Smart Controll MR3020 Wps Led via Android App

Filename: kankun_at_mr3020.bin
Size:  2884 KB
Description: Controlling mr3020 WPS led via android app.
Distribution : freeware
Md5checksum: cf31caded64044138fea25af0ff16db7

 Download link: click here 

 preview

isuue:

• router ip address is : 192.168.10.253
• ssh password: kankunhack
• Android App can be downloaded at http://kk.huafeng.com:8081/android/Smartwifi.apk 
• This firmware has no Luci, so if u want to revert to prefer f/w u should flash thru ssh access.

Read more »

GL-inet Buildroot ver. Attitude Adjustment 12.09

Filename: trunk.tar.bz2
Size:   9.1 MB (9,550,844 Bytes)
Description: Openwrt buildroot version attitude adjustment that support to developing GL-inet firmware.
Distribution : freeware
Md5checksum: e3e6d4d9a0c0c8b8d77ce9023eb6de46
Manual / Howto : http://wiki.openwrt.org/doc/howto/buildroot.exigence
Download link: click here

Read more »

Patches 16 MiB for GL-inet AA (ver 12.09)

Filename: 01-gl-inetAA16MiB.patch
Size:   8.0 KB (8,190 Bytes)
Description: If you get trouble cooking 16 MiB firmware for gl-inet, then maybe this patches.
Distribution : freeware
Md5checksum: b1011d2270f8729b76e2ead80e7bf080
Download link: click here 

Read more »

Bitcoin mining with MR3020

Filename: bfgminerwrt-ar71xx-generic-tl-mr3020-v1-ads-b.bin
Size:   3.8 MB (3,932,160 Bytes)
Description: openwrt firmware for tplink MR3020 that intended for bitcoin mining.
Distribution : freeware
Md5checksum: b1011d2270f8729b76e2ead80e7bf080

 Download link: click here 

Issue:  

• Before use this f/w, make sure u already enough read and try using openwrt without Luci gui. 
• Support Antminer, ZeusMiner, GridSeed, DualMiner, and SHA2 ASICs.
• Get started by entering into terminal : connect ur dongle >> turn on the router>> connect ur notebook with lan/cat cable >> telnet 192.168.1.1 >> type bfgminer and then set up ur pool setting and pool password. After that make a route connection ur router to internet (LAN mode). 
• If u want to connect through wireless connection, assign to SSID "BFGminer" with key "bfgminer01".
• happy mining.... ^^

Read more »

Vid about infusions and apps in Pineapple MK V clone ( TL-MR3020 )

1. PinAP n Karma

2. RTLSDR streamer

3. .... (in progress)

Read more »

Fix The SSID Karma Log (end)

I realized it's something different with my pineapple clone (see previous post), there is no SSID log being generated after karma start. Not just that ...the 'enabled' indicator also doesn't appear under dhcp leasess index (not the karma indicator in the left side).

But now it's already fixed.... hehhehe


i think am ready to write the full tutorial...ok c'ya in d next post. ^^

Read more »

Pineapple clone on MR3040

for tutorial : http://penturalabs.wordpress.com/2013/04/25/blue-for-the-pineapple/

Read more »

Mark II: Instacampro for TL-MR3040 V1

Filename: openwrt-ar71xx-tl-mr3040-v1-instacampro-markII.bin
Size:   3.75 MB (3,932,160 bytes)
Description: an upgraded of instacampro firmware for tplink MR3040 V 1. This f/w allow you to use mjpg-streamer (webcam video stream over web browser/app) for most of usb webcam china product without extroot or usb hub. So u can attach it with ur router everywhere or even mount it on RC car.
Distribution : freeware
Md5checksum: cbe36e891dff1dd5a965c3db514c0794

 Download link: click here 

Main issue:

• Make sure to changes mjpg-streamer configuration to enabled first before u use it ( vi /etc/config/mjpg-streamer and change option enabled '0' to option enabled '1' ) *under ssh terminal
• Check first ur web cam is recognized as 'video0' on device list by type ls /dev.
• U can start mjpg-streamer by using mjpg-streamer -i "input_uvc.so"  -o "output_http.so -p 8080" or using /etc/init.d/mjpg_streamer start .
• Go to http://192.168.3.1:8085/?action=stream  to watch under internet browser.
• To access mjpg stream under android device u can use MJpegViewer app.
• Get try... ^^

Overview

This is d output from my old webcam ZC0350 (very low res)...look's terrible but it's work & no need extroot or usb hub.

Read more »

Grey 4 Pineapple ( Pineapple on mr3020 with 8/16 MB ROM Flash )

File : openwrt-ar71xx-generic-tl-mr3020-v1-squashfs-factory.bin
Size:   7.75 MB (8,126,464 bytes)
Description: pineapple mod firmware for TP link mr3020 with 8/16 MB Rom Flash
Distribution : freeware
Md5checksum: 398178cb78ef22f9e21b65a7d0885bfb

 Download link: click here 

issue: 

- it would be better if u have 16 MB than 8 MB rom flash in ur router... ^^

- pointing ur internet browser to http://172.16.42.1:1471

reference:

-  http://penturalabs.wordpress.com/2013/04/25/blue-for-the-pineapple/

- http://wiki.openwrt.org/doc/howto/obtain.firmware.generate

Read more »

Windsurfer

 Ada banyak cara untuk meningkatkan kualitas koneksi wifi. Beberapa yang sering diterapkan diantaranya adalah: dengan cara merubah regulatory domain+menaikkan nilai power peripheral wifi card, menggunakan booster, dan juga dengan menambahkan antenna.

Winsurfer antenna adalah salah satunya. Antenna jenis ini lebih tepat dikatakan sebagai extend dari omni antenna yang bisa dengan mudah lepas-pasangkan. 

Read more »

Android 3x3 Pattern Lock Cracker

File name: AndroidPatternCrack.tar.gz
Size:   30,596 KB
Description: This tool is using to decrypt gesture.key into pattern lock key.
Distribution : freeware
Md5checksum: 669883014b10ce9d1e30232573b57acb
Download link: click here 

 
notes:

•  Using dictionary that avaiable to get here.
•  Running under unix/nux environment.
•  Usage = bash ./crack_pattern.sh [gesture file]
  ex.  bash ./crack_pattern.sh gesture.key 
• To get gesture.key u can obtain it by using two several way
•  Using ADB, ( adb shell && adb pull /data/system/gesture.key) *require to enabled adb debugger and rooted phone.
•  By examine backup image of NAND rom device, to get the image u can reboot and choose backup in CWM. After that u can see some file created under SDcard ( /sdcard/clockworkmod/backup/2013-0*-**.**.**.**/ ) such as .android_secure.vfat.tar, cache.yaffs2.img, data.yaffs2.img, sd-ext.ext2.tar, system.yaffs2.img. At last use yaffey or yaff2util to open data.yaffs2.img file...see u can see gesture.key under /system directory. *need CWM or another backup tool in android phone kernel.
• Using CWM, by choosin mount>>mount data>>then connect ur device to PC thru usb>>find gesture.key under system folder (*thanks to rastri to remind me about this one...^^)
•  3x3 pattern gesture.key sample files can be download here .
  
• Try it ....^^
  

related source:
- http://ezine.echo.or.id/issue27/004.txt
- http://uberskill.blogspot.com/2012/08/cracking-android-gesture-patterns.html
-  http://rossmarks.co.uk/blog/?p=609

-  http://android-forensics.com/android-forensics-study-of-password-and-pattern-lock-protection/143

-  http://forum.gsmhosting.com/vbb/f668/gesture-key-where-answered-1482897/

-  http://forum.xda-developers.com/sitesearch.php?q=yaffey

Thank to : Eric Draven (RNDC.or.id) for fix the script... ; )

Read more »

mr 3020 run pineapple jasanger ...but karma not

 find tut in: http://penturalabs.wordpress.com/2013/04/25/blue-for-the-pineapple/

main issue; 
- U need dsniff to perform dnspoof and urlsnarf
- To install dsniff u need to take it on minipwner repository, do this :

opkg update

opkg install  libpcap libnids libnet0 libopenssl libgdbm librpc

cd /tmp

wget http://www.minipwner.com/20120514/downloads.openwrt.org/snapshots/trunk/ar71xx/packages/dsniff_2.4b1-2_ar71xx.ipk

opkg install dsniff_2.4b1-2_ar71xx.ipk

- U also need autossh n other packages whose in pineapple mark4 but didn't bring on pentura tutorial...here they are :
at  autossh  chat  comgt  crda  empty  ettercap  hostapd-utils  hostapd  iptables-mod-ipopt  iptables-mod-nat-extra  kmod-ath9k-htc  kmod-button-hotplug  kmod-crypto-hash  kmod-crypto-manager  kmod-eeprom-93cx6  kmod-fs-nfs-common  kmod-fs-nfs  kmod-input-core  kmod-input-gpio-keys-polled  kmod-input-polldev  kmod-ipt-ipopt  kmod-ipt-nat-extra  kmod-lib-crc-itu-t  kmod-nls-utf8  kmod-rt2800-lib  kmod-rt2800-usb  kmod-rt2x00-lib  kmod-rt2x00-usb  kmod-rt73-usb  kmod-rtl8180  kmod-rtl8187  kmod-scsi-generic  kmod-tun  kmod-usb-net-cdc-ether  kmod-usb-net-rndis  kmod-usb-net  kmod-usb-serial  kmod-usb-uhci  libcom_err  libcurl  libelf1  libext2fs  libltdl  libnet1  libsqlite3  libusb-1.0  libusb-compat  macchanger  php4-cgi  php4  procd  sdparm  usb-modeswitch-data  usb-modeswitch  usbreset  usbutils  zoneinfo-core

- So sad...although with this all  i still can't runs karma on.... -_-' , if u can make its work please message me to this email.

Read more »

Hak4Fun: mr3020 Auto Rickroll (custumized openwrt firmware)

File name: openwrt-tl-mr3020-ricklroller.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3020 with auto rickroller feature (every link that users wants to connect will leads into local index in ur openwrt)
Distribution : freeware
Md5checksum: 1f9ec3669a24b7c4e71098fc00732032

 Download link: click here 

(copied from hak5)

 John Bebo’s Auto-Rickroll payload for the  John Bebo’s Auto-Rickroll payload for the WiFi Pineapple WiFi Pineapple is an excellent example of using   is an excellent example of using Dnsmasq Dnsmasq to  to
forward targets to a hosted site. While this site could be malicious, perhaps hosing the  forward targets to a hosted site. While this site could be malicious, perhaps hosing the Browser Browser
Exploitation Framework Exploitation Framework, Bebo’s payload is a safe and simple prank. Any web site a victim attempts to , Bebo’s payload is a safe and simple prank. Any web site a victim attempts to
browse to brings them to a  browse to brings them to a WiFi Pineapple WiFi Pineapple hosted page containing   hosted page containing Rick Astley Rick Astley ASCII Art and looping  ASCII Art and looping
audio. It uses a similar technique employed by Captive Portals something we’ll explore in more detail audio. It uses a similar technique employed by Captive Portals  something we’ll explore in more detail
soon “ except a lot more annoying.

overview :

main issue:

• Right after u flashing the router u will get "free@wifi.id" as ur SSID (Always think like a fish, no matter how weird it gets).
• There is a lot of chance if u want to inject ur own payloads on it (just edit the index.html or make something new).
• This firmware only contain some basic packages, there is no Luci there. So i remind u again...don't try if not familiar with flashing thru ssh terminal/putty or else. 

related source: 

-  http://hak5.org/hack/auto-rickrolling-wifi-pineapple

-  http://shackspace.de/wiki/doku.php?id=project:minikrebs#profilerick-roller
-  http://wiki.openwrt.org/doc/howto/obtain.firmware.generate

Read more »

Trying New Release Aircrack (aircrack 1.2 beta 1)

wooo...a new aircrack is reborn (again). in  this release some bug already fix, a new support for openwrt  device and they are already patch for new OSX. So far it's look same but there is new tool like airmon-zc , airdriver etc...
to install it can follow this  step

- make sure ur linux already have Openssl

- wget http://download.aircrack-ng.org/aircrack-ng-1.2-beta1.tar.gz
  tar -zxvf aircrack-ng-1.2-beta1.tar.gz
  cd aircrack-ng-1.2-beta1
  make
  make install

- enjoy it 

Read more »

Portable Wifi Disruptor ( costumized TL MR3040 v 2.0 firmware)

File name: openwrt-tl-mr3040-v2-disrupter v1.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3040 v 2.0 with beacon flooder capability...just switch button to "3G" and the jammer/beacon flooder will run...
Distribution : freeware
Md5checksum: ad4755b3bd966c6a5d384e3b4f05e7cc

 Download link: click here

nb* this could be implemented coz this cool device is comes with button mode switch... and v 1.0 didn't have it....lol

related source:
- http://forums.hak5.org/index.php?/topic/28926-occupineapple-button-script/
- http://wiki.openwrt.org/doc/howto/hardware.button
- http://wiki.openwrt.org/doc/howto/obtain.firmware.generate
- https://forum.openwrt.org/viewtopic.php?id=44090

Read more »

Turning TL MR3020 Into Portable Wifi Beacon Flooder

This miracle could be happen...

when u flashin ur router with this firmware below ~ Quote By Me :P 

File name: openwrt-tl-mr3020-v1-disrupter v1.bin
Size:   3.75 MB (3,932,160 bytes)
Description: An openwrt firmware for TL MR3020 who design to attack wireless network by sending beacon flood...and it can be done just with change switch router button...
Distribution : freeware
Md5 checksum:  9555cded0279e4e4052dafd29e11b885
Download link: click here  - mirror

issue :

•  Make sure when you flashing the router button is in "WISP" position.
• You can costumized list of fake AP with edit the list in " /root/aplist/ ".
• Set the AP encryption by login to 192.168.1.1, but first you have to set ssh password first
• To run the disruptor just switch the button to "3G" position, and to stop switch to "AP". 
• it may take lit time to run...so be patient
• Have phun...^^

Preview

related source:
- http://forums.hak5.org/index.php?/topic/28926-occupineapple-button-script/
- http://wiki.openwrt.org/doc/howto/hardware.button
- http://wiki.openwrt.org/doc/howto/obtain.firmware.generate 

Read more »

Openwrt Firmware for TP LINK MR3020+Luci+3G modem+Alfa AWUS036NHA support

File name: openwrt tl-mr3020+luci+3g modem+awus036nha driver.bin
Size:   3.75 MB (3,932,160 bytes)
Description: openwrt firmware for tplink MR3020 with luci, usb 3g modem support and capability to recognize alfa card AWUS036NHA...so u can use it as cpe or as another ap in one box.(pict)
Distribution : freeware
Md5 checksum:  336fe29ce4a7d82fa1cfd4fbc7b8d56b
Download link: click here

Read more »

Raspenwrt (Raspberry pi + Openwrt)

File name: raspenwrt.img
Size:   160 MB (167,772,160 bytes)
Description: openwrt firmware for raspberry pi...it turning ur raspberry into powerfull router.
Distribution : freeware
Md5 checksum:  ab784725cfbbdc6cb525d8b764db9a76
Download link: part 1 - part 2 - part 3 - part 4 - part 5 
combine and than extract it to get the file
single link:  https://sourceforge.net/projects/raspenwrt/




main issue:

• Require 1000 mA or above power adapter to supply all device that connect into raspberry pi.
• Require SD card minimum 1 GB class 6 or above, SD with class 4 it's not recomended
• To get more space in root to install more openwrt module/app, you can resize second (mmcblkop2) partition that have ext 4 type with gparted (linux) or partition magic (windows)
• Don't resize first partition in ur SD card (fat partition), it contain boot and mbr code...so dont change it at all  
• Login via browser/ssh to 192.168.1.1 with username: root pass: raspberryopenwrt 

preview :

Read more »

Running Tor in openwrt [tp link mr 3020]

running tor in bactrack it's easy...but how about running tor in ur router, 

i might be more excited. imagine u use inet connection together but all connection being relay into tor connection...

ok... let's start our engine 

fisrt, install all required packet

opkg update
opkg install tor-alpha-openwrt
opkg install tor-alpha-openwrt-geoip

opkg install iptables-mod-nat-extra 

this sections below is part my config files:

/etc/conf/network:

config interface tor
        option ifname   "ath0"
        option proto    static
        option ipaddr   192.168.1.1
        option netmask  255.255.255.0

/etc/config/dhcp:

config dhcp tor
    option interface    tor
    option start     100
    option stop    150
    option leasetime    12h

/etc/config/firewall:

config zone
        option name     tor
        option input    REJECT
        option output   ACCEPT
        option forward  REJECT
        option syn_flood 1
        option conntrack 1

#open the port of the DHCP-Server, so that the clients get an ip
config rule                                
        option src              tor        
        option proto            udp        
        option dest_port        67         
        option target           ACCEPT     
#TOR transparent-proxy-port (set in /etc/tor/torrc)                                           
config rule                                
        option src              tor        
        option proto            tcp        
        option dest_port        9040       
        option target           ACCEPT     
#TOR DNS-proxy-port (set in /etc/tor/torrc)                                            
config rule                                
        option src              tor        
        option proto            udp        
        option dest_port        9053       
        option target           ACCEPT

/etc/firewall.user:

iptables -t nat -A PREROUTING -i ath0 -p udp --dport 53 -j REDIRECT 

--to-ports 9053 #redirects all DNS-requests on the interface ath0 to the 

tor-daemon-dns-proxy-port
iptables -t nat -A PREROUTING -i ath0 -p tcp --syn -j REDIRECT 

--to-ports 9040 #redirects all tcp-requests on the interface ath0 to the 

tor-daemon-transparent-proxy-port

/etc/tor/torrc:

VirtualAddrNetwork 10.192.0.0/10             
AutomapHostsOnResolve 1                                              
TransPort 9040                                                          
TransListenAddress 192.168.1.1                                          
DNSPort 9053                                                              
DNSListenAddress 192.168.1.1

/etc/conf/wireless:

config wifi-device  wifi0
    option type     atheros
    option channel  auto

    # REMOVE THIS LINE TO ENABLE WIFI:
#    option disabled 1

config wifi-iface
    option device    wifi0
    option network    tor
    option mode    ap
    option ssid    'Piratebox'
    option encryption none

 source: https://forum.openwrt.org/viewtopic.php?id=27354

Read more »

(basic) Activate Monitoring Network Interface in TL-MR3020

Tl-mr3020...I think it's already about three month i got this tiny things in mine. but still until now it always bring more pleasure with a lot of project can we make with this 3g wireless router. Let me see...piratebox project, DDwrt, Openwrt and don't forget bout the Minipwner.

For now i'll show u to activate monitoring network interface in tl-mr3020 base on openwrt. but try this make sure u already done with exroot.

packet u need to install first:
- wireless-tools (This package contains a collection of tools for configuring wireless
 adapters implementing the "Linux Wireless Extensions".)
- iw  (cfg80211 interface configuration utility)
- aircrack-ng (wireless penetration tools)
- mdk3 (wireless penetration tools) *optional, in this video below i just use this tool to make sure it working and not showing any error bout exist of monitor network interface (i got this message before).

greets to: just our mentor lirva32

Read more »