool installation

1. Extract the project file to the/www directory of the router.

2. Ensure that the router has installed bash, or the related scripts will not work normally, such as opkg update; opkg install bash –force-depends。

3. Assign 655 permissions to the directory/cgi bin (chmod - R 655/www/cgi bin/*).

4. After setting, enter "yourrouterip/SWORD" in the browser and access the tool page (192.168.1.100/SWORD).

5. Note: Please ensure that the router uses opkg to install ettercap ng, Reaver, tcpdump, urlsnarf, ettercap, nmap, mk3 and other tools.

After completing the above configuration, you will have a multi-functional network attack tool with a Web interface. In my opinion, the biggest advantage of using OpenWRT based devices is that it supports us to extend the functions of SWORD by adding new tools.

7.png

summary

I hope this article can help you, but please do not use it for malicious purposes. In addition, we also want to thank Zer0byte, because without him, there would be no excellent open source project.

*Reference source: medium Compiled by FB editor Alpha_h4ck from FreeBuf COM

Original article reprint please specify: reprint from Seven Travelers Blog

Fixed link of this article: https://www.qxzxp.com/6472.html

QQ Zone WeChat Tencent Weibo Sina Weibo My Sohu Renren Tianya Community Baidu Post Bar more
Previous
Next

You may also be interested in these articles!

  1. Learn about the post penetration tool Koadic (5)
  2. Mobile phone penetration test artifact zANTI v2.5 released (including full localization (10)
  3. Burpsuite 1.7.03 The latest cracked version of penetration artifact (5)
  4. The world's largest free web hosting company 000Webhost intrudes 13.5 million (4)
  5. The Chinese Valentine's Day arrived, and the extramarital affairs website data was finally released (5)
  6. Powerful Android phone remote control artifact – Droidjack (cracked version) (17)
  7. Hackers invade the website AshleyMadison, which is sensitive to 37 million users
  8. Vietnamese post-80s hackers were sentenced for stealing 200 million American information (1)
  9. John the Ripper GUI – Johnny
  10. Attack test on WiFi of three British politicians (1)
  11. The second Flash 0day vulnerability appears in Hacking Team data
  12. Hacking Team, a professional hacker company, was hacked of 400GB internal data (2)
  13. Make public the blackmail on your mobile phone if you don't pay the ransom
  14. Simple techniques and postures for preventing social engineering attacks (2)
  15. Seven reasons for blacking you
  16. Junior high school educated coal miners learn to be "hackers" to invade Tencent online games (1)

Low cost production of OpenWRT based penetration artifact: there is currently 1 message

  1. 0F
    become aware of one 's errors and turn back from one 's wrong path :

    With this, you can monitor the target computer?

    2018-01-06 08:00 [Reply]

Comment

4 + 7 =

Shortcut key: Ctrl+Enter