Skip to main content

iPhone Hacking Platform

After I had my iPhone jailbroken, I wanted to try it as a hacking platform.  I needed some tools for that.  

In Cydia, you can download a bunch of useful apps.  Here are some that I downloaded (and where I found them):
Networking:
    - nmap
    - ngrep
    - tcpdump
    - netcat
    - whois
Admin:
    - sudo
    - top

To use these, you'll need a Terminal app.  I searched and found a Terminal app called MobileTerminal.  

This seemed to be the Terminal to use (possibly the only choice), but it kept crashing when I opened it.  Thus, I removed it and reinstalled it.   It still crashed.  Did some research, and this is a 'bug' with IOS 4.0.1.  To fix this, I followed the instructions at:

http://www.techpetals.com/install-mobile-terminal-4.26-for-ios-4-4.0.1-iphone-4-3gs-ipad-3.2.1-1803

So, I installed OpenSSH through Cydia (so that I could get into my device through my LAN), and downloaded the MobileTerminal 4.26 debian package referenced above to my Ubuntu laptop.  

I tried sshing into my OpenSSH... it hung...  OpenSSH seemed a bit buggy.  After some trial/error, it seems that ssh only works when the system is not locked.. meaning you have to keep touching the iPhone to keep it from screen-locking.  But I was able to ssh in (changed the password, of course), and put the file in with the scp command:

scp /home/john/Desktop/MobileTerminal-426.deb root@192.168.6.144:/var/root/Media/Cydia/AutoInstall/MobileTerminal-426.deb

after reboot, I didn't have MobileTerminal there, so I rebooted again (per the instructions above).  Termial still wasn't on my iPhone...  hmmmmm..  I scp'd it up again, ssh'ing in to make sure it was there, then rebooted again (just in case I screwed something up the first time).  Still not working.  So I tried by hand, and here was the result:

iPhone:~/Media/Cydia/AutoInstall root# dpkg -i MobileTerminal-426.deb 
dpkg-deb: `MobileTerminal-426.deb' is not a debian format archive
dpkg: error processing MobileTerminal-426.deb (--install):
 subprocess dpkg-deb --control returned error exit status 2
Errors were encountered while processing:
 MobileTerminal-426.deb

ahhhh,,, bad deb archive file... I downloaded the MobileTerminal-426.deb file from another site, and did a diff on the original, and they didn't match.  So, I deleted the original, and tried with the new MobileTerminal-426.deb file.  SUCCESS!  This time after reboot MobileTerminal was loaded, and it worked fine (see screenshot of an nmap ping scan).



For the wifi interface (for ngrep, tcpdump, netcat, etc), I use interface 'en0'  

You'll have to dump most data you want to read to a text file, as data scrolls off the screen VERY quickly, and there is no way to scroll back up.
 
I thought of putting Metasploit and rdesktop (gooerrdp) on the phone, but after using simple tools like nmap, tcpdump, and ngrep, it was clear that screen-real-estate-heavy tools would be too cumbersome to be worth the trouble.  The main benifits of an iPhone hacking platform are the always-on and small (covert) form factor the iPhone provides.  But it simply didn't seem worth the struggle to use with complex tools.  So I'll save them for laptop use.  

However, for simple tools, especially ones that don't spit out much data, or spit data that is temporally relevant (like a tcpdump dump), the jailbroken iPhone will certainly come in handy.

Comments

Post a Comment

Popular posts from this blog

HP c6180 Printer and Vista

Hp c6180 driver issues with Vista Home Premium My wife has a Vista Home Premium laptop, and the HP C6180 Photosmart printer keeps disappearing from her available printers.  The only way I've found to fix the problem is to reinstall all the HP software. When I do this, I have to download the (large..507M software from HP, or reinstall the printer (ONLY the printer, not the scanner) with the installation disk, as the drivers are not discovered with a "Windows Update" setting.  My guess is that is because HP doesn't like people to install only the printer driver, which would be easy, but they want folks to install all their crapware as well, so they are withholding the drivers from the on-line Microsoft printer database.  So keep your installation CD!  I've also found that unless I install everything on the CD or in the Full Version download (HP Customer Participation Program, HP Imaging Device functions, HP OCR SW, HP All-In-one SW, HP Photosmart Essential, HP
27 comments
Read more

atftpd vs tftpd-hpa

Recently I was trying to tftp files from a Windows computer to a Kali box.   One version of Windows worked, but another didn't.    After much troubleshooting, here were my symptoms: I could tftp a file from-to any Kali box from-to another Kali box I could NOT tftp files to a specific Windows 7 box from any Kali box I could NOT tftp files to a Chrooted-Ubuntu-Chromebook box from a Kali box After MUCH troubleshooting, going through every setting in atftpd, it seemed like it literally was a client OS problem.  Different clients simply would not download files---unacceptable. Thus, I switched to tftpd-hpa.   To install: apt-get install tftpd-hpa files go to/come from /srv/tftp, but it needs to be a tftp user. Thus, I needed to: chroot -R /srv/tftp Also, if you want to be able to put files ON the tftp server (from a client), you need to modify /etc/default/tftpd-hpa: change "TFTP_OPTIONS="--secure"  to "TFTP_OPTIONS="--secure --create" I al
Post a Comment
Read more

Security Onion on the Antsle

My Setup of Security Onion on the Antsle: Recently my IDS box, an Intel Atom D2500 Fanless Mini-ITX PC, D2500CCE, died.  Truth be told, I think it came from the factory in a bad state, as I originally thought I had a bad graphics driver, but I then noticed that, after much troubleshooting, it wasn't a driver issue at all.  The box just sometimes wouldn't boot up correctly with video.  It seems heat related, something like not enough thermal paste on the CPU, as after it is powered off for a while it is more likely to boot than when it is warm.  Along with that issue, this box maxed out at 4GB of RAM (only has 2 memory slots, each of which will only take a 2GB card max) and had a single processor, so it was under powered for Security Onion. So, I decided to quit limping along on P.O.S. boxes, and buy a little more heavyweight box for my networked IDS.   Security Onion requires a minimum of 8GB of RAM, and 4 cores per their specs page https://github.com/secur
Post a Comment
Read more