Re: BackTrack 5 (arm) released
 

Boot in Maemo and use easy debian partition (not IMAGE, image is extracted to new partition) AS a chroot :)

You use it exact same way as Easy Debian image, with difference that ED is extracted to partition (not inside image) and performance is MUCH better.

Depending on speed of SD card, extracted image can be faster on SD or on eMMC - i don't care, just use it inside eMMC, cause i got SD class 2.

Anyway, even on SD class 2, access is much faster on native partition, than inside image.

same apply to backtrack.

Re: BackTrack 5 (arm) released
 

Uploading img as i type :)
Will post a howto when finished later.
I will make a howto for the Maemo side, since i want to look into scripts on Nitdroid side.
Dont know why, i like the nitdroid version more.

Re: BackTrack 5 (arm) released
 

Here is how i did it :

(Be sure you have rootsh & easy-chroot)
Everything typed in terminal is blue
- Put the bt5.img anywhere (i did it in /home/user/Mydocs/bt5, so rest of the howto is based on that but can be changed)
- open Terminal
- sudo gainroot
- mkdir /mnt/bt5 (needs to be done only first time to create the folder)
- qchroot /home/user/Mydocs/bt/bt5.img /mnt/bt5/ (when you see root@chroot you are good to go)
- export USER=root
- vncpasswd (Needs to be done once for setting up a password)
- vncserver -geometry 800x470
- startvnc
Now go back to open VNC and leave terminal open in background
In VNC use this settings :
The adress is 127.0.0.1:590x
x Is the number you see when you typed "startvnc" inside BT5. You will see something like this :
"Log file is /home/user/.vnc/Nokia-N900:x.log"
Mine was "Log file is /home/user/.vnc/Nokia-N900:1.log", so i have 127.0.0.1:5901
Enter password you choosed before, log in have fun.
When done and VNC is closed, do this to shutdown BT5:
Go back to opend terminal
- stopvnc
- exit
- qumount /mnt/bt5
- exit
- exit

Hope i did not miss something, will put the link with the img as soon as it is up (bout 1h30 left)
Will be away until tonight, hope it works.

Re: BackTrack 5 (arm) released
 

Thanks for your hard work superdump but is it usable ?
and what are the changes in the image you are uploading

Re: BackTrack 5 (arm) released
 

Hi,
Good stuff. Thanx!

Do you need the NeoPwn drivers to do anything with this? Do you need one of the custom kernels to use it?

Re: BackTrack 5 (arm) released
 

Link to image
It is the original img, just resized to work on vfat.
Edit : Lol it could be that there is a password for unzipping the img. If so, its maemo .
Had tested 7zip with password.

Re: BackTrack 5 (arm) released
 

Just the plain img. Nothing needed to get BT5 up and running. I will maby have a look what can be done when i have it running the way i want it in nitdroid. I use nitdroid more then maemo.Just made this for you guys to play around.

Re: BackTrack 5 (arm) released
 

So it will inject packets with just this image?

Re: BackTrack 5 (arm) released
 

Dont think so. Please tell me somebody that im wrong :p
Looks like a flu is coming to hit me :mad:
I dont hope so, but i dont think that i will test much more the next days.
Maby maxxdout will find something to make it better till im fine again.
So long

Re: BackTrack 5 (arm) released
 

maybe packetinjection works in maemo and not in NITdroid as when you chroot the maemo kernel is still used which contains also the packet injection drivers. Assuming you have power-kernel 47 or 46wl1.
or am I wrong, I almost dont know anything about chrooting, except its running an OS mounted to some point in another OS

Else I am goint to look at easy debian and make my own image with much bt5 tools included and will post with noob-friendly instructions, but since I am a noob too it can take a little while

Re: BackTrack 5 (arm) released
 

@SuperDumb
Thank you for your guide, works like a charm (a tiny typo on "Export USER=root" command, since it seems its case sensitive and 'export' does the trick)!
Have you tried typing anything in BT? N900 keyboard doesnt seem to work as its supposed to, i m guessing it has something to do with keymappings.

Re: BackTrack 5 (arm) released
 

i'm experiencing a problem.
Unzipped archive with 7zip and copy bt5.img to recommended folder.
But now seeing following error, what is happening & how can i fix it?

/mnt/bt5 # qchroot /home/user/MyDocs/bt5/bt5.img /mnt/bt5/
..stripping trailing slash...
Mounting...
using image file: /home/user/MyDocs/bt5/bt5.img
fs type is img
Don't know img: Using ext2 file system
Using ext2 file system
mounting /home/user/MyDocs/bt5/bt5.img on loop
.../home/user/MyDocs/bt5/bt5.img mounted on loop0
.
..
...
....
mount: mounting /var/run/pulse on /mnt/bt5/var/run/pulse failed: No such file or directory
Everything set up, running chroot...
chroot: cannot execute /bin/sh: Exec format error
/mnt/bt5 # cd
/home/user # qchroot /home/user/MyDocs/bt5/bt5.img /mnt/bt5/
..stripping trailing slash...
/mnt/bt5 has a qmount already!
/home/user/MyDocs/bt5/bt5.img already mounted on /mnt/bt5...
Everything set up, running chroot...
chroot: cannot execute /bin/sh: Exec format error
/home/user #

Re: BackTrack 5 (arm) released
 

well found an unrelated post that may explain why this is happening:
http://talk.maemo.org/showpost.php?p...3&postcount=22

this was in response to this:
http://talk.maemo.org/showpost.php?p...2&postcount=19

resuming = bad img because of missing files

Re: BackTrack 5 (arm) released
 

The img, if downloaded correcty from the link SuperDump gave, works like a charm. Try downloading again in case something went wrong.

Re: BackTrack 5 (arm) released
 

how did you extracted it?

Re: BackTrack 5 (arm) released
 

On windows, winrar did the job

Re: BackTrack 5 (arm) released
 

just re-downloaded (deleted old files) and using 7zip unziped it in windows 7 and copied it accross via mas storage but same problem.

gone try again with winrar

Re: BackTrack 5 (arm) released
 

Cant think of anything that might causing this. Maybe try with a downloader, jdownloader is a good choice.
MD5 of the img currently in my N900
0e1211c5ba7ba3debe1c472e5a0e5b96

Re: BackTrack 5 (arm) released
 

no joy with winrar twice either.

something is broken in the img

Re: BackTrack 5 (arm) released
 

Nothing is wrong with the image archive. You're not extracting it properly or you didn't fetch the entire archive.

I'm not able to get to a desktop, however. The VNC daemon fires up just fine, but X server seems to be stuck at the checkerboard, indicating no WM has started.

Re: BackTrack 5 (arm) released
 

Where can I get this package ? There is a x11vnc but this package has no vncpasswd or comes the vncpasswd from the bt5.img ?

Re: BackTrack 5 (arm) released
 

Getting the same error as above, "mount: mounting /var/run/pulse on /mnt/bt5/var/run/pulse failed:", tried winrar and 7zip.

7z file:
CRC32: 3152AB1A
MD5: 4F378F01B35B598D0B7F7B8177499CB2
SHA-1: 6647B06B741123F6DEF998B1F258308A6C4E4868

bt5.img:
CRC32: EA4D18A8
MD5: 0E1211C5BA7BA3DEBE1C472E5A0E5B96
SHA-1: 5909E268486B1D7018B1CF0CDA8A6B374C2CCE33

Re: BackTrack 5 (arm) released
 

well at least i'm not going mad.

I will try from a diferent machine or vm in case that has something do with and report back.

Re: BackTrack 5 (arm) released
 

Again, if someone want it to work faster (better performance), don't use image, but reformat Your internal eMMC and divide a separate partition for backtrack. i'll repost SuperDumb's instructions here, (so all credits except changes goes to him) with new things and things changed to get it working on native partition written in RED:

(Be sure you have rootsh & easy-chroot)
- extract bt5 image to Your chosen partition. In our example, it will be fourth partition on eMMC, so path to it is:
/dev/mmcblk0p4
- open Terminal

root

- mkdir /mnt/bt5 (needs to be done only first time to create the folder)
- qchroot /dev/mmcblk0p4 /mnt/bt5/ (when you see root@chroot you are good to go)
- export USER=root
- vncpasswd (Needs to be done once
for setting up a password)
- vncserver -geometry 800x480
- startvnc
Now go back to open VNC and leave terminal open in background
In VNC use this settings :
The adress is 127.0.0.1:590x
x Is the number you see when you typed "startvnc" inside BT5. You will see something like this :
"Log file is /home/user/.vnc/Nokia-N900:x.log"
Mine was "Log file is /home/user/.vnc/Nokia-N900:1.log", so i have 127.0.0.1:5901
Enter password you choosed before, log in have fun.
When done and VNC is closed, do this to shutdown BT5:
Go back to opend terminal
- stopvnc
- exit
- qumount /mnt/bt5
- exit
- exit

If those was helpful to You, don't mind hitting "Thanks". Not that i did extensive testing, thought, because I'm totally not interested in backtrack mobile - all of it's "functionalities" and much more can be achieved by just using Easy Debian and installing proper packages.

Also, if anyone interested, injection drivers should work with bt (if bt developers didn't screwed something badly) inside chroot - there is no reason why it shouldn't. anyway, it works in Easy Debian.

Have fun, kids ;)

Re: BackTrack 5 (arm) released
 

Just a tip. After using SuperDump's way and exiting terminal, i couldnt get media player to play anything (something about audio in use)and all calls were working only via speaker, no matter if i had earphones on or if i tried to disable speaker mode.
Fire up conky or plain terminal and get xtightvnc's PID (if you dont have conky, use 'top' in terminal). After getting the PID just enter
SuperDump any clues on the keyboard thing?All my keys are messed up, tried 2 different vnc viewers on N900 and 1 from my computer,still no luck. Any idea what's wrong?

Re: BackTrack 5 (arm) released
 

no luck, repeated process in another pc and same thing.
something is wrong with content of .img file i think

Re: BackTrack 5 (arm) released
 

Tried using Xephyr instead of vnc?

Re: BackTrack 5 (arm) released
 

so backtrack will make my Skype calls more clear and less choppy ??

Re: BackTrack 5 (arm) released
 

Where are you getting Skype out of all this?

Re: BackTrack 5 (arm) released
 

on my n900 is no vncpasswd

Re: BackTrack 5 (arm) released
 

As i told, this was just a img to toy around for you guys.
Since you get problems, i can look and see if i find something.Dont expect to much, im not a unix pro. I will make a new img tongight to see if your errors will go away when mounting. Lokking for a keyboard fix.
What i found out :
When set vncserver -geometry 800x470 is fits the N900 screen. No scrolling anymore.
vncpasswd should be done inside the chrooted bt5

Re: BackTrack 5 (arm) released
 

wow superdumb you went nuts on this! good work. ill probably give your image a try. still when i get home tonight ill post the steps on doing it to an ext2 formatted sd and chrooting (incase anyones interested) its nice for me to have my install on sd cause i also own an openpandora and i could just swap my sd right over to it and see if it will boot.

Re: BackTrack 5 (arm) released
 

There's similar work done with xperia here
I ve downloaded their img too, (about 200megs smaller, no idea why). Gave it a try, again with Superdump's walkthrough. Its working, kinda slower though. Keyboard thing still there. Maybe those with problem might want to take a shot at it.

Re: BackTrack 5 (arm) released
 

Hi superdumb I have just checked this thread and wanna ask... Since you just said you just reduced the image and nothing else does backtrack really work? or is it just a simple proof of concept to show that it is capable of running on n900 but without any driver support or useable for pentesting?

Re: BackTrack 5 (arm) released
 

Havent tried injection yet but everything i ve tried since yesterday is working like its supposed to.

Re: BackTrack 5 (arm) released
 

Tried Xephyr instead of VNC?

Re: BackTrack 5 (arm) released
 

well im a noob but i want to learn
so i follow this guide and everithing is fine

some remarks for noobs like me
1) u have to pre install rootfs easy-chroot and a vnc client ( i choose presence vnc ) and p7zip-full
2) the dowload and unzip take a long time cos I have only my dearer N900 to connect to internet and as computer
4) I follow all the steps from this guide and i have some errors that i have succesfully resolve by a little bit of googling around
5) I had also 1 error from the image : missing directory var/lib/pulse or whatever but i just mkdir this ( in chroot) and fixed
6) the step vncserver -geometry 800x470 : its better to edit the file /usr/bin/startvnc and change it there)

ok now i have that seems a ubuntu look alike ( thanks to the op and mr qole) with pentesting environment). I have to figure now how to play with all the stuff and how i can inject packets
thanks superdumb

Re: BackTrack 5 (arm) released
 

Νop,havent tried yet since vnc is working all right.
Think there ll be any advantages in that from the keyboard problem perspective?

Re: BackTrack 5 (arm) released
 

Using Xephyr on my laptop ive never had keyboard problems. I mean, its worth a try? Im copying the image over to my laptop to try shrink it because I dont have an sd card >4gb

Re: BackTrack 5 (arm) released
 

Will give it a shot then!Thank you
As far as the img size, no need to get a >4gb card, get the img file from SuperDump's link with the resized img or the one i posted from the xperia boards. That what i m using.