Hi guys, I have been so busy with a super long work deadline that I have been MIA on the hacking videos and talk. Well, I am going to change Direction for just a little bit and add some Spy/Trade-craft and urban exploring videos to my channel as well. I will still be primarily speaking on hacking but I also had mentioned in the beginning that I would also show you some interesting secret DC stuff. So stay tuned for both. One of my work deadlines is almost finished and I can get back into the videos! Thanks!
Kali and the Raspberry Pi.
When the developers of Kali Linux approached porting the OS to the Raspberry Pi 2 they came up with a unique strategy of offering a base system and then creating an apt-get process to download bundled and preconfigured tool sets. Most researchers won’t fully use the Raspberry Pi as sole Kali product but researchers will use the Raspberry Pi version of Kali as an extension of their own shell, such as a remote wireless auditor. So once we download the base OS you will immediately notice how streamline and easy it is to add the Kali tools and removing them as bundles using the same method. The video is coming soon.
It should be noted here that Offensive Security Group which houses the Raspberry Pi version of Kali is an author and creator of the Kali project. Offensive Security Group also houses Metasploit, the Exploit Database, and Backtrack. Auditor Linux – the first pen suite I ever used by people affiliated with this group.
Only download the image from Offensive Security Group by either the OSG home page or the Kali.org homepage. If you download from other sources you really have no idea what you are getting!!!
Get the Kali image for Raspberry PI We will be showing you here two ways to set up your Pi and both versions are correct. I am going to show you my way first and then a suggested way from the OSG blog in my next post.
My install method.
After we download the minimal image from OSG write it to ur MicroSD and place it in the Pi we then add our Wi-Fi adapter and plug HDMI to our monitor. Usually I go with headless installs but we need to log in one time visually to accept the default desktop and add your Raspberry Pi to the home Wi-Fi network, alternately of course you could just plug your Pi into your router via eth cable and access it that way but the Raspberry Pi is more reliable than say the Orange Pi so I like to do the Raspberry wirelessly.
So with our Pi up and accessible we then resize the MicroSD by running the wiggle script
If these command do not work add sudo and try again.
Expand the SD!
There are two ways to resize the SD card. If the wiggle script does not work try the second longer option.
After resize is complete it will ask you to press enter to reboot, please do. Only run once!
chmod +x rpi-wiggle
Or try this method to download Rasp-config to expand the SD:
dpkg -i triggerhappy_0.3.4-2_armhf.deb
dpkg -i lua5.1_5.1.5-7.1_armhf.deb
dpkg -i raspi-config_20150706_all.deb
After reboot and resize we log back in, using ssh.
ssh –l root 192.168.x.x
We then update:
We then upgrade:
Install xrdp so you can RDP from Linux or a Windows box or even your Phone into your Pi:
apt-get install xrdp
Start the xrdp:
service xrdp start
In other versions of Linux xrdp will automatically start on reboot but on Kali you may have to force it to autostart when loaded by running this command to append xrdp to autostart:
sudo update-rc.d xrdp enable – info about update-rc.d
Beef it up!
Now we have access to our Raspberry Pi running a slim version of Kali and we need to beef it up with some useful tools. First we add wireless security suite and the we will follow it up with RTL-SDR.
So we already have the base system and this project I had envisioned using my Pi as remote WiFi hacking tool so I will start with the WiFi hacking metapackage.
apt-get install kali-linux-wireless
This will take some time to install, also note the GB size of each package. As you can see the more you add the larger the space it takes up.
Next I would like to add PWTools for a side project, I will go ahead and add it after the wireless metapackage completes.
apt-get install kali-linux-pwtools
After both installs are complete you just need to add your secondary WiFi card, promiscuous mode, and you are ready to extend your shell.
Now it’s incredibly important that I let you know if you decide to go with a full install it may take over several hours. I did manage to install the full and it took over 3 hrs, It took 40 min alone to download the packages and the a few hours to unpack and install them and after the install the OS was kind of funky.
Uninstall Kali metapackages.
You can also uninstall packages in this method. Say you just want the wireless auditing metapackage but you have decided not to use the PWTools metapackage. Well all you have to do is uninstall that metapackage group something like this:
apt-get remove kali-linux-pwtools or
apt-get purge kali-linux-pwtools
Originally this was going to be titled the Newbies guide to installing an Orange Pi… But I ran into issues recreating the install. The tutorial starts below the vid.
The concept I wanted to show was that with just a laptop running Linux, a home wireless router and the Orange PI we could easily set up a OrangePi without a monitor and keyboard. The problem is when I tried to test and recreate this same scenario multiple times with my same equipment it failed 2 out of 10 times. So this will not be a definitive guide but a helpful setup strategy.
It’s easy to say the OrangePi hardware is very unreliable. Also if I attached any USB WiFi card right away for some reason it would make the on board NIC inaccessible. The OrangePi also was very picky on which USB ports worked. I suspect a power issue on the USB ports but I did have a steady working port… I just had to trial and error to find it.
So for my new installs I just did not place any USB device in the OrangePi until I was ready and after applied full updates and upgrades and the RDP package was installed.
It should also be noted that if the SD card is not written properly, on windows machines because of the extraction this is typical, it will not boot! In fact it will look DOA or broken. The Pi’s do not have a BIOS so the software that is loaded into the boot partition runs the commands that normally would be found in a computer BIOS… So if no lights come on or it looks dead in most cases you will find that the card was not written properly and the Pi can not see the BOIS setting.
If the SD card is not the proper speed it will not boot! So make sure you properly extract the image if you are on windows and make sure you have a fast card.
Make sure you watch the YouTube vid first.
So with that in mind Lets begin.
This tutorial will need:
A computer with Linux.
A home router / WiFi access point.
Orange Pi with Micro SD card.
Angry IP scanner.
My suggestion would be Fedora 23 Linux. You can download a bootable working image from the site.
You will need to download the OrangePI image. I am using Ubuntu Vivid Mate.
First we need to verify which model of OrangePI we are using. Download the proper image for your Orange PI version, in my case it is OrangePI PC ver 1.2
After downloading then transferring the image to the MicroUSB using the Linux Image restore tool we will insert it into our OrangePI. By Using the builtin disk restore tool in Fedora it makes this process much easier and the image does not need to be extracted, Linux will do it all for you.
Fedora > Disk > Write image to disk
We will then connect the OrangePI straight to our wi-fi router by using an Ethernet cable.
We will then search for the OrangePI on our home network by using IP scanner such as Angry IP Scanner.
Once found on our network we will connect to the OrangePI by using SSH in Linux Terminal. Open up terminal and type the following”
ssh -l orangepi 192.168.X.X
The -l (lowercase L) is the main login username, in this case orangepi
The user name is orangepi and Password is orangepi.
We accept the security token granted to us by initiating the SSH and enter our password: orangepi
We should be in,
orangepi@OrangePI will appear at the top of your terminal, we are now an extension of your OrangePi!!!
You must sudo all commands!
The order is specific. Resize, update first, add xrdp & then upgrade
Resize the partition to use the extra space
We then update the system.
sudo apt-get update
in the vid it goes very fast but you need to install the RDP package onto the Orangepi. This is so we can RDP from windows or Linux box.
sudo apt-get install xrdp
Now these OS’s are tricky and you may actually have to run these commands a few times for it to start.
After you have installed xrdp and have the system updated then we need to upgrade the OS.
sudo apt-get upgrade
From here we can reboot the system.
Next we can RDP into the OrangePi still using the Router Ethernet connection.
We have now set up the OrangePi to be used by both SSH and RDP. At this point you should be able to try to install the WiFi adapter, this will probably need more research.
You can use lsusb to list the devices in any USB port.
lsusb – list usb port devices
ifconfig – list network connections seen by the OS. Hint.. If your new connection is not listed here then its not seen.
I did not try this with the OrangePi version of Android.
First the images seem to not be consistent in design which also affects the hardware, depending on OS version USB or Ethernet ports may not be available.
I also ran into issues after installing the OS and my first boot if I had attached a USB WiFi adapter.
So in conclusion I was not able to make a concrete way of starting Orange PI for beginners BUT I have developed a way of approaching your first install, this method worked 8 out of 10 times.
The OrangePI may not be reliable as a Pi PC but you can still get it up and working to run some small projects. I have mine set up as a web server running Damn Vulnerable Web Application which is a pen test site where you can practice hacking
Also this is my first YouTube vid made from screen recording software so please be kind! hopefully in the future I will have more experience on making such vids. I am sure there are errors here as i threw this together quickly, sorry ?
I’ve been around a very long time. I retired that hacking name in 1998 and now will resurrect it again for this site.
Mytho, when I was a teen, meant to me a combination of Math, Mythology & Methods.
It’s a new year and a few nights ago I had a dream in which I launched a more immersive types of tutorials. My future post will hopefully be about computer hacking, Spy Trade-craft & hardware hacking such as Pi’s. I currently use the Orange Pi, The Raspberry Pi and the Arduino.
I had my first server and website as a teen in 1995 after receiving a large settlement, was very expensive back in those days and lots of people didn’t even know what a server was and how to obtain a domain name back then. Since then have hacked around, although hacking times back then were much easier now we have Intrusion detection devices and more advance firewalls to deal with.
My first IT position was in Washington DC and I have been here ever since working in some of the most secret areas.
So lets start vanilla, My first few tutorials will be about hardware hacking the Orange Pi because newbies say they can’t get the Orange Pi to work or they can’t fully use them and I agree.
Tags3.5 aliexpress CEH debian display download driver drivers ebay ebay lcd email encryption fear google hacking hacknig install internet Jeff Hamilton jessie kali KeDei law LCD LCD-show LCD_show Mytho Mythos-Pictures Net neutrality OPSEC OrangePi OSCP OSOYOO pentest Pictures privacy ProtonMail Raspberry Pi Raspberrypi rdp set up stop wheeler wireless xvala