Parrot Bebop: Difference between revisions
Jump to navigation
Jump to search
Content deleted Content added
| Line 34: | Line 34: | ||
=Security= |
=Security= |
||
==Too easy to crash== |
|||
http://securityaffairs.co/wordpress/39363/hacking/hacking-parrot-drones.html |
http://securityaffairs.co/wordpress/39363/hacking/hacking-parrot-drones.html |
||
| Line 39: | Line 40: | ||
ps | grep dragon |
ps | grep dragon |
||
kill -9 ### |
kill -9 ### |
||
Hmm, need to setup WEP or WPA-PSK, manually over Wi-Fi |
|||
Actually there is even quicker: |
|||
Example for WEP: |
|||
telnet 192.168.42.1 |
|||
kk |
|||
==WEP?== |
|||
Apparently possible to setup WEP, or even WPA? |
|||
bcmwl addwep 0 1234567890 |
bcmwl addwep 0 1234567890 |
||
bcmwl wsec 1 |
bcmwl wsec 1 |
||
| Line 52: | Line 57: | ||
bcmwl addwep 0 1234567890 |
bcmwl addwep 0 1234567890 |
||
bcmwl wsec 1 |
bcmwl wsec 1 |
||
Problem is that it may impact link quality and anyway it's incompatible with a SkyController... |
|||
==telnet password== |
|||
That's the minimum we can do: |
|||
telnet 192.168.42.1 |
|||
# choose a new password |
|||
passwd |
|||
# fix bug in /etc/passwd (trailing spaces after /bin/sh) |
|||
sed -i 's/ *$//' /etc/passwd |
|||
# redirect root home to /home (where there is already a .bashrc) |
|||
sed -i 's#/home/root#/home#' /etc/passwd |
|||
# redirect telnet login to /bin/login |
|||
sed -i 's/sh -l/login/' /bin/login.sh |
|||
# reboot |
|||
/bin/ardrone3_shutdown.sh |
|||
=Tools= |
=Tools= |
||
* https://github.com/Zepheus/ardrone3-pcap sniffing protocol |
* https://github.com/Zepheus/ardrone3-pcap sniffing protocol |
||
Revision as of 22:55, 16 October 2015
Weight
Bebop 275g bat 1200 117g bat 1600 135g bat 2500 189g hull/carene 24g cache-cam 6g
Links
Officials
ARDroneSDK 3
- http://blog.parrot.com/2014/11/28/ardronesdk3-for-bebop-drone-and-minidrones-has-been-released/
- https://github.com/Parrot-Developers/ARSDKBuildUtils
- https://github.com/Parrot-Developers/Samples
- https://github.com/Parrot-Developers/bybop in python
Community
- http://www.bebopdrone.org/
- http://forum.parrot.com/usa/viewtopic.php?id=29088
- http://bebob.wikia.com/wiki/Bebob_Community_Drone_Hacking_Wiki
Hacks
- https://github.com/matthewlloyd/bebop Code repo disappeared but clones here:
- http://robotika.cz/robots/katarina/en
- https://github.com/hybridgroup/node-bebop control in node.js
Paparazzi
- http://wiki.paparazziuav.org/wiki/Main_Page
- http://wiki.paparazziuav.org/wiki/Bebop
- https://github.com/paparazzi/paparazzi
- https://github.com/paparazzi/paparazzi/tree/master/sw/airborne/boards/bebop
Security
Too easy to crash
http://securityaffairs.co/wordpress/39363/hacking/hacking-parrot-drones.html
telnet 192.168.42.1 ps | grep dragon kill -9 ###
Actually there is even quicker:
telnet 192.168.42.1 kk
WEP?
Apparently possible to setup WEP, or even WPA?
bcmwl addwep 0 1234567890 bcmwl wsec 1
Permanent (! reset wouldn't clean it, maybe flashing from USB?)
vi /sbin/broadcom_setup.sh At the end of the create_access_point Before the print out of success add the two lines: ------------- bcmwl addwep 0 1234567890 bcmwl wsec 1
Problem is that it may impact link quality and anyway it's incompatible with a SkyController...
telnet password
That's the minimum we can do:
telnet 192.168.42.1 # choose a new password passwd # fix bug in /etc/passwd (trailing spaces after /bin/sh) sed -i 's/ *$//' /etc/passwd # redirect root home to /home (where there is already a .bashrc) sed -i 's#/home/root#/home#' /etc/passwd # redirect telnet login to /bin/login sed -i 's/sh -l/login/' /bin/login.sh # reboot /bin/ardrone3_shutdown.sh
Tools
- https://github.com/Zepheus/ardrone3-pcap sniffing protocol