(1) TP-Link TL-MR3020
(2) SanDisk Cruzer Fit USB Flash Drive (8GB)
(2) Wifi Pineapple Web Interface
(3) Wifi Pineapple (configure files only)
Wifi Pineapple is created by Hak5. It is quite expensive device. It is also named as Jasager.
Wifi Pineapple is the Wifi Access Point (AP) to answer “Yes” to all Wifi connection.
If a Wifi client is looking for the SSID of Macdonld the Pineapple (or Jasager) will reply “That’s Me!”. If another Wifi client is looking for an SSID of Starbucks, again the Pineapple will reply “That's Me!”
From this stage you can attack WiFi clients and perfrom Man-in-The-Middle (MiTM) attacks on victims internet traffic!.
Now, we are going to make a custom Wifi Pineapple in a much cheaper price, e.g about $30-USD or less.
Step 1 :
To download the OpenWRT (Attitude Adjustment 12.09, r36088 - at this time of writing) :
If you are fresh install from the stock version of the TP-Link TL-MR3020 -
If you are upgrade from the previous installed OpenWRT -
Configure your computer to static IP address :
IP address : 192.168.0.10
Gateway : 192.168.0.1
The default IP address of stock TP-Link TL-MR3020 is
The username and password of the stock TP-Link TL-MR3020 are both "
Go to the "
System Tools" -- "
Firmware Upgrade"HOWTO : TP-Link TL-MR3020 (Pocket Router) as Wifi Pineapple to upgrade to the just downloaded
Step 2 :
Once upgraded to OpenWRT, your device's IP address will changed to
Then set the very STRONG root password at "
System" -- "
To enable wireless at "
Network" -- "
To enable DHCP at "
Network" - "
Interfaces" - "
Edit" - select "
DHCP Client" and "
Now, connect your ethernet cable to the TL-MR3020. Connect your computer to the TL-MR3020 via wifi and the SSID is "
Once you get the IP address, such as
192.168.1.100, you can connect to the TL-MR3020 via ssh.
ssh 192.168.1.100 -lroot
Enter your just created very STRONG root password.
Install the following packages :
opkg install kmod-usb-storage
opkg install kmod-fs-ext4
opkg install block-mount
Step 3 :
Format your USB pendrive (8GB) as ext4 and swap, e.g. 2GB for swap (sda1) and 6GB for ext4 (sda2).
Then insert the USB pendrive to the TL-MR3020. Execute the following command line by line.
mkdir -p /mnt/sda2
mount /dev/sda2 /mnt/sda2
mkdir -p /tmp/cproot
mount --bind / /tmp/cproot
tar -C /tmp/cproot -cvf - . | tar -C /mnt/sda2 -xf -
Step 4 :
Change the content as the following :
option target /
option device /dev/sda2
option fstype ext4
option options rw,sync
option enabled 1
option enabled_fsck 0
option device /dev/sda1
option enabled 1
The following is the command for the vi if you do not familiar with vi :
i - go to the insert mode and ready for edit
Esc - exit from insert mode
:w - write the changes to the file
:q - quit the vi
Then type the following command to reboot the device :
Once it boot up again, you login to it via ssh.
To check if the USB pendrive is mounted as "
/" or not :
Then install any package that you like, such as :
opkg install nano
opkg install htop
opkg install bash
opkg install netcat
opkg install tar
opkg install openssh-sftp-client
opkg install nmap
opkg install tcpdump
opkg install aircrack-ng
opkg install kismet-client
opkg install kismet-server
opkg install nbtscan
opkg install snort
opkg install karma
opkg install samba36-client
opkg install elinks
opkg install yafc
opkg install python
opkg install uhttpd
opkg install at
opkg install php5
opkg install php5-cgi
Step 4a :
ssh to the TL-MR3020 (Pineapple).
Insert the following line above the "
Step 5 :
Download the upgrade package of Pineapple to your computer, such as Ubuntu :
Install unsquashfs on your Ubuntu if you do not have it :
sudo apt-get install squashfs-tools
Extract the files from the
Copy the following files to the TL-MR3020 via ssh :
Should disabled the "Wireless" at the Pineapple webpage before doing the following commands :
scp /home/samiux/test/squashfs-root/usr/sbin/hostapd firstname.lastname@example.org:/usr/sbin
scp /home/samiux/test/squashfs-root/usr/sbin/wpad email@example.com:/usr/sbin
Make sure you restart the "Wireless" after done.
scp /home/samiux/test/squashfs-root/usr/sbin/hostapd_cli firstname.lastname@example.org:/usr/sbin
scp /home/samiux/test/squashfs-root/lib/wifi/hostapd.sh email@example.com:/lib/wifi
Step 6 :
Download the Pineapple source code to "
sudo apt-get install git
git clone https://github.com/WiFiPineapple/web-interface.git /home/samiux/test/pineapple
Replace the uncompatiable commands :
grep -lr -e 'ps aux' /home/samiux/test/pineapple/* | xargs sed -i 's/ps aux/ps/g'
grep -lr -e 'ps -all' /home/samiux/test/pineapple/* | xargs sed -i 's/ps -all/ps/g'
grep -lr -e 'ps auxww' /home/samiux/test/pineapple/* | xargs sed -i 's/ps auxww/ps/g'
Then copy the directories to the TL-MT3020 via ssh :
scp -r /home/samiux/test/pineapple/ firstname.lastname@example.org:/
Download or copy the following files to "
Then copy the following files to the TL-MR3020 via ssh :
scp /home/samiux/test/dhcp email@example.com:/etc/config
scp /home/samiux/test/firewall firstname.lastname@example.org:/etc/config
scp /home/samiux/test/network email@example.com:/etc/config
scp /home/samiux/test/uhttpd firstname.lastname@example.org:/etc/config
scp /home/samiux/test/php.ini email@example.com:/etc
Step 7 :
ssh 192.168.1.100 -lroot
Any upgrade/update from the Pineapple will brick your TL-MR3020, so you need to disable it.
touch index.php /www/
mv /pineapple/pages/upgrade.php /pineapple/pages/not-upgrade.php
Step 8 :
hostapd_cli -p /var/run/hostapd-phy0 karma_enable
Append the following :
Reboot the TL-MR3020 :
After boot up, point your browser to the following url :
Enter username as "
root" and password as your very STRONG root password.
The SSID is "OpenWrt".
Step 9 (Optional) :
The following is one of the ways to use the Pineapple (TL-MR3020) by the way of tethering :
Connect your TL-MR3020 to the computer (laptop) with wired cable. Connect your laptop to internet via wireless.
Set Wired Connection at the Network Manager of the Ubuntu to :
Method : Manual
Address : 172.16.42.42
Netmask : 255.255.255.0
Gateway : 172.16.42.1
DNS Server : 220.127.116.11
At the laptop, download the script.
chmod +x wp4.sh
Now, your computer (laptop) can access internet and also can access the TL-MR3020.
*** One problem that I encountered so far is that the victim, who is connected to the Pineapple (TL-MR3020), cannot access the internet. I don't know if it is a feature or not. Or, I need to solve this problem. ;P
Step 10 (Optional) :
The following is one of the ways to use the Pineapple (TL-MR3020) by router or alike :
Change the content of the file "
/etc/config/network" to the following :
If your router (such as mobile phone with tethering function) IP address range is
192.168.1.x, you can change the IP address of TL-MR3020 to
192.168.1.10and the gateway as the gateway of your router (such as mobile phone) :
option ipaddr '192.168.1.10'
option netmask '255.255.255.0'
option gateway '192.168.1.1'
option dns '18.104.22.168'
*** The victim, who is connected to the Pineapple (TL-MR3020), can access to interent by this setup.
Blue for the Pineapple
The beginners guide to breaking website security with nothing more than a Pineapple
Getting Started with the Wi-Fi Pineapple IV (Video)
Security4Plus Youtube Channel (Video)
How To: Configure a WiFi Pineapple For Use With Mac OS X (Video)
The Wifi Pineapple Book - Free Download
The Services of "
URL Snarf", "
DNS Spoof" and "
SSH" cannot be enabled. I think I need to find out a way to make them to be enabled.
That's all! See you.