lunedì 7 gennaio 2013

Aircrack with monitor mode on android - Part 1: Take control over your W6HD.

(this post is a work in progress, please come back later)
As said before, this guide is tailored around Ramos W6HD,
the first thing we need to do is to get root access and install a debian system using chroot.

Rooting Ramos W6HD.
There are various ways to root the w6hd, the easiest one is to flash a firmware which
already has root.
We'll also need play store access to easily download some apps like connectbot, vnc, Screen Standby and so on, so let's just use a firmware which already come with gapps.
We'll use Librehat's ICS HatMod.
Make a backup copy of all your data, then download ICS_HatMod_for_W6HD_1.9.7z,
and unzip it in the root of your sdcard.
I suggest you to use a card reader to transfer the files since the usb connection of the ramos
is not so speedy.
Fully charge your w6hd then turn it off.
Insert the sdcard with the new firmware then keep pressing the M button and turn on he device
via the power button. hold both buttons until you see the android image with a progress bar
in the bottom, now you can release the buttons, wait until the flash process is finished,
the device will reboot and then you now have a firmware with gapps + root access.
setup your device as usual then download these apps from play store:

Screen Standby #root
We'll use this app to turn off the screen while keeping the tablet on.
To prevent your tablet from going to suspend mode, go to
Settings->Display->Suspension and select "Never timeout".
this way the tablet will be always on until you put it in suspend mode by pressing once
the power button.
Learn to use Screen Standby as we'll leave the tablet on with the screen off to save power most of the time

also please note that we're going to compile our own kernel and flash our own firmware,
thanks to amlogic effort to release the kernel source, however we need temporary root access
to make a copy of some files.
Once you've installed a root file manager or a terminal emulator, grab a copy of these files:
/proc/config.gz This file contains the compile-time configuration settings for the kernel in gzip,
luckily it seems that they've compiled the kernel with the CONFIG_IKCONFIG_PROC enabled
that's why config.gz is available. having the kernel configuration means that we can just use this
configuration as a starting point and configure the remaining options for the kernel.
take a look at the configuration and you'll see why for some devices we can't just build a module
but we'll also need to recompile the kernel.
some devices will work with just a module however so I'm building a list of devices,
also since the kernel source supports different amlogic boards, I'm testing out also this method
for other devices.. come back later!

 (work in progress)
Part 2: Setup an ARM Development environment

(this post is a work in progress, please come back later)

Nessun commento:

Posta un commento

Creative Commons License
Questo/a opera è pubblicato sotto una Licenza Creative Commons.