Extra Repositories on N900


Maemo, the operating system of Nokia N900, has 3 repositoriesof applicationsRepositories are ExtrasExtras-Devel, and Extras-Testing and in each are grouped the applications according to their compatibility and the result of the test in Maemo.

Repository Extra.

In the N900 the repository Extras is pre-configured but is not compatible with the current firmware. The user has to allow this repository before use. Extras is a repository where they are applications that are tested properly and compatible, with a perfect functionality.

If you erase this repository you can return to install it. In applications manager we create the catalogue with the following information:

Also you can do click here on your N900 to install it automatically.

Repository Extra-Testing.

Extra testing Repositories Extras, Extras Devel and Extras Testing for Nokia N900

This repository adds manually. Extras-Testing contains the new applications that have not yet been tested and verified.

In applications manager we created the catalog:

Also you can do click here on your N900 to install it automatically.

Repository Extra-Devel.

Extra devel Repositories Extras, Extras Devel and Extras Testing for Nokia N900

This repository also adds manually. In Extras-Devel we find applications in the early stages of development or version “alpha”. This repository is the least indicated for the end users, since its operation can have too many problems.

To install the repository Extras-Devel we are going to applications manager and created the catalog with the following information:

Also you can do click here on your N900 to install it automatically.

Have a nice day!!!


Nokia N900 is a pentest device

The Nokia N900 has a lot of pentesting potential thanks to the numerous pentest software that has been ported to Maemo. Today I will be doing a guide on how to fully equip your N900 so that it becomes a must-have device for every pentester. Everything that your going to read is for testing only, you should NOT use it on computers you don’t own. Anything you do with this software is your own fault. You have been warned.

Before continuing you should first enable the extras-devel repository on your phone – go to Application Manager and Add this catalogue:

 Catalogue name: Extras-Devel
 Web address: http://repository.maemo.org/extras-devel/
 Distribution: fremantle
 Components: free non-free

To begin with, I will start with aircrack-ng. It is one of the most popular pentesting programs out there and it serves the purpose of breaking wep/wpa/wpa2 keys and gaining access to a wireless network. To get it, you need to follow these instructions:

apt-get install aircrack-ng

However, so far you will not be able perform packet injection, which will slow down WEP cracking and will make wpa handshake capture much harder. So next thing to do is go tolxp’s blog and get the patched wireless driver and carefully follow the instructions. If you find the driver useful donate at his blog! It adds much more than just packet injection, but you can read all about that on his blog.

As of May,2011 you can now install successfully mdk3, genpmk and cowpatty. You need to have updated your aircrack-ng to version 1.1. To install them follow this post. You can further install wessid-ng ,kiptun and airolib by placing them in /usr/bin and chmod them.

A great addition to aircrack-ng are one of the two available GUI’s. If you are a Backtrack user, you have most probably gotten used to GrimWepa. Luckily for you, a N900 version exists. Here is the actual file. To install it follow these instructions:

apt-get install libgif4

apt-get install icedtea6

java -jar grimwepa-n900.jar

However, I personally don’t like how it works on the N900 and I prefer wifite v2. To install it,use :

– wget https://raw.github.com/derv82/wifite/master/wifite.py

– chmod +x wifite.py

– ./wifite.py

The biggest change from version 1 is support for “reaver”, a Wifi-Protected Setup (WPS) attack tool. Reaver can compromise the PIN and PSK for many routers that have WPS enabled, usually within hours.

Other changes include a complete code re-write with bug fixes and added stability. Due to problems with the Python Tkinter suite, the GUI has been left out of this latest version. Most of the new router now got WPS. For example,the default configuration in UniFi router- Dlink Dir-615 – got WPS enabled. Instead of attacking WPA key,wifite attack WPS pin. And have tested using wifite v2, i can crack wpa password without using WPA dictionary. Wifite v2 use pyrit + cowpatty to attacking WPA key.

And for your info wifite just for LINUX, not working in windows or mac…so put yourself with LINUX.

Next thing on the list is getting nmap – apt-get install nmap – easy as that. Quite a useful ip/port scanner that is needed for many exploits. You can run it from terminal by typing ‘nmap’.

My favorite tool of them all is ettercap-ng. It is used to poison a network, redirect traffic,sniff packets and even for DoS attacks. Installing it is a bit harder,but thanks to colin.stephane, who build it into deb packages, it is quite easy if you follow the commands. The files and instructions can be found in this post.

If you want to get the gui working you should also do “dpkg -i ettercap-gtk_0.7.3-1.2.armel.deb”. DO NOT install it via xterm from the repositories as the package uploaded there is completely broken.

A great tool combination for ettercap is sslstrip – it basically turns https links to http and allows you to steal passwords from secured sites.It is quite hard to notice even for a person thats familiar with this exploit. Installation here is a bit harder. First you need to get python-twisted-web and iptables – “apt-get install python-twisted-web iptables python-pyopenssl”. Next you need to download the latest sslstrip package at http://www.thoughtcrime.org/software/sslstrip/ . Unpack it with “tar zxvf sslstrip-0.x.tar.gz”, then cd into that directory “cd sslstrip-0.x” and do a “python setup.py build” & “python setup.py install”. If you get any dependency errors, install the missing packages first (sometimes you will have to install a different package – for example if you are missing package ABC you will have to type in the Xterminal “apt-get install python-ABC”, not just “apt-get install ABC”.) If you have any issues with installing make a comment and I will try to help you.

Another cool program that you can get is Wireshark – “apt-get install Wireshark”. It can be used for packet sniffing or for examining files created by ettercap for example. The gui is a bit messed up,but it is useable.

The famous metasploit framework can also be run on the N900 and the instructions + the actual file can be found HERE. Everything works flawlessly and I have successfully exploited my Virtual Machine’s Windows XP through the phone. However, some people have had issues with the official metasploit installation guide – so here is a second one with optified ruby packages : http://talk.maemo.org/showpost.php?p=535129&postcount=1 .

The Online password cracker tool – THC-Hydra. Ported by SuperDumb. To downloadhttp://forums.internettablettalk.com/showpost.php?p=1021807&postcount=35. Install by doing a dpkg -i hydra_6.3-src-1_armel.deb.

That is it for today. If you have any issues/recommendations please make a comment.


Application: TuxType

What it is:

TuxTyping is an educational typing tutorial game starring Tux, the
Linux Penguin. The player guides Tux to eat fish which are falling
from the top of the screen. Each fish has a letter written on it. When
the player presses the corresponding key, Tux will position himself to
eat the fish. The game is intended for children learning to type,
though it does have higher difficulty levels which even experienced
typists may find challenging.

To know more about:


To install in Ubuntu:

sudo apt-get install tuxtype


Application: BIRD

What it is:

Bird is internet routing daemons which manages TCP/IP based routing
protocols with full support of all modern routing protocols, easy to
use configuration interface and powerful route filtering language.


It supports IPv4 versions OSPFv2, RIPv2 (No v1), BGP and
redistribution between the protocols with a powerful configuration

To know more about:


To install in Ubuntu:

sudo apt-get install bird


Application: SWFTools

What it is:

SWF Tools is a collection of SWF (Flash) manipulation and creation utilities.


The central tool is swfc which takes as input a description of a Flash
animation in a simple language and creates as output an SWF file. It
is possible to include ActionScript scripts into the generated SWF
file. SWFTools also includes the RFXSWF Library which allows to write
programs that generate SWF.
In addition SWFTools includes a number of tools to convert content in
the PDF, JPEG, GIF, WAV and AVI formats to SWF, and others to extract
information and content from existing SWF files. It’s also possible to
embed other SWF files, which may be useful for animating static
pictures (for example, the static SWF files generated by
OpenOffice.org Impress and Draw).

To know more about:


To install in Ubuntu:

sudo apt-get install swftools


Application: celtx

What it is:

Celtx is the world’s first all-in-one media pre-production software. It has
everything you need to take your story from concept to production. Celtx
replaces ‘paper, pen & binder’ pre-production with a digital approach that’s
more complete, simpler to work with, and easier to share.


*Multi-Media Friendly*
Celtx helps you pre-produce all types of media – film, video, documentary,
theater, machinima, comics, advertising, video games, music video, radio,
podcasts, videocasts, and however else you choose to tell your story.

*All In One*
Unlike scriptwriting software and sites, you can use Celtx for the entire
pre-production process – write scripts, storyboard scenes and sequences,
develop characters, breakdown & tag elements, schedule production, and prepare
detailed and informative production reports for cast and crew.

*Fully Integrated*
Celtx is designed to help your entire production team work together on a
single, easy to share project file – eliminating the confusion of multiple
project files, and the need for ‘paper and binder’.

*World Community of Media Creators*
More than 500,000 media creators in 160 countries create with Celtx in 28
different languages. Celtx is used by independent filmmakers and studio
professionals, and by students in over 1,800 universities and film schools –
many that have adopted Celtx for teaching and class work submission.

*The Best of The Desktop & The Web*
Celtx is a desktop application that delivers the most fluid writing and
editing experience. You can always keep your fingers moving as fast as your
thoughts and your creative flow is never interrupted. With Celtx you can also
work at any time off-line and privacy is never a concern.

Celtx Studios use the web to deliver a central server’s superior strength for
heavy-lifting tasks such as mass storage, collaboration and e-commerce.

No other film production software gives you the advantages of the Celtx-Celtx
Studios hybrid desktop-web architecture.

*Non-Linear Project Development*
Unlike scriptwriting software and sites, Celtx puts a choice of fully
integrated development tools right at your fingertips, giving you total
flexibility to determine how your story takes shape.

To know more about:


To install in Ubuntu:

sudo apt-get install celtx


Application: kazam

What it is:

A program that lets you record action on-screen into one video file.


It’s special features include a well designed interface, the ability
to record audio playing on your computer and built-in exporting
capabilities to upload screencasts to popular videosharing websites –
such as YouTube.

To know more about:


To install in Ubuntu:

sudo add-apt-repository ppa:and471/kazam-daily-builds

sudo apt-get update && sudo apt-get install kazam