Hak4Fun: mr3020 Auto Rickroll (custumized openwrt firmware)

File name: openwrt-tl-mr3020-ricklroller.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3020 with auto rickroller feature (every link that users wants to connect will leads into local index in ur openwrt)
Distribution : freeware
Md5checksum: 1f9ec3669a24b7c4e71098fc00732032

 Download link: click here 

(copied from hak5)

 John Bebo’s Auto-Rickroll payload for the  John Bebo’s Auto-Rickroll payload for the WiFi Pineapple WiFi Pineapple is an excellent example of using   is an excellent example of using Dnsmasq Dnsmasq to  to
forward targets to a hosted site. While this site could be malicious, perhaps hosing the  forward targets to a hosted site. While this site could be malicious, perhaps hosing the Browser Browser
Exploitation Framework Exploitation Framework, Bebo’s payload is a safe and simple prank. Any web site a victim attempts to , Bebo’s payload is a safe and simple prank. Any web site a victim attempts to
browse to brings them to a  browse to brings them to a WiFi Pineapple WiFi Pineapple hosted page containing   hosted page containing Rick Astley Rick Astley ASCII Art and looping  ASCII Art and looping
audio. It uses a similar technique employed by Captive Portals something we’ll explore in more detail audio. It uses a similar technique employed by Captive Portals  something we’ll explore in more detail
soon “ except a lot more annoying.

overview :

main issue:

• Right after u flashing the router u will get "free@wifi.id" as ur SSID (Always think like a fish, no matter how weird it gets).
• There is a lot of chance if u want to inject ur own payloads on it (just edit the index.html or make something new).
• This firmware only contain some basic packages, there is no Luci there. So i remind u again...don't try if not familiar with flashing thru ssh terminal/putty or else. 

related source: 

-  http://hak5.org/hack/auto-rickrolling-wifi-pineapple

-  http://shackspace.de/wiki/doku.php?id=project:minikrebs#profilerick-roller
-  http://wiki.openwrt.org/doc/howto/obtain.firmware.generate

Read more »

MiniPwner at Derbycon 2012 (video)

Read more »

my stuff @Idsecconf 2013

download:

Paper

Presentation

firmware

source code

related post: http://semaraks.blogspot.com/2013/05/turning-tl-mr3020-into-portable-wifi.html

Read more »

Instacampro (Tl MR3020 with webcam+3gmodem+extroot+ddns capability)

File name: openwrt-ar71xx-generic-tl-mr3020-v1-instacampro.bin
Size:   3.75 MB (3,932,160 bytes)
Description: An upgrade of instacam project for TL MR3020 with 3gmodem+extroot+ddns capability added
Distribution : freeware
Md5 checksum:  133aa1f9c3669eddd5698c7ec85fccff
Download link: click here


Main issue:  

• ur webcam must be support V4L and UVC category
• only ext4 partition can use to be an exroot 
• enjoy

related source:
- http://wiki.openwrt.org/doc/howto/obtain.firmware.generate
- http://shackspace.de/wiki/doku.php?id=project:minikrebs

Read more »

Trying New Release Aircrack (aircrack 1.2 beta 1)

wooo...a new aircrack is reborn (again). in  this release some bug already fix, a new support for openwrt  device and they are already patch for new OSX. So far it's look same but there is new tool like airmon-zc , airdriver etc...
to install it can follow this  step

- make sure ur linux already have Openssl

- wget http://download.aircrack-ng.org/aircrack-ng-1.2-beta1.tar.gz
  tar -zxvf aircrack-ng-1.2-beta1.tar.gz
  cd aircrack-ng-1.2-beta1
  make
  make install

- enjoy it 

Read more »

Portable Wifi Disruptor ( costumized TL MR3040 v 2.0 firmware)

File name: openwrt-tl-mr3040-v2-disrupter v1.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3040 v 2.0 with beacon flooder capability...just switch button to "3G" and the jammer/beacon flooder will run...
Distribution : freeware
Md5checksum: ad4755b3bd966c6a5d384e3b4f05e7cc

 Download link: click here

nb* this could be implemented coz this cool device is comes with button mode switch... and v 1.0 didn't have it....lol

related source:
- http://forums.hak5.org/index.php?/topic/28926-occupineapple-button-script/
- http://wiki.openwrt.org/doc/howto/hardware.button
- http://wiki.openwrt.org/doc/howto/obtain.firmware.generate
- https://forum.openwrt.org/viewtopic.php?id=44090

Read more »

Turning TL MR3020 Into Portable Wifi Beacon Flooder

This miracle could be happen...

when u flashin ur router with this firmware below ~ Quote By Me :P 

File name: openwrt-tl-mr3020-v1-disrupter v1.bin
Size:   3.75 MB (3,932,160 bytes)
Description: An openwrt firmware for TL MR3020 who design to attack wireless network by sending beacon flood...and it can be done just with change switch router button...
Distribution : freeware
Md5 checksum:  9555cded0279e4e4052dafd29e11b885
Download link: click here  - mirror

issue :

•  Make sure when you flashing the router button is in "WISP" position.
• You can costumized list of fake AP with edit the list in " /root/aplist/ ".
• Set the AP encryption by login to 192.168.1.1, but first you have to set ssh password first
• To run the disruptor just switch the button to "3G" position, and to stop switch to "AP". 
• it may take lit time to run...so be patient
• Have phun...^^

Preview

related source:
- http://forums.hak5.org/index.php?/topic/28926-occupineapple-button-script/
- http://wiki.openwrt.org/doc/howto/hardware.button
- http://wiki.openwrt.org/doc/howto/obtain.firmware.generate 

Read more »

Openwrt Firmware for TP LINK MR3020+Luci+3G modem+Alfa AWUS036NHA support

File name: openwrt tl-mr3020+luci+3g modem+awus036nha driver.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3020 with luci, usb 3g modem support and capability to recognize alfa card AWUS036NHA...so u can use it as cpe or as another ap in one box.(pict)
Distribution : freeware
Md5 checksum:  336fe29ce4a7d82fa1cfd4fbc7b8d56b
Download link: click here

Read more »

openwrt firmware for TP LINK MR3040+luci+3g modem_enable

File name: openwrt-mr3040-luci-modem_enable.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3040 with luci and usb 3g modem capability added
Distribution : freeware
Md5 checksum:  8ca10b6eb649adb45c639894739419a8
Download link: clik here

Read more »

new place for raspenwrt project

in my previous post about raspenwrt i split the file to accept google sites (repo limitation for maximum file size). As suggest from some audience who think why not in single files....so i think it will be good to place it in sourceforge...n here it goes

https://sourceforge.net/projects/raspenwrt/

Read more »

Raspenwrt (Raspberry pi + Openwrt)

File name: raspenwrt.img
Size:   160 MB (167,772,160 bytes)
Description: openwrt firmware for raspberry pi...it turning ur raspberry into powerfull router.
Distribution : freeware
Md5 checksum:  ab784725cfbbdc6cb525d8b764db9a76
Download link: part 1 - part 2 - part 3 - part 4 - part 5 
combine and than extract it to get the file
single link:  https://sourceforge.net/projects/raspenwrt/




main issue:

• Require 1000 mA or above power adapter to supply all device that connect into raspberry pi.
• Require SD card minimum 1 GB class 6 or above, SD with class 4 it's not recomended
• To get more space in root to install more openwrt module/app, you can resize second (mmcblkop2) partition that have ext 4 type with gparted (linux) or partition magic (windows)
• Don't resize first partition in ur SD card (fat partition), it contain boot and mbr code...so dont change it at all  
• Login via browser/ssh to 192.168.1.1 with username: root pass: raspberryopenwrt 

preview :

Read more »

Running Tor in openwrt [tp link mr 3020]

running tor in bactrack it's easy...but how about running tor in ur router, 

i might be more excited. imagine u use inet connection together but all connection being relay into tor connection...

ok... let's start our engine 

fisrt, install all required packet

opkg update
opkg install tor-alpha-openwrt
opkg install tor-alpha-openwrt-geoip

opkg install iptables-mod-nat-extra 

this sections below is part my config files:

/etc/conf/network:

config interface tor
        option ifname   "ath0"
        option proto    static
        option ipaddr   192.168.1.1
        option netmask  255.255.255.0

/etc/config/dhcp:

config dhcp tor
    option interface    tor
    option start     100
    option stop    150
    option leasetime    12h

/etc/config/firewall:

config zone
        option name     tor
        option input    REJECT
        option output   ACCEPT
        option forward  REJECT
        option syn_flood 1
        option conntrack 1

#open the port of the DHCP-Server, so that the clients get an ip
config rule                                
        option src              tor        
        option proto            udp        
        option dest_port        67         
        option target           ACCEPT     
#TOR transparent-proxy-port (set in /etc/tor/torrc)                                           
config rule                                
        option src              tor        
        option proto            tcp        
        option dest_port        9040       
        option target           ACCEPT     
#TOR DNS-proxy-port (set in /etc/tor/torrc)                                            
config rule                                
        option src              tor        
        option proto            udp        
        option dest_port        9053       
        option target           ACCEPT

/etc/firewall.user:

iptables -t nat -A PREROUTING -i ath0 -p udp --dport 53 -j REDIRECT 

--to-ports 9053 #redirects all DNS-requests on the interface ath0 to the 

tor-daemon-dns-proxy-port
iptables -t nat -A PREROUTING -i ath0 -p tcp --syn -j REDIRECT 

--to-ports 9040 #redirects all tcp-requests on the interface ath0 to the 

tor-daemon-transparent-proxy-port

/etc/tor/torrc:

VirtualAddrNetwork 10.192.0.0/10             
AutomapHostsOnResolve 1                                              
TransPort 9040                                                          
TransListenAddress 192.168.1.1                                          
DNSPort 9053                                                              
DNSListenAddress 192.168.1.1

/etc/conf/wireless:

config wifi-device  wifi0
    option type     atheros
    option channel  auto

    # REMOVE THIS LINE TO ENABLE WIFI:
#    option disabled 1

config wifi-iface
    option device    wifi0
    option network    tor
    option mode    ap
    option ssid    'Piratebox'
    option encryption none

 source: https://forum.openwrt.org/viewtopic.php?id=27354

Read more »