scifijunkie
eb77f29135
Updated and coverted my fork from evilsocket/pwnagotchi master branch to aluminum-ice/pwnagotchi master branch removed hannadiamond repository changed pwnagotchi community plugin repository to my pwnagotchi community plugin repository removed mastodon plugin removed screenrc configuration cloned pwnagotchi community plugin repository only once removed configure pwnagotchi for the custom plugin directory from builder/pwnagotchi.yml reconfigured auto-update to point to the scifijunkie repo edited main.custom_plugins to point to /usr/local/share/pwnagotchi/custom-plugins in pwnagotchi/defaults.toml removed mastodon configuration from defaults.toml removed ntfy configuration from defaults.toml removed handshakes-m.py from default plugin removed mastodon.py from default plugin removed ntfy.py from default plugin addressed [ERROR] [update] 'tag_name' addressed rate limit exceeded addressed TypeError: Descriptors cannot not be created directly. Reran pip-compile
713 lines
22 KiB
YAML
713 lines
22 KiB
YAML
---
|
|
- hosts:
|
|
- 127.0.0.1
|
|
gather_facts: yes
|
|
become: yes
|
|
vars:
|
|
pwnagotchi:
|
|
hostname: "{{ lookup('env', 'PWN_HOSTNAME') | default('pwnagotchi', true) }}"
|
|
version: "{{ lookup('env', 'PWN_VERSION') | default('master', true) }}"
|
|
system:
|
|
boot_options:
|
|
- "dtoverlay=dwc2"
|
|
- "dtoverlay=spi1-3cs"
|
|
- "dtoverlay=pwm-2chan,pin=12,func=4,pin2=13,func2=4"
|
|
- "dtparam=spi=on"
|
|
- "dtparam=i2c_arm=on"
|
|
- "dtparam=i2c1=on"
|
|
- "gpu_mem=16"
|
|
modules:
|
|
- "i2c-dev"
|
|
services:
|
|
enable:
|
|
- dphys-swapfile.service
|
|
- pwnagotchi.service
|
|
- bettercap.service
|
|
- pwngrid-peer.service
|
|
- epd-fuse.service
|
|
- fstrim.timer
|
|
disable:
|
|
- apt-daily.timer
|
|
- apt-daily.service
|
|
- apt-daily-upgrade.timer
|
|
- apt-daily-upgrade.service
|
|
- wpa_supplicant.service
|
|
- bluetooth.service
|
|
- triggerhappy.service
|
|
- ifup@wlan0.service
|
|
- dnsmasq.service
|
|
packages:
|
|
bettercap:
|
|
# We will install bettercap v2.32 from source
|
|
# url: "https://github.com/bettercap/bettercap/releases/download/v2.31.0/bettercap_linux_armhf_v2.31.0.zip"
|
|
ui: "https://github.com/bettercap/ui/releases/download/v1.3.0/ui.zip"
|
|
pwngrid:
|
|
url: "https://github.com/evilsocket/pwngrid/releases/download/v1.10.3/pwngrid_linux_armhf_v1.10.3.zip"
|
|
apt:
|
|
hold:
|
|
- firmware-atheros
|
|
- firmware-brcm80211
|
|
- firmware-libertas
|
|
- firmware-misc-nonfree
|
|
- firmware-realtek
|
|
remove:
|
|
- raspberrypi-net-mods
|
|
- dhcpcd5
|
|
- triggerhappy
|
|
- wpa_supplicant
|
|
- nfs-common
|
|
# Remove every golang package because we will install go-1.20.2
|
|
- golang*
|
|
- python2*
|
|
install:
|
|
- rsync
|
|
- vim
|
|
- screen
|
|
- git
|
|
- build-essential
|
|
- python3-pip
|
|
- python3-mpi4py
|
|
- python3-smbus
|
|
- unzip
|
|
- gawk
|
|
- libopenmpi-dev
|
|
- libatlas-base-dev
|
|
- libjasper-dev
|
|
- libgtk-3-0
|
|
- libqtgui4
|
|
- libqt4-test
|
|
- libopenjp2-7
|
|
- libtiff5
|
|
- tcpdump
|
|
- lsof
|
|
- libilmbase23
|
|
- libopenexr23
|
|
- libgstreamer1.0-0
|
|
- libavcodec58
|
|
- libavformat58
|
|
- libswscale5
|
|
- libpcap-dev
|
|
- libusb-1.0-0-dev
|
|
- libnetfilter-queue-dev
|
|
- libopenmpi3
|
|
- dphys-swapfile
|
|
- libraspberrypi0
|
|
- libraspberrypi-dev
|
|
- libraspberrypi-doc
|
|
- libraspberrypi-bin
|
|
- fonts-dejavu
|
|
- fonts-dejavu-core
|
|
- fonts-dejavu-extra
|
|
- python3-pil
|
|
- python3-smbus
|
|
- libfuse-dev
|
|
- bc
|
|
- fonts-freefont-ttf
|
|
- fbi
|
|
- fonts-ipaexfont-gothic
|
|
- cryptsetup
|
|
- dnsmasq
|
|
- aircrack-ng
|
|
- raspberrypi-kernel-headers
|
|
- libgmp3-dev
|
|
- qpdf
|
|
- bison
|
|
- flex
|
|
- make
|
|
- autoconf
|
|
- libtool
|
|
- texinfo
|
|
- binutils
|
|
- lnav
|
|
- p7zip-full
|
|
|
|
environment:
|
|
ARCHFLAGS: "-arch armv7l"
|
|
|
|
tasks:
|
|
- name: System details
|
|
debug:
|
|
msg="{{ item }}"
|
|
with_items:
|
|
- "{{ ansible_distribution }}"
|
|
- "{{ ansible_distribution_version }}"
|
|
- "{{ ansible_distribution_major_version }}"
|
|
- "{{ ansible_architecture }}"
|
|
- "{{ ansible_machine }}"
|
|
- name: change hostname
|
|
hostname:
|
|
name: "{{pwnagotchi.hostname}}"
|
|
when: lookup('file', '/etc/hostname') == "raspberrypi"
|
|
register: hostname
|
|
|
|
- name: add hostname to /etc/hosts
|
|
lineinfile:
|
|
dest: /etc/hosts
|
|
regexp: '^127\.0\.1\.1[ \t]+raspberrypi'
|
|
line: "127.0.1.1\t{{pwnagotchi.hostname}}"
|
|
state: present
|
|
when: hostname.changed
|
|
|
|
- name: disable sap plugin for bluetooth.service
|
|
lineinfile:
|
|
dest: /lib/systemd/system/bluetooth.service
|
|
regexp: '^ExecStart=/usr/lib/bluetooth/bluetoothd$'
|
|
line: 'ExecStart=/usr/lib/bluetooth/bluetoothd --noplugin=sap'
|
|
state: present
|
|
|
|
- name: add firmware packages to hold
|
|
dpkg_selections:
|
|
name: "{{ item }}"
|
|
selection: hold
|
|
with_items: "{{ packages.apt.hold }}"
|
|
|
|
- name: update apt package cache
|
|
apt:
|
|
update_cache: yes
|
|
|
|
- name: remove unecessary apt packages
|
|
apt:
|
|
name: "{{ packages.apt.remove }}"
|
|
state: absent
|
|
purge: yes
|
|
|
|
- name: upgrade apt distro
|
|
apt:
|
|
upgrade: dist
|
|
|
|
- name: install packages
|
|
apt:
|
|
name: "{{ packages.apt.install }}"
|
|
state: present
|
|
|
|
- name: Update .bashrc (root)
|
|
blockinfile:
|
|
dest: /root/.bashrc
|
|
state: present
|
|
block: |
|
|
export MAKEFLAGS=-j$(nproc)
|
|
insertafter: EOF
|
|
|
|
- name: configure dphys-swapfile
|
|
lineinfile:
|
|
path: /etc/dphys-swapfile
|
|
regexp: "^CONF_SWAPSIZE=.*$"
|
|
line: "CONF_SWAPSIZE=512"
|
|
|
|
- name: clone papirus repository
|
|
git:
|
|
repo: https://github.com/repaper/gratis.git
|
|
dest: /usr/local/src/gratis
|
|
register: gratisgit
|
|
|
|
- name: build papirus service
|
|
make:
|
|
chdir: /usr/local/src/gratis
|
|
target: rpi
|
|
params:
|
|
EPD_IO: epd_io_free_uart.h
|
|
PANEL_VERSION: 'V231_G2'
|
|
when: gratisgit.changed
|
|
|
|
- name: install papirus service
|
|
make:
|
|
chdir: /usr/local/src/gratis
|
|
target: rpi-install
|
|
params:
|
|
EPD_IO: epd_io_free_uart.h
|
|
PANEL_VERSION: 'V231_G2'
|
|
when: gratisgit.changed
|
|
|
|
- name: configure papirus display size
|
|
lineinfile:
|
|
dest: /etc/default/epd-fuse
|
|
regexp: "#EPD_SIZE=2.0"
|
|
line: "EPD_SIZE=2.0"
|
|
|
|
- name: Delete papirus content & directory
|
|
file:
|
|
state: absent
|
|
path: /usr/local/src/gratis
|
|
when: gratisgit.changed
|
|
|
|
# pip v20.3 uses a newer dependency resolver that better handles our unique situation.
|
|
# Specifically, it handles mismatches between direct requirements without extras and
|
|
# indirect requirements that do want extras (e.g. gym vs stable-baselines->gym[atari]).
|
|
- name: Upgrade pip and install rpi-hardware-pwm
|
|
pip:
|
|
name:
|
|
- pip>=20.3
|
|
- rpi-hardware-pwm
|
|
|
|
# We need the --ignore-installed option so that pip simply overwrites/upgrades existing
|
|
# packages instead of trying to uninstall them first. While this sounds dangerous,
|
|
# this matches the legacy behavior of pip. This is required to prevent pip from trying
|
|
# (and failing) to uninstall python packages that were originally installed via apt.
|
|
- name: Install pwnagotchi from source archive
|
|
pip:
|
|
name: /usr/local/src/pwnagotchi/pwnagotchi-{{ pwnagotchi.version }}.tar.gz
|
|
extra_args: --verbose --prefer-binary --ignore-installed --retries 50 --index-url https://nexus.chadwaltercummings.me/repository/pypi.org/simple --extra-index-url https://nexus.chadwaltercummings.me/repository/www.piwheels.org/simple
|
|
|
|
- name: create custom plugin directory
|
|
file:
|
|
path: /usr/local/share/pwnagotchi/custom-plugins/
|
|
state: directory
|
|
|
|
- name: clone pwnagotchi plugins repository
|
|
git:
|
|
repo: https://git.chadwaltercummings.me/scifijunkie/pwnagotchi-plugins-contrib.git
|
|
dest: /usr/local/share/pwnagotchi/available-plugins
|
|
|
|
- name: Copy aircrackonly.py
|
|
copy:
|
|
src: /usr/local/share/pwnagotchi/available-plugins/aircrackonly.py
|
|
dest: /usr/local/share/pwnagotchi/custom-plugins/aircrackonly.py
|
|
owner: root
|
|
group: root
|
|
mode: '644'
|
|
|
|
- name: Copy handshakes-dl.py
|
|
copy:
|
|
src: /usr/local/share/pwnagotchi/available-plugins/handshakes-dl.py
|
|
dest: /usr/local/share/pwnagotchi/custom-plugins/handshakes-dl.py
|
|
owner: root
|
|
group: root
|
|
mode: '644'
|
|
|
|
- name: download and install pwngrid
|
|
unarchive:
|
|
src: "{{ packages.pwngrid.url }}"
|
|
dest: /usr/bin
|
|
remote_src: yes
|
|
mode: 0755
|
|
|
|
# Install go-1.21.5
|
|
- name: Install go-1.21.5
|
|
unarchive:
|
|
src: https://go.dev/dl/go1.21.5.linux-armv6l.tar.gz
|
|
dest: /usr/local
|
|
remote_src: yes
|
|
register: golang
|
|
|
|
- name: Update .bashrc for go-1.21.5 (pi)
|
|
blockinfile:
|
|
dest: /home/pi/.bashrc
|
|
state: present
|
|
block: |
|
|
export GOPATH=$HOME/go
|
|
export PATH=/usr/local/go/bin:$PATH:$GOPATH/bin
|
|
insertafter: EOF
|
|
when: golang.changed
|
|
|
|
- name: Install bettercap v2.32
|
|
shell: "export GOPATH=$HOME/go && export PATH=/usr/local/go/bin:$PATH:$GOPATH/bin && go env -w GO111MODULE=off && go get github.com/bettercap/bettercap && cd $GOPATH/src/github.com/bettercap/bettercap && make build && make install"
|
|
args:
|
|
executable: /bin/bash
|
|
register: bettercap
|
|
|
|
- name: Link bettercap v2.32
|
|
command: ln -s /usr/local/bin/bettercap /usr/bin/bettercap
|
|
when: bettercap.changed
|
|
|
|
- name: clone bettercap caplets
|
|
git:
|
|
repo: https://github.com/bettercap/caplets.git
|
|
dest: /tmp/caplets
|
|
register: capletsgit
|
|
|
|
- name: install bettercap caplets
|
|
make:
|
|
chdir: /tmp/caplets
|
|
target: install
|
|
when: capletsgit.changed
|
|
|
|
- name: download and install bettercap ui
|
|
unarchive:
|
|
src: "{{ packages.bettercap.ui }}"
|
|
dest: /usr/local/share/bettercap/
|
|
remote_src: yes
|
|
mode: 0755
|
|
|
|
# Install nexmon to fix wireless scanning (takes 2.5G of space)
|
|
- name: clone nexmon repository
|
|
git:
|
|
repo: https://github.com/seemoo-lab/nexmon.git
|
|
dest: /usr/local/src/nexmon
|
|
# version: bfb3fe90c881498d7ee245b38f16722c1de26fa1
|
|
register: nexmongit
|
|
|
|
- name: configure libisl
|
|
command: chdir=/usr/local/src/nexmon/buildtools/isl-0.10/ ./configure
|
|
|
|
- name: make libisl
|
|
command: chdir=/usr/local/src/nexmon/buildtools/isl-0.10/ make
|
|
|
|
- name: install libisl
|
|
command: chdir=/usr/local/src/nexmon/buildtools/isl-0.10/ make install
|
|
|
|
- name: link libisl
|
|
command: ln -s /usr/local/lib/libisl.so /usr/lib/arm-linux-gnueabihf/libisl.so.10
|
|
|
|
- name: autoreconf libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ autoreconf -f -i
|
|
|
|
- name: configure libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ ./configure
|
|
|
|
- name: make libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ make
|
|
|
|
- name: install libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ make install
|
|
|
|
- name: link libmpfr
|
|
command: ln -s /usr/local/lib/libmpfr.so /usr/lib/arm-linux-gnueabihf/libmpfr.so.4
|
|
|
|
- name: make firmware
|
|
shell: "source ./setup_env.sh && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
- name: choose the right kernel version (bcm43436b0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/Makefile
|
|
backup: no
|
|
regexp: "KERNEL_VERSION = .*$"
|
|
replace: "KERNEL_VERSION = 5.10"
|
|
|
|
- name: choose the right kernel release (variable) (bcm43436b0)
|
|
lineinfile:
|
|
dest: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/Makefile
|
|
insertafter: "DRIVER_FOLDER_NAME = .*$"
|
|
line: "KERNEL_RELEASE = 5.10.103-v7+"
|
|
|
|
- name: choose the right kernel release (replace string) (bcm43436b0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/Makefile
|
|
backup: no
|
|
regexp: "shell uname -r"
|
|
replace: "KERNEL_RELEASE"
|
|
|
|
- name: make firmware patch (bcm43436b0)
|
|
shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/ && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: backup original firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/ && make backup-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: install new firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/ && make install-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
- name: install new firmware (bcm43436b0)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/brcmfmac43436-sdio.bin
|
|
dest: /lib/firmware/brcm/brcmfmac43436-sdio.bin
|
|
|
|
- name: choose the right kernel version (bcm43430a1)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/Makefile
|
|
backup: no
|
|
regexp: "KERNEL_VERSION = .*$"
|
|
replace: "KERNEL_VERSION = 5.10"
|
|
|
|
- name: choose the right kernel release (variable) (bcm43430a1)
|
|
lineinfile:
|
|
dest: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/Makefile
|
|
insertafter: "DRIVER_FOLDER_NAME = .*$"
|
|
line: "KERNEL_RELEASE = 5.10.103-v7+"
|
|
|
|
- name: choose the right kernel release (replace string) (bcm43430a1)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/Makefile
|
|
backup: no
|
|
regexp: "shell uname -r"
|
|
replace: "KERNEL_RELEASE"
|
|
|
|
- name: make firmware patch (bcm43430a1)
|
|
shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/ && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: backup original firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/ && make backup-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: install new firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/ && make install-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
- name: install new firmware (bcm43430a1)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/brcmfmac43430-sdio.bin
|
|
dest: /lib/firmware/brcm/brcmfmac43430-sdio.bin
|
|
|
|
- name: Delete the firmware blob to avoid it crashing
|
|
file:
|
|
state: absent
|
|
path: /lib/firmware/brcm/brcmfmac43430-sdio.clm_blob
|
|
|
|
- name: Delete the RPiZW firmware blob to avoid it crashing
|
|
file:
|
|
state: absent
|
|
path: /lib/firmware/brcm/brcmfmac43430-sdio.raspberrypi,model-zero-w.clm_blob
|
|
|
|
- name: Delete the RPi3 firmware blob to avoid it crashing
|
|
file:
|
|
state: absent
|
|
path: /lib/firmware/brcm/brcmfmac43430-sdio.raspberrypi,3-model-b.clm_blob
|
|
|
|
- name: choose the right kernel version (bcm43455c0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/Makefile
|
|
backup: no
|
|
regexp: "KERNEL_VERSION = .*$"
|
|
replace: "KERNEL_VERSION = 5.10"
|
|
|
|
- name: choose the right kernel release (variable) (bcm43455c0)
|
|
lineinfile:
|
|
dest: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/Makefile
|
|
insertafter: "DRIVER_FOLDER_NAME = .*$"
|
|
line: "KERNEL_RELEASE = 5.10.103-v7+"
|
|
|
|
- name: choose the right kernel release (replace string) (bcm43455c0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/Makefile
|
|
backup: no
|
|
regexp: "shell uname -r"
|
|
replace: "KERNEL_RELEASE"
|
|
|
|
- name: make firmware patch (bcm43455c0)
|
|
shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/ && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: backup original firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/ && make backup-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: install new firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/ && make install-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
- name: install new firmware (bcm43455c0)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/brcmfmac43455-sdio.bin
|
|
dest: /lib/firmware/brcm/brcmfmac43455-sdio.bin
|
|
|
|
- name: make nexutil
|
|
command: chdir=/usr/local/src/nexmon/utilities/nexutil/ make
|
|
|
|
- name: make install nexutil
|
|
command: chdir=/usr/local/src/nexmon/utilities/nexutil/ make install
|
|
|
|
# - name: copy modified driver
|
|
# shell: "cd /usr/local/src/nexmon/patches/driver/brcmfmac_5.10.y-nexmon/ && cp brcmfmac.ko /lib/modules/5.10.103-v7+/kernel/drivers/net/wireless/broadcom/brcm80211/brcmfmac/brcmfmac.ko && depmod -a"
|
|
# args:
|
|
# executable: /bin/bash
|
|
|
|
- name: copy modified driver (everyone but RPiZW)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/driver/brcmfmac_5.10.y-nexmon/brcmfmac.ko
|
|
dest: /lib/modules/5.10.103-v7+/kernel/drivers/net/wireless/broadcom/brcm80211/brcmfmac/brcmfmac.ko
|
|
|
|
- name: ensure depmod runs on reboot to load modified driver (brcmfmac)
|
|
lineinfile:
|
|
dest: /etc/rc.local
|
|
line: "/sbin/depmod -a"
|
|
|
|
# To shrink the final image, remove the nexmon directory (takes 2.5G of space) post build and installation
|
|
- name: Delete nexmon content & directory
|
|
file:
|
|
state: absent
|
|
path: /usr/local/src/nexmon/
|
|
|
|
- name: Add pwnlog alias
|
|
lineinfile:
|
|
dest: /home/pi/.bashrc
|
|
line: "\nalias pwnlog='tail -f -n300 /var/log/pwn*.log | sed --unbuffered \"s/,[[:digit:]]\\{3\\}\\]//g\" | cut -d \" \" -f 2-'"
|
|
insertafter: EOF
|
|
|
|
- name: install bettercap caplets
|
|
make:
|
|
chdir: /tmp/caplets
|
|
target: install
|
|
when: capletsgit.changed
|
|
|
|
- name: add HDMI powersave to rc.local
|
|
blockinfile:
|
|
path: /etc/rc.local
|
|
insertbefore: "exit 0"
|
|
block: |
|
|
if ! /opt/vc/bin/tvservice -s | egrep 'HDMI|DVI'; then
|
|
/opt/vc/bin/tvservice -o
|
|
fi
|
|
|
|
- name: create /etc/pwnagotchi folder
|
|
file:
|
|
path: /etc/pwnagotchi
|
|
state: directory
|
|
|
|
- name: check if user configuration exists
|
|
stat:
|
|
path: /etc/pwnagotchi/config.toml
|
|
register: user_config
|
|
|
|
- name: create /etc/pwnagotchi/config.toml
|
|
copy:
|
|
dest: /etc/pwnagotchi/config.toml
|
|
content: |
|
|
# Add your configuration overrides on this file any configuration changes done to default.toml will be lost!
|
|
# Example:
|
|
# ui.display.enabled = true
|
|
# ui.display.type = "waveshare_2"
|
|
when: not user_config.stat.exists
|
|
|
|
# - name: append commented out parameters for usb_hat_c.py
|
|
# lineinfile:
|
|
# dest: /etc/pwnagotchi/config.toml
|
|
# line: "# main.plugins.ups_hat_c.enabled = true\n# main.plugins.ups_hat_c.label_on = true # show BAT label or just percentage\n# main.plugins.ups_hat_c.shutdown = 5 # battery percent at which the device will turn off\n# main.plugins.ups_hat_c.bat_x_coord = 140\n# main.plugins.ups_hat_c.bat_y_coord = 0"
|
|
# insertafter: EOF
|
|
|
|
#bizzarely changing the plugin code directly reverts to the old string
|
|
- name: Reconfigure auto-update to point to the scifijunk repo
|
|
replace:
|
|
dest: /usr/local/lib/python3.7/dist-packages/pwnagotchi/plugins/default/auto-update.py
|
|
backup: no
|
|
regexp: "evilsocket/pwnagotchi"
|
|
replace: "scifijunk/pwnagotchi"
|
|
|
|
- name: Delete unnecessary large folder to save space (/root/go)
|
|
file:
|
|
state: absent
|
|
path: /root/go
|
|
|
|
- name: Delete unnecessary large folder to save space (/root/.cache)
|
|
file:
|
|
state: absent
|
|
path: /root/.cache
|
|
|
|
- name: enable ssh on boot
|
|
file:
|
|
path: /boot/ssh
|
|
state: touch
|
|
|
|
- name: adjust /boot/config.txt
|
|
lineinfile:
|
|
dest: /boot/config.txt
|
|
insertafter: EOF
|
|
line: '{{ item }}'
|
|
with_items: "{{system.boot_options}}"
|
|
|
|
- name: adjust /etc/modules
|
|
lineinfile:
|
|
dest: /etc/modules
|
|
insertafter: EOF
|
|
line: '{{ item }}'
|
|
with_items: "{{system.modules}}"
|
|
|
|
- name: change root partition
|
|
replace:
|
|
dest: /boot/cmdline.txt
|
|
backup: no
|
|
regexp: "root=PARTUUID=[a-zA-Z0-9\\-]+"
|
|
replace: "root=/dev/mmcblk0p2"
|
|
|
|
- name: configure /boot/cmdline.txt
|
|
lineinfile:
|
|
path: /boot/cmdline.txt
|
|
backrefs: True
|
|
state: present
|
|
backup: no
|
|
regexp: '(.*)$'
|
|
line: '\1 modules-load=dwc2,g_ether'
|
|
|
|
- name: configure motd
|
|
copy:
|
|
dest: /etc/motd
|
|
content: |
|
|
(◕‿‿◕) {{pwnagotchi.hostname}}
|
|
|
|
Hi! I'm a pwnagotchi, please take good care of me!
|
|
Here are some basic things you need to know to raise me properly!
|
|
|
|
If you want to change my configuration, use /etc/pwnagotchi/config.toml
|
|
|
|
All the configuration options can be found on /etc/pwnagotchi/default.toml,
|
|
but don't change this file because I will recreate it every time I'm restarted!
|
|
|
|
I'm managed by systemd. Here are some basic commands.
|
|
|
|
If you want to know what I'm doing, you can check my logs with the command
|
|
tail -f /var/log/pwnagotchi.log
|
|
|
|
If you want to know if I'm running, you can use
|
|
systemctl status pwnagotchi
|
|
|
|
You can restart me using
|
|
systemctl restart pwnagotchi
|
|
|
|
But be aware I will go into MANUAL mode when restarted!
|
|
You can put me back into AUTO mode using
|
|
touch /root/.pwnagotchi-auto && systemctl restart pwnagotchi
|
|
|
|
You learn more about me at https://pwnagotchi.ai/
|
|
when: hostname.changed
|
|
|
|
# Ansible's apt module has an "autoclean" option but it only removes packages
|
|
# that can no longer be downloaded. Ansible v2.13 added the "clean" option
|
|
# which actually purges the apt cache, but that's newer than what we can
|
|
# install from the RasPiOS repos. Instead, we'll manually clean the cache.
|
|
- name: clean apt cache
|
|
command: "apt-get clean"
|
|
args:
|
|
warn: false
|
|
|
|
- name: remove dependencies that are no longer required
|
|
apt:
|
|
autoremove: yes
|
|
|
|
- name: enable services
|
|
systemd:
|
|
name: "{{ item }}"
|
|
state: started
|
|
enabled: yes
|
|
with_items: "{{ services.enable }}"
|
|
|
|
- name: disable unecessary services
|
|
systemd:
|
|
name: "{{ item }}"
|
|
state: stopped
|
|
enabled: no
|
|
with_items: "{{ services.disable }}"
|
|
|
|
- name: remove ssh keys
|
|
file:
|
|
state: absent
|
|
path: "{{item}}"
|
|
with_fileglob:
|
|
- "/etc/ssh/ssh_host*_key*"
|
|
|
|
handlers:
|
|
- name: reload systemd services
|
|
systemd:
|
|
daemon_reload: yes
|