Here are instructions to install Nethunter (as a ROM) with working native monitor mode in the chroot using Nexmon. The ROM is a modified CM 14.1 (nougat) base with custom kernel which supports: HID, Drivedroid, Kexec, and external wireless.
You will need the following 3 items (maybe 4):
| #!/bin/bash | |
| # This is the Raspberry Pi2 Kali ARM build script - http://www.kali.org/downloads | |
| # A trusted Kali Linux image created by Offensive Security - http://www.offensive-security.com | |
| if [[ $# -eq 0 ]] ; then | |
| echo "Please pass version number, e.g. $0 2.0" | |
| exit 0 | |
| fi |
| # I pulled the <titles> from PHP web shells found on github/pastebin/other places | |
| # Some are not tiles and just variables but I kept all | |
| # @binkybear | |
| AnonCyberTeam | |
| Domains & Users | |
| Exploit: error_log() By * Super-Crystal * | |
| Exploit: error_log() By * TrYaG Team * | |
| Exploit: error_log() By * erne * | |
| Matamu Mat |
| # Get Pre-reqs | |
| apt-get install libattr1-dev git unzip make gcc automake pkg-config | |
| # Get Android NDK | |
| cd /root | |
| mkdir -p build && cd build | |
| wget http://dl.google.com/android/repository/android-ndk-r10e-linux-x86_64.zip -O /tmp/android-ndk-r10e-linux-x86_64.zip | |
| unzip /tmp/android-ndk-r10e-linux-x86_64.zip -d /root/build | |
| # Set paths |
| #!/bin/bash | |
| # | |
| # hostapd-wpe installation on Kali Linux | |
| # | |
| cd /tmp | |
| git clone https://github.com/OpenSecurityResearch/hostapd-wpe | |
| wget http://w1.fi/releases/hostapd-2.2.tar.gz | |
| tar -zxf hostapd-2.2.tar.gz | |
| cd hostapd-2.2 | |
| patch -p1 < ../hostapd-wpe/hostapd-wpe.patch |
| #!/bin/bash | |
| # | |
| # Attack created by Mubix. For more information see: | |
| # https://room362.com/post/2016/snagging-creds-from-locked-machines | |
| # Modified for Nethunter by Binkybear | |
| # | |
| # ================== # | |
| # Check for root | |
| # ================== # |
| #!/bin/bash | |
| # | |
| # Quickly get TOR/privoxy running with python modifiable python script to change IP every 10 seconds | |
| # See https://github.com/FrackingAnalysis/PyTorStemPrivoxy for more details | |
| # | |
| echo "Downloading prerequisites" | |
| apt-get install -y tor privoxy python-stem wget | |
| echo "Setting up privoxy" |
| Mozilla/5.0 (compatible; U; ABrowse 0.6; Syllable) AppleWebKit/420+ (KHTML, like Gecko) | |
| Mozilla/5.0 (compatible; U; ABrowse 0.6; Syllable) AppleWebKit/420+ (KHTML, like Gecko) | |
| Mozilla/5.0 (compatible; ABrowse 0.4; Syllable) | |
| Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; Acoo Browser 1.98.744; .NET CLR 3.5.30729) | |
| Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; Acoo Browser 1.98.744; .NET CLR 3.5.30729) | |
| Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; Acoo Browser; GTB5; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; InfoPath.1; .NET CLR 3.5.30729; .NET CLR 3.0.30618) | |
| Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; SV1; Acoo Browser; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; Avant Browser) | |
| Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Acoo Browser; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506) | |
| Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Acoo Browser; GTB5; Mozilla/4.0 (compat |
| #!/bin/bash | |
| # | |
| # Passively scan for targets using tshark to capture pcap | |
| # then parse out pcap for interesting activity/clients. | |
| # Order: tshark (capture), p0f (fingerprint), dsniff (plaintext), | |
| # tcptrace (parse ip src > ip dst) | |
| # | |
| # + Dependencies tshark, tcptrace, dsniff | |
| # | |
| # + To run and capture traffic for five minutes: |
| import urllib2 | |
| import urllib | |
| class LatestSU: | |
| def __getPage(self, url, retRedirUrl = False): | |
| try: | |
| bOpener = urllib2.build_opener() | |
| bOpener.addheaders = [("User-agent", "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.146 Safari/537.36")] | |
| pResponse = bOpener.open(url) |