WIFI PINEAPPLE VERSION 2 ONLY. THIS WILL NOT WORK WITH THE WIFI PINEAPPLE VERSION 3.

Whether your new to Jasager or you’ve made a configuration change you wish you hadn’t, doing a fresh WiFi Pineapple install is a breeze. This guide walks you through the steps required to flash compatible WiFi Pineapple hardware with the latest version of Robin Wood’s Jasager firmware as well as default configurations and and packages.

Requirements

This guide is written for Windows users and should take about 15-20 minutes to complete. In addition to WiFi Pineapple hardware you’ll need a Telnet, SSH and SCP client (we recommend PuTTY and WinSCP) as well as an Ethernet cable and the following download:

Video Walkthrough

Preparing your computer

Before getting to the actual flashing bit the computer’s network interfaces must be configured. Begin by setting the Ethernet adapter with a static IP address of 192.168.1.100 and a subnet mask of 255.255.255.0. This setting can be found in Windows 7 from the Control Panel under View network status and tasks, and Change adapter settings. Right-click on the Local Area Connection and choose Properties. Select Internet Protocol Version 4 (TCP/IPv4) and click Properties.

1-static

It is also a good idea to disable any other network adapters that may be present, like a wireless adapter. To do this right-click on the interface and click Disable.

Flashing the Firmware

Plug one side of an Ethernet cable into the Ethernet adapter you set with a static address in the previous step. Plug the other end of the cable into the WiFi Pineapple hardware. Make sure the WiFi Pineapple does not have power, but keep the power cable handy as we’ll need it in just a moment. Using battery power for the flashing process is not advised.

Open the Freifunk AP51 Easy Flash utility. Check the box labeled Use external file under Rootfs, click browse, and select the openwrt-atheros-root.squashfs file. Repeat this step for the section labeled Kernel choosing openwrt-atheros-vmlinux.lzma

2-freifunk1

Select the Ethernet adapter you had previously setup with a static IP address from the drop-down under Interface.

2-freifunk2

With the WiFi Pineapple power cable handy click the Go button, wait one second and plug in the power cable. The WiFi Pineapple will light up and the EasyFlash utility will report “No packet” until the device is found. Once the utility is communicating with the device it will report both the computer and WiFi Pineapple‘s IP and MAC addresses then begin flashing. This process takes about 10 minutes. Once the flash is complete the EasyFlash utility will automatically close and the WiFi Pineapple will reboot.

Initial Setup

With the WiFi Pineapple rebooting, open a command prompt (Start, Run, CMD) and issue “ping 192.168.1.1 -t”. This command will continue pinging the WiFi Pineapple. Once replies are reported stop the ping with the CTRL+C keyboard combo. The device is now ready for initial login.

3-reboot-and-ping

Open PuTTY or your Telnet client of choice and enter the host 192.168.1.1. If using PuTTY make sure Telnet is selected, as well as the default port 23. Click Open.

3-telnet1

When greeted with an OpenWRT splash screen type the command “passwd” and press enter. Type a password and press enter twice. When “Password for root changed by root” is reported the WiFi Pineapple is now ready for packages and configuration.

3-telnet2

Wireless Configuration

Once again open PuTTY or your SSH client of choice. Enter the host 192.168.1.1. If using PuTTY make sure SSH is selected, as well as the default port 22. Click Open.

4-ssh

When greeted with a security alert, click Yes. Enter “root” for “login as” and the password you had previously configured.

4-ssh2

From the WiFi Pineapple command line enter the following command to change the wireless configuration setting.

echo "
config wifi-device  wifi0
option type    atheros
option channel  auto
config wifi-iface
option device wifi0
option network lan
option mode ap
option ssid Pineapple
option encryption none
" > /etc/config/wireless

4-ssh4

Leave this SSH session window open as it will be used in the next step to install packages.

Package Install

Various packages can be installed on the WiFi Pineapple. See the openwrt repository at downloads.openwrt.org/kamikaze/8.09.2/atheros/packages. The default package on the WiFi Pineapple is X-WRT, a web based management interface, and its dependency haserl.

5-scp1

Open WinSCP and enter the host name 192.168.1.1. Enter root as the user name and the password chosen. Select SCP from the File protocol drop-down and click Login. If presented with two group errors, click OK — they are safe to ignore.

5-scp2

Select the haserl and webif package files from your hard disk on the left and drag them to the area on the right. The file transfer will begin.

5-scp3

Back in the SSH session enter the command “ls” followed by enter. The package files previously transferred should be reported. Now install both package files with the command “opkg install *.ipk”. This process will take just a minute. Once complete a “SUCCESS!” message will be reported. At this point the WiFi Pineapple has been configured and is ready to be rebooted. Either unplug and replug and power adapter or issue the command “reboot”.

6-opkg1

The WiFi Pineapple has now been flashed and configured with factory default settings. This guide can be followed up with this article on logging into the WiFi Pineapple for the first time.

WIFI PINEAPPLE VERSION 2 ONLY. THIS WILL NOT WORK WITH THE WIFI PINEAPPLE VERSION 3.

Category:

Hack, WiFi Pineapple

Leave a Reply

Your email address will not be published. Required fields are marked *

*

48 Comments

  • Great walkthrough. But what if the network have become misconfigured? I think I made some error in my attempt to add the Rickrolling-hack… Now it isn’t responding on any IP.

    • The most common network misconfiguration is setting the WiFi Pineapple to obtain an address from automatically from a DHCP server, rather than using a static address like 192.168.1.1.

      In this case the device will either obtain an address from your network’s router unbeknownst to you or it will not, defaulting to one in the 169.254 range.

      In either case doing a network scan with a tool like nmap, its graphical counterpart zenmap, or the windows tools cain & abel or angry IP scanner should reveal the lost pineapple.

      I’ll write a proper guide on this subject next.

      • cache 3 years ago

        darren thats a good idea ,as that what happened here in my case. it seems to be the problem with others . when i went to change the dhcp part the fon got lost :-( . looking forward to it …………

        oh btw yeah it was the doc on Hak5 , for some reason a while ago the pictures ( from photobucket ) were not loading, everything seems to be fine now ;-)

        just to find the lost addy .

      • Shannon's Vampire..lol 3 years ago

        Yeah.. I did that and lost it..After flashing I’m going to do the auto rick roll. Is there a tut on deauth??? I didn’t see one. :(

  • Navaro 3 years ago

    Dernebo, try the IP 169.254.255.1
    If it doesn’t work, just flash it again.

  • Cache 3 years ago

    Thanks for this , the problem I have is when i change default ip it crashes going try this now ,thanks. Just one question , there was a video to allow you share your Internet i.e from another connection device to the fon , does anyone have the link ? Thanks again

    Good stuff Darren , nice and simple video :-)

    • I haven’t seen a video demonstrating it however I must say the guide in the Hak5 forums titled “Best HowTo – Setup Internet Connection Forwarding on “Linux” & Jasager” lives up to its name.

    • cache 3 years ago

      darren thats a good idea ,as thats what happened here in my case. it seems to be the problem with others . when i went to change the dhcp part the fon got lost :-( . i have tried it multiple times, i have it at 192.168.1.1 , when i change it to 192.168.1.250 , the interface shows updating network but it never does. i’ll keep trying, its the only part i cant get.

      looking forward to it …………

      oh btw yeah it was the doc on Hak5 , for some reason a while ago the pictures ( from photobucket ) were not loading, everything seems to be fine now ;-)

      • Shannon's Vampire..lol 3 years ago

        I have the same problem. btw ignore my name.. Its Chris.. I just think its funny ..I saw the about.m profile.

  • Dernebo 3 years ago

    No answer on that ip. Karma is working since I can connect to a wireless connection using any SSID. But DHCP doesnt work since I dont get any IP when connected.

    Doesnt work using cable either. No ip, and when configuring manually there are no answer on the static ip i had on the pinapple.

    More suggestions? If I have fucked up the network connection on the pinapple, what would be the next step to try?

  • Dernebo 3 years ago

    Something must have gone wrong with the flash the two first times. Tested again and now it found the unit and everything is working again. ;)

    Thankyou for the support.

  • bigw0rm 3 years ago

    First, let me say thank you for this, Darren! —

    I’m using a couple of fonera 2100s with this guide. Once the re-flash is complete, the wlan light on the pineapple is always on. From 192.168.1.1:1471, turning karma on & off, the wlan light stays lit.

    Also, the portscan module doesn’t seem to work on my pineapple and the echo module results in the pineapple rebooting.

    I’m thinking it’s just old equipment. Maybe not.

    Anyway, great project gets greater every year!

  • bigw0rm 3 years ago

    That’s a no-go on manually installing kmod_gpio. Same behavior. Maybe I’ll try re-re-flashing one of the little guys later.

    In any case, I thank you for your reply. “)

  • bigw0rm 3 years ago

    Something else which is odd – The hostname on my foneras is set to OpenWrt. I can see this in the Webif web interface. When connected, via Ethernet, the name reads Guest, in Windows 7’s Network Connections.

    At some point in the distant past, I did change the hostname to Guest. I think my foneras are biz-orked.

    I’m going to attempt re-flashing once more, and if unsuccessful, start shopping around for some replacement equipment.

  • bigw0rm 3 years ago

    Yep, I think there’s something wrong with my foneras.

    Initially, the wlan light is off. After configuring the Pinepple & installing webif, I reboot. On reboot, the wlan light is on.

    With a static IP, Windows 7’s Network Connections Status reads, “Unidentified Network”.

    As soon as I set the nic to draw from dhcp, the status reads, “Guest”. weird!

    I’ll stop flooding now.

  • I just tried to run the flash-utility, and it fails because wpcap is missing.

    Downloading and installing WinPCAP fixed it :)

  • Hey guys. I want to know if I can follow this guide if I want to make a pineapple out of another router that supports OpenWRT. I bought the TP-Link Router TL-WR841N and would like Jasager on there.

    Thanks in advance!

  • bigw0rm 3 years ago

    @Nick Bouwhuis

    Try to find out the exact chipset of that router, and then look it up against the madwifi HCL: http://madwifi-project.org/wiki/Compatibility/Atheros

    That’s as good a place as any to start.

    @Darren Kitchen

    Reflashed the router, in Linux, redboot method on DigiNinjas site. Threw in one command, before the first command in DigiNinja’s guide:

    RedBoot> fis init -f

    That clears the firmware. Found that command here: http://www.robin-mesh.net/Howto/Install/Flashing_La_Fonera_over_Serial_Port#Format

    Continued with Digi’s guide, to no-joy. This is normal, have tried this in the past.

    Then reflashed with your guide. Did not install webif. Wifi light still comes on at boot, and karma control in jasager interface still does not have any bearing on the light.

    The device works, though, and I can still get clients to auth to their fakeAPs, MITM, ICS, all that good stuff.

    I think I’ll fly without Webif though and put some other packages on there instead.

    Danke schön für alles!!

  • @bigw0rm Looks like it’s the Atheros AR9285. Almost fully supported. I have chosen a good hackable router. Thanks bigw0rm. I will use this guide in the afternoon (I’m in Amsterdam timezone) and share my result.!

  • grayatrox 3 years ago

    It would probably be worth mentioning that WinPcap is required to stop the missing wpcap.dll error generated by the AP51 application.

  • Darren your tutorial is outstanding. It couldn’t be any easier to follow. One quick follow-up on my latest struggle is in Jasager. I cannot get others to connect when Karma is turned on. I even fired up backtrack with a couple deauthenticate attacks to speed up the process. Not sure where I went wrong.

  • bigw0rm 3 years ago

    @Nick As soon as you browse to Jasager’s web interface, the first thing you’re doing is making sure it’s in Blacklist mode?

    http://www.digininja.org/jasager/docs_black_white.php

    The second is adding your Pineapple’s SSID to the list?

    http://i364.photobucket.com/albums/oo88/jimblanford/14jasager_openwrt_ssid.png

    The above picture assumes you’ve given the name “OpenWrt” to your Pineapple. If you followed Darren’s guide exactly, you’d enter “Pineapple” there.

    I hope this works for you.

  • Yeah.. The TP-Link does run OpenWRT and DD-WRT. But I found a FON la fonera on the interwebs for cheap. So, I bought that. Now I need that batterypack they have. Where can I buy that? Please send an email trough nickbouwhuis.nl and click on the mail icon. Thanks!

  • Oh.. And if you want encryption.. Just edit it in X-wrt or echo this:

    /etc/config/wireless”>

    This will set up WPA2 with the password “pineapplesareyummy” (without the quotes of course).You can change it to 12345 (wouldn’t recommend it but easier will make it easier for me to get into) or whatever you would like.

    Thanks for the video Darren!

  • I wanted to use it again after 6 month in storage, it only worked once today and now it doesnt want to work at all!!! I follow the instructions in the site but the auto ip says 169.254.137.15 and i know thats not the default ip..I tried resetting it but no luck! Now im trying flashing it but tis download gives me an error saying wpcap.dll missing or cannot be found!!! â– build-pineapple.zip MD5: C5D90DB48E511F8AEF4FDFBCA7E3CF38…can someone help me please!

  • Hey grayatrox…

    Thank for the info, i should off read all the forum before posting a message.. that software worked perfect i was able to run the flash software with no problem… Now lets see if it work in the plane back to Puerto Rico…cuz that trip from CA to PR is long as hell!!! and of course im not paying for internet while first class people have it for free… One quick Q! to anyone who could answer this, I just have to activate Karma and see what happens right? or i have to do something else like another software to be able to get free internet at airports? Im a noob at this!!!

  • UK fon’s will not have a telnettable RedBoot. You need to follow the steps 1 to 10 on this page: http://forums.hak5.org/index.php?showtopic=9908.

    If you have a firmware HIGHER than 0.7.1 r1, hold the reset button for 20 seconds. Then let it go. Your fon is now downgraded an you can follow the steps on that page. If you are done with step 10. Follow the video and enjoy your pineapple!

  • Janig88 3 years ago

    Amazing tutorial
    with this tut i finally got my pineapple working, i had tried multiple times with the tutorial in hak5 forum without success.

    Thank you darren for writing this amazing tutorial and keep up the good work.

    P.S. Love the show

  • Santana 3 years ago

    is there a compatibility list for routers or will any old router due?

  • bigw0rm 3 years ago

    Hello again. Good news! I was able to resurrect my 2 bricked foneras, using this guide, provided within the Hak.5 forums:

    http://forums.hak5.org/index.php?showtopic=16399

    Gargoyle saves the day, and it’s super easy.

    Didn’t install webif, as I wanted the extra room for other packages.

  • Dusty 3 years ago

    I thought you needed a Fon Serial Cable from digininja.org to be able to flash the fon?

  • Pedro Henrique 3 years ago

    Hi,

    It’s possible to use “OpenMesh OM1R” hardware with Wifi Pineapple software?

    thanks!

  • jigger 3 years ago

    Best guide yet, works perfect every time !!!

  • GSpotr 3 years ago

    Need a little help please…

    Just got a Pineapple v2 and was playing with RickRolling. Got everything to work except I can’t connect to port 1471 now.

    I saved every file before replacing and was able to return the dhcp, network, wireless, index.html files back to original.. removed the dnsmasq.conf file. Still couldn’t get back into port 1471

    Ran Nmap and see that only ports 22, 53 & 80 answer… not 1471

    Decided it might be time to reflash back to stock so I followed the tutorial to the letter.. no problems so far.. The Pineapple seems to be back to stock.. SSID=Pineapple, etc. I can HTTP, SSH and WinSCP to 192.168.1.1 but I STILL can’t connect to 192.168.1.1:1471

    *** UPDATE ***

    OK… I figured before hit submit, I thought I’d try it one more time.. now, all of the sudden, I can connect to :1471 and I see the Jasagar v2 page. WTF?? Does it take a little time before that port is available??

    I’m going to try this RickRolling thing again before I attempt to try the Phishing with the Pineapple (to see who on my company network needs retraining!)

    Does anyone have any ideas how I got locked out of port 1471? I’m not sure if I was able to get Jasagar to startup on boot and imitate my other SSIDs (I think I just connected to the Pineapple SSID to test the RickRolling)

    Anything special I need to know before my next attempt??
    (I saw the link about the hosed-up wireless file and made sure I had it right during my first attempt)

    Sorry I’m such a n00b.. probably the oldest one on this site.. been a networking guy since Novell Netware 2x Just never worked with Unix or Linux until lately.. (Wish I’d started with Unix 25+ years ago!!)

    TIA everyone!

  • Dimitar 3 years ago

    What is the device i need to buy?

  • i’ve tried this guide like 5 times already.. it finishes but then i can’t telnet into my alpha pineapple.. i’ve got the markIII and i’ve tried to reflash it cause of a configuration problem… after 5 times i still can’t telnet or ssh into it.. WTF… im seriously fustrated, i think i might have to return this router…

    • Josh,
      This flashing guide is ONLY for the Wifi Pineapple MK 2 and won’t work with the MK 3.

  • RooBixx 2 years ago

    Need some help. I have used the EasyFlash utility and it say the pineapple will restart. I open the CMD prompt and try to ping 192.168.1.1 -t but I NEVER get a response from the router. Tried it several times from scratch with the same results.

  • Proxy91 2 years ago

    Wireshark is also very helpful with flashing it shows the TFTP packets sent so you will know if anything go’s wrong

  • You used the wrong “Your.” You’re, your,…urrrrrr

  • fabian 2 years ago

    link is broken

  • Brandon 2 years ago

    Download Link Seems To Be Dead

  • I have some issues trying to un-brick my MK2. Following the instructions above I am getting stuck at:

    [...]
    No packet.
    No packet.
    [...]
    stderr: Expected arp with length 60, received 42
    strerr: No arp received. Make sure, the device is connected directly!
    strerr: No arp received. Make sure, the device is connected directly!
    strerr: No arp received. Make sure, the device is connected directly!
    strerr: No arp received. Make sure, the device is connected directly!
    [....]

    Any suggestions on how to resolve this issue is much appreciated.

  • MisterZero 1 year ago

    Is there a similar way to flash our MK5 boxes without the use of serial? I can’t seem to find any information on that topic.