3. Wispi (mini karma firmware) for various type TP-link router, ex: tl-wr703n, tl-m...

Wispi (mini karma firmware) for various type TP-link router, ex: tl-wr703n, tl-mr3020, tl-mr3040, tl-mr3220V1/v2, tl-mr3240V1/V2

Using Google to translate the white paper as my Indonesian is limited to basic words/ phrases. Will update for spacing/ corrections. TABLE OF CONTENTS Part I. Introduction Background ..................................................................................................... 1 Project / Research Relevant .................................................................................. 2 2.a. Project Form Router Firmware and Products. ............................................. 2 2.b. Research-Based Reverse Engineering ........................................................... 4 Part II. Wispi Brief Description About Wispi ...................................................................... 5 Starting Wispi ...................................................................................................... 6 Section III. Source Code and Proof of Concept's Karma ................................................................................................................. 9 Spoofhost ............................................................................................................. 11 Jammer........................................................................................................... 19 Additional Features of Web UI ..................................................................... 23 Penanggulangan................................................................................................ 24 refferensi .......................................................................................................... 25

Wispi, Mini Router for pentester Karma - 1 - Idsecconf 2014 PART I. INTRODUCTION 2 Background Tp-link mr3020 is one product 3g wifi router that uses an Atheros chipset as the processing unit. The operating system itself using linux in costumes to perform a variety of wireless networking features and support for 3G usb modem. Nevertheless beyond the standard operating system it uses, mr3020 can also flashing with OpenWRT Linux operating system.
The use OpenWRT operating system on its own mr3020 not only enrich the features it has, but also open the hidden ability and potential of the router.
As a means of penetration of wireless networks one of them. In addition because many package for pentest network provided by the developer openwrt.org, Atheros chipset itself is a chipset that most of the development of the driver / application supporting done by many practitioners network and the hackers themselves.
This fact is clearly displayed in the presentation Adrian Chadd in Wireless CTF 2014.1 There he describes how the Atheros chipset driver can perform a wide variety of attacks on wireless networks. Adrian Chadd also one of the people who make the drivers 'Atheros' as open source. However not many people explore them further. Including produce one type of firmware that is fitted with mr3020 router specifications.
One of the obstacles faced by developers is a big flash Rom 4MiB not enough if you have to save so many applications pentest. Not to mention that its memory is only 32 MiB. Indeed, this obstacle can be overcome by using a method extroot / external swap partition, which makes the root file system and swap shadow on the usb flash 1 See 'Inside The Atheros Wifi Chips' by Adriad Chadd in http://www.youtube.com/watch[1] ? v = WOcYTqoSQ68.
3 But a firmware which is integrated inside the application pentest tesendiri certainly has value, both in terms of ease of distribution and practicality in flashing into the router. This paper will discuss about the things that have been mentioned above, in which the authors have compiled a firmware which later was named Wispi (Wireless Spider) as firmware mini with size ≤ 4 MiB who has several tools to pentrasi wireless network. In addition to the elaboration of Wispi, this paper will also discuss briefly about some of the projects and research that inspired this project. 2. Pr oject / Research Relevant 2.a. Project Form Router Firmware and Products. There are several projects that become the main reference of Wispi, they are line items that also implements openwrt and mengkostumisasinya to the needs of network penetration. Among them are:  Piranha 2, piranha is the codename of a project whose product is firmware that contains tools like aircrack-ng, mdk3, nmap, dnsspoof and lainny tool. This firmware is intended for 2201 Fonera router that has the specs: Processor Chip Atheros AR2315 180MHz, Rom flash 8MiB, Ram by 16 MiB, 1 Lan and a USB port. F / W This has several versions developed by someone Bernick Orange from 2008 to 2010. And all these versions Fonera implemented in 2201. Unfortunately, the project is not running anymore, deveper website provider of f / w was defunct.  Jasager 3, was developed by a team firmware digininja. The most distinctive feature of jasager inherent feature is' Karma'ny. Karma is described as a tool that can provide the same response probe with probe request generated by the wireless client candidates. Jasager name itself is diction / 2 Piranha said firmware can be downloaded at http://www.ckgaming.co.uk/openwrt/piranha/[2] . 3 Jasager firmware can be downloaded at http://digi.ninja/jasager/download.php[3] .

/r/hacking Thread Link - semaraks.blogspot.com
Previous
Next

Recently removed from /r/hacking

What is this on my cellphone? When I searched for it, it came up as a remote monitoring hacking interface, and I suspect that my work may be monitoring my cellphone. I think now, I actually have proof: Can the origin of this be detected? I am referring to the "com.drogecomputing.pro" Can someone answer the following? Is possible that I can get hacked this way? What does the padlock mean on the top left of my address bar? Is that the same as buying a proxy VPN? Bypassing BIOS passwords Find someone from California. A friend says he's been hacked I built Pass | Guess, the Ultimate password vulnerability demo How could one find out more about a phone number? Are there any specific examples of a hacker being forced/compelled by their government to attack another country or business? Certified Ethical Hacking for Pentesting Apple offers $1.5 million reward for anyone who can hack their new iPhone I just found out a website is storing my password in plaintext, what should I do? The NSA says it's time to drop its massive phone-surveillance program NSA Releases GHIDRA 9.0 — Free, Powerful Reverse Engineering Tool – PentestTools

More Random Comments

Turning the page to 2019 What are concepts that are really simple but people just can't seem to understand? 2 months after legalization, Vancouver gets first licensed recreational pot shop Haven’t seen too many video game posts, so here’s my PS4 Steelbook collection. AITA for not wanting to pay for my stepkid's education despite paying for my own kid? Anyone interested in joining a new club I’m starting next semester? I just want to stop serving coffee for a living. I don't care how little I get paid, I just can't do this anymore. Waterproof Socks The Latest: Trump stops to see US troops in Germany Do you think parents are to blame for unruly children in public and why? When ever someone asks me what I would say to God if when I died, it all ended up being true, I show them this by Stephen Fry What is your "Fuck this, I'm out!" moment? There are a lot of good people in this church, but the crazy members that I always hear about online are really making our church look bad to people who haven't had any negative personal experiences. Game of the Year 2018: Day Two Deliberations Perhaps Theres Hope For SWTOR on Consoles?