FORUMS
Remove All Ads from XDA

Kali NetHunter for the Galaxy S5 (3.1.0)

1,491 posts
Thanks Meter: 6,147
 
Post Reply Email Thread


Welcome to the thread on Kali NetHunter for the Samsung Galaxy S5.

If you don't know what Kali NetHunter is, well, it's the entire Kali Linux operating system in a chroot on your phone, plus a bunch of awesome apps for executing exploits, fixing things, doing cool things. It goes on, I suppose.
I'm gonna be honest guys, I'm not a security person. When it comes to security, I'm more of a Paul Blart.
What I do know though, is that there is apt-get, and apt-get is life.

Find much more information here: https://github.com/offensive-securit...nethunter/wiki
The answer to all your questions, generally the answer is YES, IT CAN DO THAT.

The installer zip will add a few files (including busybox) to your /system partition, and install all of the NetHunter apps to your /data partition.
The chroot is located in /data/local, so you don't have to worry about your system partition being full. It's full read/write capable.
Understand that the zip will replace your current kernel with a completely different one.
This is necessary because most stock or custom kernels don't provide the drivers needed to operate most of Kali NetHunter's features.

These Kali NetHunter builds are designed and tested for TouchWiz 5.1, 6.0 & CyanogenMod 13.0.

DOWNLOAD

Current version: 3.1.0 (release, 2016-04-29)

Please be careful to download the right version for your device variant and ROM.

CyanogenMod 12.1 or any Android 5.x based AOSP ROM: lollipop
CyanogenMod 13.0 or any Android 6.x based AOSP ROM: marshmallow
TouchWiz 5.1: touchwiz-lollipop
TouchWiz 6.0: touchwiz-marshmallow

Download here: https://idlekernel.com/nethunter/nightly
Your device is: klte

Recommended install method: Use TWRP 3 for klte
Install kernel-nethunter-klte and nethunter-generic-armhf-kalifs-full-rolling zips in any order.

Kernel only installers are in the kernel-only directory inside each build directory. It might be a better idea to try and install that first and see if you can boot before flashing the entire NetHunter.
You can actually only install the kernel if you want to take advantage of its features without having to install the rest of NetHunter!

BEFORE INSTALLING

Do not flash the NetHunter update zip with a fresh data partition!
Most ROMs will wipe it clean on the first boot if you haven't completed the Android Setup Wizard yet, there's no need to wipe your ROM or data to try it out. I do advise backing up your data partition before flashing the zip though.
(this should no longer be possible now with added installation checks)

Please make sure your phone boots fine and runs fine before flashing NetHunter. It's confusing when people report bugs that exist in CyanogenMod by itself.

The Kali chroot and apps are installed on your data partition (in /data/local for chroot). To initialize the chroot and install Kali Linux, you need to start the Kali NetHunter app.

The NetHunter installer will automatically install SuperSU in system mode, which I consider to be more stable. Since NetHunter already modifies your system partition, there is no need to use systemless SuperSU anyways.

FULL INSTALL STEPS
  1. Boot into TWRP
  2. Flash kernel-nethunter-klte and nethunter-generic-armhf-kalifs-full-rolling zips in any order.
  3. Reboot into device
  4. Open the NetHunter app
  5. Let the NetHunter app finish setting everything up
  6. You're done!
UPDATING TO A NEWER BUILD

Going from 3.0.0 and up, all you have to do is flash the new build in recovery. On some ROMs you may need to wipe dalvik cache.

UPDATING YOUR ROM

To get all your NetHunter and SuperSU functions back after flashing a new ROM, just flash the new ~60 MB update-nethunter-klte zip in TWRP.

RUNNING WIFI PENETRATION TESTS

The internal WiFi chipset of the Galaxy S5 is not capable of running services which use monitor mode such as Wifite. For this, you will need to use a monitor mode capable WiFi adapter through a microUSB OTG adapter.
As for compatible adapters, I highly recommend the Alfa Networks AWUS036NEH (eBay) which uses the Ralink RT3070 chipset. There are currently no monitor mode supported Wireless-AC adapters available.

Once plugged in, you can run the command from Kali terminal to turn on your adapter:

[email protected]:~# ip link set wlan1 up

RAN INTO AN ISSUE OR BUG?

In order for me to help you, you have to at minimum reply with:
  • The link to the exact zip you downloaded
  • Your device model (it better be klte)
  • The name of the ROM you're flashing it on
  • The version and build date of the ROM you're flashing it on
  • A complete description of your problem
  • Optional: An audio recording of you reading this entire post
If your issue is with a specific app, it might be better to contact the developer of that app.

If your issue is during the installation (ex. flashing the NetHunter zip), then please collect a TWRP recovery.log for me.

If you found a problem and were able to fix it, and no one's mentioned it in the thread already, it would be kind to state the issue and your fix for others to make use of as well.

You can join me and the other NetHunter developers on IRC at the #nethunter room on freenode to more handily diagnose problems together.
I apologize, but I can't do house calls at this time.

KNOWN ISSUES
  • USB Keyboard & VNC - Google Keyboard, AOSP Keyboard, CM Keyboard do not work due to a depth bug, use Hacker's Keyboard as a workaround.
  • Terminal App - Full screen programs like nano or vi are unusable unless you use the resize command. (always type resize when opening a new terminal window)

THE KERNEL

The NetHunter kernel for the Samsung Galaxy S5 is based on nVidia's rel-24-sb-r1-1 kernel sources.
It has the following changes:
  • F2FS added using Jaeguek Kim's latest kernel.org:f2fs-stable sources (available on system/data/cache!)
  • UKSM - Ultra Kernel Same-page Merging support
  • Cortex-A15 & Neon-VFPv4 + -O2 compiler optimizations
  • NEON-asm kernel & sha/aes support
  • Compiled with Linaro's branch of GCC 4.9.4
  • Updated and enabled USB (OTG) Atheros, Ralink, and Realtek WiFi drivers
  • Simple IO (SIO) scheduler as default IO scheduler (updated for modern kernels)
  • USB HID Gadget keyboard support
  • mac80211 packet injection support
  • TCP congestion control updates and fixes
  • Westwood or Cubic (default)
  • DriveDroid compatibility
  • Some small security fixes (pipe, keyring, etc)
  • Additional drivers built in for the full Kali NetHunter experience

SCREENSHOTS



DEVELOPMENT

For the kernel included in NetHunter for the Samsung Galaxy S5, you can find the sources here: https://github.com/jcadduono/nethunter_kernel_klte

See the Kali NetHunter installer source here: https://github.com/offensive-security/kali-nethunter
See the Kali NetHunter app source here: https://github.com/offensive-security/nethunter-app

DISCLAIMER

I am not affiliated with Offensive Security. They seem like cool guys though.
I'm not even a novice when it comes to security and penetration. I'm just a simple system administrator with a passion for breaking Android.
Please restrain yourselves from asking me security related questions.

NOT SO MUCH AS SEEN ON MR. ROBOT, BUT PROBABLY EVEN BETTER



XDA:DevDB Information
Kali NetHunter for the Galaxy S5, Device Specific App for the Samsung Galaxy S 5

Contributors
jcadduono, The Kali NetHunter team
Source Code: https://github.com/jcadduono/kali-nethunter


Version Information
Status: Stable
Current Stable Version: 3.1.0
Stable Release Date: 2016-04-29

Created 2016-01-22
Last Updated 2016-04-29
The Following 29 Users Say Thank You to jcadduono For This Useful Post: [ View ]
 
 
22nd January 2016, 05:20 AM |#2  
The~Skater~187's Avatar
Senior Member
Flag Niantic
Thanks Meter: 1,613
 
More
Just want to be the first to say thank you for this. I have nethunter on my grouper and love it. Now I can have it on my S5.
Quick question before I start, I'm currently running VRToxin 6.0.1 with a modified version of their kernel. What is the best method if installing this?

Shot from my Fusion-KToonsz-Powered SMG-900P
The Following User Says Thank You to The~Skater~187 For This Useful Post: [ View ] Gift The~Skater~187 Ad-Free
22nd January 2016, 04:23 PM |#3  
jcadduono's Avatar
OP Recognized Developer
Flag Thunder Bay
Thanks Meter: 6,147
 
Donate to Me
More
Hey guys, had a mod close the previous thread so I could add it to DevDB and clean up the posts from when the kernel was broken.

Quote:
Originally Posted by The~Skater~187

Just want to be the first to say thank you for this. I have nethunter on my grouper and love it. Now I can have it on my S5.
Quick question before I start, I'm currently running VRToxin 6.0.1 with a modified version of their kernel. What is the best method if installing this?

Shot from my Fusion-KToonsz-Powered SMG-900P

Okay, in that case (assuming you want to keep that kernel), then you just need to:
  1. Do a full unroot of SuperSu or whatever root method you are currently using
  2. Install any generic-armhf package from the NetHunter nightly downloads
  3. Wipe dalvik-cache
  4. Boot up
This will modify and install everything except your kernel zImage.
You will not be able to use OTG WiFi, Wifite, HID keyboard attacks unless your current kernel supported them. It will pretty much just be a chroot.
Alternatively, you can:
  1. Do a full unroot of SuperSu or whatever root method you are currently using
  2. Install the kltespr-marshmallow package which is for AOSP based Marshmallow from the NetHunter nightly downloads
  3. Wipe dalvik-cache
  4. Boot up
This will also replace your kernel zImage, you will have full NetHunter features - but you will lose additional features of your current kernel.

@crazyraiga: your logs show that system is mounted read-only, everything will fail in such a case. I'll add a check to the installer and refuse install in that case!
Update: 20160122-1305 build now checks if it can write to /system and /data before running the installer.
The Following 5 Users Say Thank You to jcadduono For This Useful Post: [ View ]
22nd January 2016, 08:05 PM |#4  
Member
Flag Vilnius
Thanks Meter: 7
 
More
OK. First I've installed kernel-only and everything was fine. Then I installed update zip for TouchWiz and stuck on boot animation. Then I reflashed my ROM and found all NetHunter apps installed already. So I flashed kernel-only again and now when trying to install chroot geting following:
Code:
CreateChroot >> Error:
java.lang.RuntimeException
java.lang.RuntimeException
Is it possible to fix?
My device: klte
ROM: Revolution S5 v5.3

UPDATE
I've just flashed full chroot zip and everything seems OK. But kali mode in terminal not working: terminal just makes toast '1)No title' and crashes.
The Following User Says Thank You to vykintazo For This Useful Post: [ View ] Gift vykintazo Ad-Free
22nd January 2016, 09:34 PM |#5  
The~Skater~187's Avatar
Senior Member
Flag Niantic
Thanks Meter: 1,613
 
More
Quote:
Originally Posted by jcadduono

Hey guys, had a mod close the previous thread so I could add it to DevDB and clean up the posts from when the kernel was broken.


Okay, in that case (assuming you want to keep that kernel), then you just need to:

  1. Do a full unroot of SuperSu or whatever root method you are currently using
  2. Install any generic-armhf package from the NetHunter nightly downloads
  3. Wipe dalvik-cache
  4. Boot up
This will modify and install everything except your kernel zImage.
You will not be able to use OTG WiFi, Wifite, HID keyboard attacks unless your current kernel supported them. It will pretty much just be a chroot.
Alternatively, you can:
  1. Do a full unroot of SuperSu or whatever root method you are currently using
  2. Install the kltespr-marshmallow package which is for AOSP based Marshmallow from the NetHunter nightly downloads
  3. Wipe dalvik-cache
  4. Boot up
This will also replace your kernel zImage, you will have full NetHunter features - but you will lose additional features of your current kernel.

@crazyraiga: your logs show that system is mounted read-only, everything will fail in such a case. I'll add a check to the installer and refuse install in that case!
Update: 20160122-1305 build now checks if it can write to /system and /data before running the installer.

So I don't need the kltespr-marshmallow-update.zip?

Shot from my Fusion-KToonsz-Powered SMG-900P
22nd January 2016, 09:41 PM |#6  
jcadduono's Avatar
OP Recognized Developer
Flag Thunder Bay
Thanks Meter: 6,147
 
Donate to Me
More
Quote:
Originally Posted by The~Skater~187

So I don't need the kltespr-marshmallow-update.zip?

Shot from my Fusion-KToonsz-Powered SMG-900P

If you don't want USB OTG WiFi or HID keyboard gadget support or want to keep your current kernel, then no you don't need that.
Generic-armhf installer will work on ANY armv7 device, not just S5. I put a lot of work into all this. :P
The Following 3 Users Say Thank You to jcadduono For This Useful Post: [ View ]
23rd January 2016, 04:02 PM |#7  
Member
Flag Vilnius
Thanks Meter: 7
 
More
Experiencing internal memory drain: memory dissapears in seconds.
24th January 2016, 06:19 AM |#8  
jcadduono's Avatar
OP Recognized Developer
Flag Thunder Bay
Thanks Meter: 6,147
 
Donate to Me
More
Quote:
Originally Posted by vykintazo

Experiencing internal memory drain: memory dissapears in seconds.

need more info this is really generic or misleading please read the OP
The Following User Says Thank You to jcadduono For This Useful Post: [ View ]
24th January 2016, 12:13 PM |#9  
Member
Thanks Meter: 16
 
More
i tried it earlier and it works on cm13 no dualbooting. too bad i dont have external wifi adpter. gonna buy soon. i first installed kernel, then update marsmallow, then chroot full. have not gone through all of the apps.

one thing though i cant screenshot thru home and power buttons. i dont know if cm13 related or kali.
24th January 2016, 01:56 PM |#10  
Hayatzada's Avatar
Senior Member
Flag Lahore
Thanks Meter: 66
 
More
great man was waiting for this a long time. can i install it on bless rom 6.0?
24th January 2016, 04:16 PM |#11  
jcadduono's Avatar
OP Recognized Developer
Flag Thunder Bay
Thanks Meter: 6,147
 
Donate to Me
More
Quote:
Originally Posted by Hayatzada

great man was waiting for this a long time. can i install it on bless rom 6.0?

It should work on any ROM that is AOSP / Slim / CyanogenMod based. Basically as long as it isn't TouchWiz it *should* work. I don't know what bless rom is.
Post Reply Subscribe to Thread

Guest Quick Reply (no urls or BBcode)
Message:
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes