Pwnie Express Releases “Raspberry Pwn” Pentesting Suite

pwnpi_feat

Pwnie Express, always looking to upset the status quo, has just announced the immediate release of “Raspberry Pwn”: an open source penetration testing suite built for everyone’s favorite impossible to purchase ARM Linux computer.

From the Pwnie Express blog:

Pwnie Express is happy to announce the initial release of Raspberry Pwn! Security enthusiasts can now easily turn their Raspberry Pi into a full-featured security penetration testing and auditing platform!

Raspberry Pwn

This release runs on top of an existing Debian 6 “Squeeze” installation on your Raspberry Pi, so there isn’t much required to get it up and running. The installation script will add some repositories to your system, make sure everything is up-to-date, install a number of tools via aptitude, and finally build a few from source. Pwnie Express has even provided an uninstall function that will undo the changes made to your device and drop you back to stock.

All of the source code for Raspberry Pwn can be accessed via the Pwnie Express GitHub:

https://github.com/pwnieexpress/Raspberry-Pwn

The tools included in this first release of Raspberry Pwn are:

[one_third last="no"]

  • SET
  • Fasttrack
  • kismet
  • aircrack-ng
  • nmap
  • dsniff
  • netcat
  • nikto
  • xprobe
  • scapy
  • wireshark
  • tcpdump
  • ettercap
  • hping3
  • macchanger
  • nbtscan
  • john
  • ptunnel
  • p0f
  • ngrep

[/one_third]

[one_third last="no"]

  • openvpn
  • iodine
  • httptunnel
  • cryptcat
  • sipsak
  • yersinia
  • smbclient
  • sslsniff
  • tcptraceroute
  • pbnj
  • netdiscover
  • netmask
  • udptunnel
  • dnstracer
  • sslscan
  • medusa
  • ipcalc
  • dnswalk
  • socat
  • onesixtyone

[/one_third]

[one_third last="yes"]

  • dmitry
  • fcrackzip
  • ssldump
  • fping
  • ike-scan
  • gpsd
  • darkstat
  • swaks
  • arping
  • tcpreplay
  • sipcrack
  • proxychains
  • proxytunnel
  • siege
  • sqlmap
  • wapiti
  • skipfish
  • w3af
  • tcpflow
  • tinyproxy

[/one_third]

Future releases could potentially take the form of a complete OS replacement for the Raspberry Pi, perhaps even bringing the Pi in line with Pwnie’s Pwn Plug. At this point, Raspberry Pwn should be considered an experiment to gauge community interest. Depending on the response, this could either be a one time release or a whole new venue for Pwnie Express.

Putting Plugs To Pasture?

So does this release signal Pwnie’s abandonment of the Pwn Plug and a move to the low-cost Raspberry Pi? I wouldn’t count on it.

Pwnie Express is committed to delivering their software on unique platforms well suited to penetration testing. The advantage of something like the Pwn Plug isn’t that it’s simply small, it’s the fact that it looks so innocent sitting in a wiring closet or under a desk. The Raspberry Pi simply doesn’t have that trait, and modifying it negates the cost advantage.

While I wouldn’t be surprised if a strong response from the community over Raspberry Pwn leads to Pwnie Express reselling Raspberry Pi boards with a customized firmware image; the core product line will always remain. As we get closer to DEFCON and the full unveiling of Pwnie Express’s new products, the future direction of their hardware efforts should become abundantly clear.


Tom Nardi

Tom is a Network Engineer with focus on GNU/Linux and open source software. He is a frequent submitter to "2600", and maintains a personal site of his projects and areas of research at: www.digifail.com .

Related posts

Top