Jasager

I have been playing a lot lately with a Fon router that a friend lent me, I installed Openwrt and Jasager on it, here is a description of Jasager (Yes Man):

Jasager is an implementation of Karma designed to run on OpenWrt on the Fon. It will probably run on most APs with Atheros wifi cards but it was designed with the Fon in mind as it is a nice small AP which gives it a lot of scope for use in pentration tests and other related fun.

A quick highlight of features:

  • Web interface showing currently connected clients with their MAC address, IP address (if assigned) and the SSID they associated with
  • The web interface allows control of all Karma features and can either run fully featured through AJAX enabled browsers or just as well through lynx
  • Auto-run scripts on both association and IP assignment
  • Full logging for later review
  • Basic command line interface so you don't have to remember the different iwpriv commands
As you can see is like Judicious Karma but in an embeded device. I see a lot of promise in this tool for pentesters. The chipset of the radio is Atheros and it is supported under the madwifi drivers, so this little AP has a lot of pontetial, one of its draw backs is the limited space for tools. Right now my only problem has been setting it up as a router. One I have it figured out I will write some scripts to handle most of the stuff I need and document it for whe I have to retur the unit to my friend. 

Metasploit 3.2 Comming Soon and Looking Great

I just got a tweet from HD metioning his latest presentation wich was about Metasploit 3.2 and the things that are comming with it and I do have to say that it is looking very interesting what will be release very soon. Metasploit has been one of my favorite tools during pentest during all faces of the attack and even helped me improve my ruby code by reading the code in the project. If you can do take a look at it http://metasploit.com/data/confs/sector2008/metasploit_prime.pdf


Karmetasploit Script for Bactrack 3

I decided to write a small script to help me with running Karmetasploit during authorized pentest. The script has two options one where it runs as a greedy access point answering all request and a second option that uses a file with a MAC addresses as filters so as to limit the attack to those clients that one is authorized, the MAC addresses have to be one by line. I hope you find it useful.

Karmetasploit Script Download

You must have the latest version of Aircrack-ng 1.0 from svn and the latest patched versions of the drivers of the wireless cards, the cards must support injection. I have only been able to test it with atheros and ralink cards. It will generate the following files:

  • Capture file of all traffic /root/kms.cap
  • Log file /msf3/karma.log
  • Sqlite3 Database with all information from Metasploit /root/karma.db

THC-epassport Tool Video Released

THC has released a video of their epassport backup tool in which it is shown fooling a passport scanner in reading the chip of a card as valid passport with Elvis Presley as the owner of the passport. This kind of scary if it is used by bad guys, a couple of months ago several hundreds of the epassport chips where stolen in great Britain so the bad guys or a rogue goverment has this chips to be used for God knows what. If you have a passport with an RFID chip put it in a shilding cover or just hit it with a hammer ;-)

Metasploit 3.2 is Coming

HD Moore posted on Twitter today that Metasploit Framework is gearing toward version 3.2 very soon, in fact according to the tweet 14,000 + patches have been applied to the current code just preparing for this release. I wonder what new features and tools we will see in this great framework.

Note: had a brainfart and posted it as 3.4 my mistake.