search

insecurityofthings / jackit

JackIt - Exploit Code for Mousejack
807 stars 144 forks source link

JackIt on Kali Nethunter not working #61

Open bluegizmo83 opened 4 years ago

bluegizmo83 commented 4 years ago

I'm not sure why, but JackIt is not working on Kali Nethunter on my Nexus 5. I've followed all the same steps to setup and install everything that I did on my Linux laptop (JackIt works fine on there), but on Nethunter it just says cannot find Crazy PA USB dongle.

Sliim commented 4 years ago

Someone got the same error on NetHunter, maybe this can help: https://github.com/insecurityofthings/jackit/issues/40

bluegizmo83 commented 4 years ago

Someone got the same error on NetHunter, maybe this can help: #40

Thanks yeah I saw that and tried to adapt it for Nethunter but I just can't get it to work.

Sliim commented 4 years ago

Can you check this branch to see if you get the same error: https://github.com/Sliim/jackit/tree/no-backend (https://github.com/insecurityofthings/jackit/pull/31/files) It should raise an other error in case the libusb library cannot be found. Otherwise try to give more information on your environment and steps used to install jackit.

bluegizmo83 commented 4 years ago

Can you check this branch to see if you get the same error: https://github.com/Sliim/jackit/tree/no-backend (https://github.com/insecurityofthings/jackit/pull/31/files) It should raise an other error in case the libusb library cannot be found. Otherwise try to give more information on your environment and steps used to install jackit.

I tried the branch you recommended but I don't see any difference at all. No new errors or anything.

Steps taken to try the branch you recommended: In the Nethunter Kali Terminal I did

  1. git clone https://github.com/Sliim/jackit.git
  2. cd jackit
  3. pip install -e .
  4. sudo jackit

Screenshot_20191110-195738

Sliim commented 4 years ago

You missed to checkout the no-backend branch, try:

  1. git clone https://github.com/Sliim/jackit.git
  2. cd jackit
  3. git checkout no-backend
  4. pip install -e .
  5. sudo jackit

Can you also check if you see your dongle with the command lsusb|grep 1915:0102, you should see something like:

Bus 001 Device 122: ID 1915:0102 Nordic Semiconductor ASA Research Firmware
Sliim commented 4 years ago

Also check if you have libusb installed on your system:

find /usr/lib/ -name "libusb*.so"
bluegizmo83 commented 4 years ago

You missed to checkout the no-backend branch, try:

  1. git clone https://github.com/Sliim/jackit.git
  2. cd jackit
  3. git checkout no-backend
  4. pip install -e .
  5. sudo jackit

Can you also check if you see your dongle with the command lsusb|grep 1915:0102, you should see something like:

Bus 001 Device 122: ID 1915:0102 Nordic Semiconductor ASA Research Firmware

Thanks for trying to help, I appreciate it!

So redoing the install with "git checkout no-backend" didn't change anything. No new errors or anything. Looks exactly the same as the screenshot I posted previously.

Doing "lsusb|grep 1915:0102" doesn't return anything at all in the Kali terminal, but does return with the device when done in an Android SU terminal. Even just doing lsusb doesn't seem to return anything in the Kali terminal no matter what USB devices I have plugged in (even known working USB WiFi adapters).

The command: find /usr/lib/ -name "libusb*.so" , in a Kali terminal, returns "/usr/lib/arm-linux-gnueabihf/libusb-1.0.so"

Sliim commented 4 years ago

hmm strange.. I havn't a NetHunter system to try it myself, look like there is a problem with your usb ports.. did you see your device with dmesg after your device is plugged in? You should see something like (or maybe some errors?):

usb 1-1: New USB device found, idVendor=1915, idProduct=0102, bcdDevice= 0.01
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
usb 1-1: Product: Research Firmware
usb 1-1: Manufacturer: RFStorm
bluegizmo83 commented 4 years ago

hmm strange.. I havn't a NetHunter system to try it myself, look like there is a problem with your usb ports.. did you see your device with dmesg after your device is plugged in? You should see something like (or maybe some errors?):

usb 1-1: New USB device found, idVendor=1915, idProduct=0102, bcdDevice= 0.01
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
usb 1-1: Product: Research Firmware
usb 1-1: Manufacturer: RFStorm

Yup it shows up just fine in dmesg

Screenshot_20191111-150539

Sliim commented 4 years ago

looks good, what's the output when you ran the command pip install -e .? Maybe you need the --upgrade flag (pip install --upgrade -e .) to upgrade the current installed package, or just run jackit with sudo bin/jackit

Sliim commented 4 years ago

Also can you try my openwrt-libusb branch with your libusb library path (see https://github.com/Sliim/jackit/commit/4de42c5d9cdae2ed1009b8cd161101e88ab1c76a)

git checkout openwrt-libusb
sed -i "s#/usr/lib/libusb-1.0.so#/usr/lib/arm-linux-gnueabihf/libusb-1.0.so#" jackit/lib/nrf24.py
pip install --upgrade -e .
sudo jackit
bluegizmo83 commented 4 years ago

Also can you try my openwrt-libusb branch with your libusb library path (see Sliim@4de42c5)

git checkout openwrt-libusb
sed -i "s#/usr/lib/libusb-1.0.so#/usr/lib/arm-linux-gnueabihf/libusb-1.0.so#" jackit/lib/nrf24.py
pip install --upgrade -e .
sudo jackit

Ok I tried all that too, still nothing different. I'm thinking there is something wrong with the USB system of the Nethunter install on my phone. I can see the device via Dmesg and Usb-Devices commands in the Kali terminal, but nothing shows when I do lsusb. I've also spent several hours playing with pyusb in Python to try and list all USB devices and search by vendor and stuff and it never returns any devices. So there is something wrong causing pyusb to not be able to see any devices. So I think I'm just gonna put this on hold for now until I can find the time and effort to reinstall the Nethunter ROM on my phone and start fresh. Thanks again for helping though!

Sliim commented 4 years ago

Ok, no problem, do not hesitate to update this thread when you have some new informations about this issue, this could help other people also impacted by this

sergiokelevra commented 2 years ago

I managed to get it working on nethunter terminal running kali fully updated (except sudo - this will break nethunter bootkali) on a Nexus 5. Firstly I managed to get the dongle working with mousejack APK and was determined to fix why it wasnt getting recognized on kali terminal...and it's such a simple fix.

just do:

apt update apt upgrade -y apt install bluetooth service bluetooth start

then just run "service bluetooth restart" everytime you unplug the CrazyradioPA dongle

run jackit and voilá. might help some of you who are trying to get this to run on terminal.

best vibes to all,

PS - i know it's an old post but even in 2022 I was looking for this fix.

bluegizmo83 commented 2 years ago

I managed to get it working on nethunter terminal running kali fully updated (except sudo - this will break nethunter bootkali) on a Nexus 5. Firstly I managed to get the dongle working with mousejack APK and was determined to fix why it wasnt getting recognized on kali terminal...and it's such a simple fix.

just do:

apt update apt upgrade -y apt install bluetooth

then just run "service bluetooth start" everytime you unplug the CrazyradioPA dongle

run jackit and voilá. might help some of you who are trying to get this to run on terminal.

best vibes to all,

PS - i know it's an old post but even in 2022 I was looking for this fix.

Right on man, thanks! I never did find a fix for this back when I originally posted it and I kind of just forgot about it, so it's nice to see one has been found now.

yesimxev commented 2 years ago

That's nice, close the issue :1st_place_medal: