Pwnagotchi - Pwn all the wifi
Vložit
- čas přidán 12. 04. 2020
- Pwnagotchi is a modern day take on the Tamagatchi of the 90s, but with a Cyber Security twist. This digital pet derives his happiness by sniffing WPA and WPA2 handshakes which can then be run through hashcat to guess the password. Two or more Pwnagotchis in range of each other will communicate and split the workload. The Pwnagotchi can also send its stats back to the internet to rank your Pwnagotchi against other Pwnagotchis from around the world.
The Pwnagotchi uses Advantage Actor Critic (A2C) Artificial Intelligence (AI) methodologies to make decisions.
Check out the Pwnagotchi website here:
pwnagotchi.ai/
Bill of materials, if you would like to support me, considering purchasing your components from my affiliate links:
Raspberry Pi Zero W (2017 model) - amzn.to/47MoW4q
Waveshare 2.13 inch E-Ink Display - amzn.to/3GpNsN7
Real Time Clock model PCF8523 - www.adafruit.com/product/3295
CR1220 Battery for RTC - amzn.to/47Xc9fo
Patriot 16GB MicroSD card - amzn.to/40ZQ3Xs
Pisguar 1200 mAh Battery - amzn.to/46E1lC2 - Jak na to + styl
FINALLY!! An actual detailed video on the Pwnagotchi! thank you
"I'm just going to use my snips to snip"
Soldering Iron - "AM I A JOKE TO YOU!?"
Made mine 2 days ago. Called him Rutabaga (root vegetable)
baguette too
Rootabaga :D
I called mine phukabeetchup
@@UNcommonSenseAUS hahaha great!
@@nirgunawish whats a weeb?
Raspberry pi zero 2 w has a decent built in real time clock!
So leave it in the McDonald's drive thru. People will drive up with wifi hotspots. You could increase your global score quickly.
Better yet, go to a mall.
@@mkilo9770true.
Also I made mine with a UPS-Lite-1.0 with a 1000mah battery and it's last uptime was 3:06:17. Next thing I'm adding is a hardware clock.
Excellent writeup, thanks!
This is awesome, I read about this when backing the flipper zero project on Kickstarter.
Idk what any of this is but I watched the whole video and subscribed
Thank you. Im a noob with this and needed a proper run through.
wow this is class, nice work
Those soldering skills though
I leave this under every video I watched, it helps the algorithm.
MAN! What'll they think of next!? I love the pwnagatchi. with no screen and a sealed enclosure would make for a nice throwie for a target-rich environment.
you dont want it too sealed as it can overheat
It would be nice if the Pwnagotchi would get into contact with the few remaining Tamagotchi's there are still around, they are lonesome to!
great video dude! now im a subscriber for life.. you make me want one and i dont even need one lmaooo
kinda sad havent got a new video in a while, really cool video
Awesome...audio is really low!
Gonna build me a Pwnagotchi asap!
Thanks for this!
Dude I love the shit you can do with these Raspberry PI's
Really nice video. My boo's Kid and are going to build a couple of these
Really shows you how advanced the raspberry PI is nowadays. They are so versatile and amazing for so many projects.
That is what the pi was designed for, it is just really neat for retro gaming and as a server too.
I remember the Etch-A-Sketch days. :3
The future is now.
It looks like that white plug might fit between the usb ports, if you moved it over it might sit flush with the height of the clock
Background in hacking(coding),3d printing and now finally decided to start learning arduino and coding real world action from created machines.... Needless to say after semi-figuring out the basics of arduino I now know what my next project is.
It's been 5 months, where you at with all that now?
I got the screen V2 Rev 2.1 and I am not getting any output. SSH and web app works fine. Anyone else having this problem?
Thank you for your video! What gauge wire did you use?
Hello, awesome project, can you tell us from where can take the STL file for the case? Thank you!
HackedExistence
Wish I could be a fly on your wall for about a year, ok maybe a roach, I'd probably learn more than I could in 8 yrs of college.
simp!
@@poyrikkanal grow up
op give sauce ok done “/experience @Poyrik_Kanal2 999999 “ minecraft xp go brrrr
@@poyrikkanal says more about you the you think lmao
I don't have eight years, but I do have a Masters. I am peer published. In my younger days, I also was "alledged" to have been involved in four cyber attacks on the goverment...
There's NO wall that you can be a fly on that will replace that time spent losing your OSI Model, Python Programming, Enterprise Management, etc, etc....
If you want the good stuff, you work for it by getting the basics ;-)
Where did you purchase the goods from? Is there a list of items needed?
Could you add a secondary “pwnagotchi nest” (working title only, haha) type unit that would scrape the field devices for large enough pcap files, transfer them, crack/decrypt them, then return the results to the particular unit that captured the packets? This might allow an easier setup for a larger area grid-array, perhaps? Track WHERE each vulnerability is located on your grid?
That would let you carry just one of these at, say, a convention center, having it work as you browse the vendor room or whatever, perhaps notifying you somehow when it succeeds?
I’m thinking another similar sbc, like perhaps a Raspberry Pi 4, Maybe an Atomic Pi (Intel Atom based) or something else similarly small and cheap?
Instructions unclear, city trees filled with pwnagotchi and solar panels
You must have zero experience with cracking and how long it actually takes...
ertonyrn Not really, and when it comes to number crunching/decrypting, even a little Intel Atom or Pi4 level machine can do it in a short while. It’s not breaking 2048bit encryption after all. Sure, I’m not expecting it to be instant, but that’s why I want to build up a sort of separate processing brain” to do that for myself. I’ll start with a VM on my server, but was just figuring for offline remote processing an SBC might be perfect. Even if it’s collecting data all day and processing it all night.
Edit: to clarify, I personally intend to throw about 10 Xeon cores and oh, 16GB RAM on a VM for it. In the event that none of my devices can connect to it over the internet to feed data, I’m looking for a sort of central collector that can do that job. A sort of “home nest” data manager. That’s where I’m hoping a Pi4 could do it. At least as an intermediary and backup device. (Slow but offline) I would want it to transfer the captures one way, then any decrypted info or test PWs back to the pwnagotchi units.
@@ArtemisKitty how far did you get with this, buddy?
I made my father a pihole w/ the 0W as a gift but since he has comcast/xfinity with their xfinity router they make it such a huge pain in the ass to set up for the whole network. It's damn near impossible from what I've read....but now I've got a 0W to make a pwnagotchi with! Thank you for the vid!
Why is it a pain? Also maybe look into PFSSENSE next them, all you need is a $20 desktop from Craigslist that's at least i3 and your golden...
@@phabeondominguez5971 desktop used as a router?
@@haveaniceday7950 or a laptop. Remember, consumer grade routers, yes even the $300 ones, are the lowest grade tech with POORLY slapped together software and then sold as routers. PFsense is an open source enterprise grade router and firewall solution and since it's BSD based, it's super powerful and processes faster than even Linux and it's FREE. It can be installed on most modern hardware, even old desktops as far back as 5yrs old and will run like a dream. Definitely check it out man. You'll learn alot if ya set up in ya own house and score points during IT/CyberSecurity interviews and get real world experience.
@@phabeondominguez5971 cool thanks man. I have some 11-12 year old machines, would those be too old? Dual core
You got me reaching building a router now. lol
Some are saying you can’t use ARM chips and use only x64 not x86 and only Intel because the drivers work better, do you agree?
What are the minimum specs for box?
I found a good deal on a box but it only has one Ethernet port, will it work?
Does pfsense require a lot of maintenance or or just with the initial setup?
@@haveaniceday7950 TRUST ME, you won't look back once ya do.. PFsense is basically a router/firewall solution in the form of an operating system and it's completely free. Lots of SMB companies use it too. You can set up true independent multiple networks with it, I have one for my gaming streaming needs, another for the fam use, and one only for IOT devices. Any old PC with a 64bit CPU will work and at least 2gb of ram and higher. Are you good with Linux? PFsense is based off freeBSD tho.. So if not, gettin an INTEL based NIC is best cuz ofore compatibility... For what I do, the 4 segmented networks I got a QUAD INtel nic off eBay for $45. Stuck that in a 5yr old Thinkcentre M73 i3, 8gb ram, super overkill for jus PFSense but I like to think with 545 days of uptime that energy consumption is next to nada on that.
Pro tip: to make ya life easier, verify and confirm the NIC you have will work, check in the PFsense page first before buying!!
Will the same commands work for windows as well?
Anyone know where I can (buy)/get the case for this build? (case include Pisugar Portable 900)
Ted Kircos search thingeyverse for a case and get a 3d printing service to print one for you or maybe you have a 3d printer in Wich case you can print one yourself
How do I go about creating the config.toml file? Is it just a text file that's saved different?
Simply save it as .toml instead of .yml. On windows you can create the file directly in the folder without having to go through the cmd.
With no config file the screen comes on ans shows the default name, in manual mode, fine. But when I try a config.yml file, nothing changes on the display. Used the default for ui.display.type = "waveshare_2" since I have a waveshare Rev 2.1. Any suggestions?
Haha nice SSID “ASeriesOfTubes”
Hello friend I would like you to pass me the list please of the materials por favor
@HackedExistence Thank you for your video! What gauge wire did you use for the Real Time Clock?
15 miinutes after watching this I bought all the parts and shall assemble one in a couple days lol
how much money ~ you spend?
@@undo666 I spent about $20 a piece for the pi and waveshare on amazon. I think you could maybe get the pi for $5 cheaper on the raspberry pi site. and I bought the battery pack I think was $45
@Jonas Berry dont let that hold you back.its quite easy once your used to it. and fun!
I bought an unsupported E-ink screen (Adafruit 2.13" Monochrome E-Ink Bonnet for Raspberry Pi - THINK INK) and I just realized it isn't under the supported screen listing. should I count it as a loss or is there a way to still use it?
A video on the use of the API would be greatly appreciated :)
The RTC off the PiSugar is a different address, 0x32, so not sure how to use that.
Not sure if you still have this case, do you happen to know how long it is front to back?
Sick.
Hey quick question. What do I do if my screen never turns on. I left it for 30 minutes with no luck. I've tried getting a new screen and restarting the whole process a few times with no luck.
Update: anyone having the same problem. Check your set up file you added. I had a extra space in it and it messed it up for what ever reason.
@@futileskills oh tnx, i was building it right now and i have the same problem, i will never look at one more space if i didnt see this comment 😅 sorry for my bad english im italian
can you recharge the battery without power cycling the pi?
Would be nice if you can make list of all those parts, thank you!!
Snips, for snipping...
Just set up another 2, were you aware pi sugar 2 has a built in RTC so no mucking around required
thank you for the amazing video ! ive got thewaveshare v4 , managed to et that working until i plugged the UPS lite v1.2 battery then the pi keep rebooting or shuts down after less than a minute. any ideas? Thanks again
could I use my Chromebook for the sd card2 part of setting this up or would i need a mac?
I'm building a pwnagotchi at the moment! How come the rtc needs to be connected to the power pin of the raspberry pi if it already has its own battery? I'm a complete beginner so just curious.
If you mean the clock thing the battery is for the memory plus the battery is not powerful enough for the board you need more power
@@redfangsmayhem4864 Battery is plenty "powerful" to run everything. It supplies the correct voltage through the RP. Maybe you're thinking Amp Hours? Battery is for clock memory only.
The coin cell is only there to keep the rtc core running when the main power is removed. This way it continues to keep time when the device is powered off. Just like the AAA batteries in a mains powered alarm clock, keeps the time saved when there's a power failure so you don't have to reset the time when the power comes back on.
The power lines run the rtc. The rtc stores its data in ram (nvram). With ram, when power is cut, the data it contained disappears. The battery provides the small amount of power the nvram modules need to keep running all the time, so that they store the data when the unit is turned off. That way, when you turn the thing on later, the time it gives you is more accurate.
It's the same way as how if you were to buy a really old computer, the date it shows in the bios when you boot it up could be completely wrong because the cmos setting battery died.
@@redfangsmayhem4864 the reason the "clock thing" is referred to as "rtc" is because "rtc" stands for "real time clock".
@HackedExistence Do you know if I can also pair the Real time Clock with a Pi Sugar 2 Battery?
I have a Waveshare V4, right now it's all you can buy.... any chance to have an update of this video for that?
Dude what is redfish is that the name of your pc I'm trying to figure out this cmd your entering
when i use 1.5 img raspberry pi led does not flash green
i tried hard to like this. after getting it set up i wanted to use this with my laptop but no matter what i do, it won't connect. don't know why, everything is set correctly. is there a more user friendly version of this?
is it possible to use a rasp zero w2? or only the first version would work
anyone got a product list?
web ui doesnt permit login, always goes smoother for youtubers !! mine is one headache after another
After my first boot the name stayed as "pwnagotchi" eventhought I edited it, under "config.toml" also he keeps capturing my home networks eventhough I white listed it. Also It wont connectect via usb ... what went wrong ?
From what I read it also reads all connecting attempts from devices so even if you whitelisted it it will not know I guess
correct me if im wrong but isnt whitelisting allowing it and blacklisting is blocking it, idk if its different on the pwnagotchi or what because i dont own one...yet?
if you can't connect by usb it's most likely your cable - lots of micro-usb cables are power-only, you need one that actually has the internal data wiring (many cheap cables are for charging only and don't have the data wiring)
likely it was saved as config.toml.txt make sure it's saved correctly
What is the gauge of the wires used in this video ?
What's the advantage of the team time clock?
Really good tutorial. I enjoyed every minute of it, except when he used vim.... i shivered visibly...
Vim is the superior text editor
🤣
Why? Should he have used vi?
How do I exit vi(m)?
If you are following these directions with a Pisugar V2 DO NOT write to i2c address 0x75 and 0x32 it will brick it.
Why don't you put a piece of heat shrink over the battery? It would look cleaner but otherwise you're doing an excellent job. Your soldering is very good compared to most I've seen.
Do you have a list of parts such as the screen. i can find the raspberry ply W.
My brain hurts!
Anyone else having a problem getting pcaps/bettercaps to work with the latest version of the pwnagotchi? Mine's up and running fine but getting those pcap files has been a nightmare.
Pi Zero W With Headers
Does it work for both 2.5 and 5g hz band ?
can you make it log gps data with the handshake
Do I need an real time clock? I know you said you get more accurate time stamps, but if I do not care about the actual time but just want to capture the reauth sessions and passwords does the time stamp matter?
No
You wont be capturing any “passwords” with this. *facepalm*
Mine does not do anything. lol I flash the micro SD, add the config file, connect everything together and plug it in my mac book (using the USB port on RPi) and only get a flashing green light on the Pi. Waited 10mins with no signs of life. As @Jared Neaves named his after a root vegetable, I think that is what mine really is.
Make sure you are using the Newer config file of config.toml and not Config.yml as this has been changed
doesn't the PiSugar already come with RTC? Why would one want an extra RTC board?
Nope, no RTC on PiSugar, plus it only connects to the pi with the two power pins. No communication between PiSugar and pi (compared to something like ups-lite which uses gpio and can report status to the pi)
It would seem the expression "pwn" has been watered down over the years...
how so?
@@zachhoy because its not exactly an epic pwn over anything..... I would guess haha if it gained access to the wifi aswell..... now that would PWN!
"Immanna change Celsius to Fahrenheit" excuse me?
Americans
Is it possible to do all of the setup and all of this stuff using a windows pc or do I need a Linux or Mac?
yes you can
It's easiest from Linux, but it's possible through Windows.
Don't forget you can now also run full Linux inside of Windows 10, microsoft is going Linux, Google it for the guides from Microsoft, how to run Linux on Windows 10
@@phabeondominguez5971 Micro$oft is not going full linux
@@coler154 no but to EXPLAIN how Linux runs on Windows here would take forever..
i want to build one of these so bad or buy one
will it work if i have the os pre installed?
can we buy one already made ?
Hello can I make this with the same display and a raspberry pi 4 model b please by following your steps please let me known thank you
Mine is up and running
Ordered the parts to put an external antenna on mine..but so far it's pwning away!
His name is Lugnut
I installed zram-config and disabled the phys ram option and now it no longer writes to the SD card and still has a swap file
Have you heard of Flipper Zero?
It's still developing
In for one
Does this work on any computer? (I use Windows 7)
my screen doesn't come up
Can u give the link to buy Wave share screen v2
my hardwareclock keeps logging off the system after a while what should I do
can someone tell me where i can find that clock module
i need a amazon link
unfortunately i cannot buy a raspberry pie zero w, meaning i have to buy a prebuilt one
asking for a username and pass when connecting through browser.. pi:raspberry not working either.. hmm..
me 1 minute in: yes
when i enabled it, it didnt change from 68 to uu
i resoldered the points only to realise that in the config.txt file i used a "." instead of a "," = dtoverlay=i2c-rtc,pcf8523
I have built this and so far its one track with the video, the only thing i am having an issue with is connecting to the pwnagotchi with 10.0.0.2:8080, i get a username/password. when i enter the default password of raspberry it does not allow me to get to the webui. has anyone had this issue? it does the same when i try pwnagotchi.local.
Try username and password as pwnagotchi this is on the website/manual online for the webui
Apparently that isn’t it. It is now changeme/changeme
@@pbhound dude saved my night, thank you!
Can someone please share where I can learn about the coding for terminal
That is extremely vague. Learn Rust.
@@alexrawson8492 Sorry not sure what its called, but all the terminal code he was using to program the pwnagotchi.
Like all the terminal shortcuts etc
That was mostly the yml configuration language, the command line itself was bash, the editor was vim.
@@alexrawson8492 haha already lost me 😆
So YML is the language I would need to learn
Or is it rust i need to learn
Is there an Android app that does this?
Check out kali nethunter
Do I have to use a raspberry pi or can I use a banana pi?
Flipper's Ancestors?
Confirmed.
This is too hard. But I will try
Why cut the plug off vs desolder it
Desoldering multiple pins at once is a pain in the ass
@@execration_texts solder sucker and braid it's takes 30s longer but looks way better..
coosh11 its going in a fucking box... who cares what it looks like Karen
I guess it's pride.. ;p
Can you buy these made
yea