Meet the NetGotchi: A New Firmware for ESP32 boards Packed with Defensive Tools

Sam's eXperiments logs

10 Sept 202408:55

Summary

TLDRThis video tutorial guides viewers through installing the NetGOI firmware on an ESP32 project, focusing on its defensive capabilities like network intrusion detection. It simplifies the setup by eliminating the need for a micro USB cable, offering a complete package for under a dollar. The video demonstrates downloading the source from GitHub, installing necessary libraries in Arduino IDE, and flashing the firmware. It also covers configuring the device through the WiFi Manager dashboard, scanning for network vulnerabilities, and setting up an FTP server. The presenter expresses enthusiasm for the project's potential as a compact, user-friendly network scanner and honeypot.

Takeaways

🌐 The video demonstrates installing the NetGuard firmware on an ESP32 project, which is designed for network monitoring and defense.
🔧 The NetGuard project offers features like network intrusion detection and the capability to act as a honeypot.
💻 The setup process begins with downloading the latest source code from GitHub and then proceeding to the Arduino IDE for flashing the board.
📚 Before flashing, it's necessary to install all the required dependencies and libraries in the Arduino IDE.
📁 The script instructs viewers to copy specific library folders for the ADF, LCD, and FTP server, depending on the ESP model used.
🖥️ For each library, the video mentions the need to use the Arduino Library Manager to search and install them if not already installed.
🔄 The script describes the process of uploading the NetGuard sketch to the ESP device, which involves compiling and then uploading the firmware.
📡 After uploading, the device is wired with a screen, and the video shows the initial setup screen inviting users to configure NetGuard.
🛠️ The video showcases the use of the WiFi Manager dashboard for configuring the device's network settings.
🔎 The script details the process of scanning for network vulnerabilities and demonstrates the detection of an open SSH server.
📊 The video concludes with the presenter expressing satisfaction with the project's ease of use and installation, and a call for constructive feedback.

Q & A

What is the main purpose of the NetGOI project discussed in the video?
-The NetGOI project is primarily on the defensive side, offering intrusion detection features and the ability to act as a honeypot.
What are the advantages of using NetGOI according to the video?
-NetGOI is advantageous because it doesn't require a micro USB cable for programming, and it includes everything needed for less than one dollar.
Where does one need to go to download the latest source for NetGOI?
-The latest source for NetGOI can be downloaded from its GitHub page.
What software is used to flash the NetGOI firmware onto the board?
-Arduino IDE is used to flash the NetGOI firmware onto the board.
What are the necessary steps before flashing the NetGOI firmware?
-Before flashing, one needs to install all the dependencies and ensure the correct libraries are installed in the Arduino IDE.
How does one install the required libraries for NetGOI in Arduino IDE?
-One needs to copy the library names from the NetGOI GitHub page and install them using the library manager in Arduino IDE.
What additional hardware is needed to use NetGOI besides the ESP board?
-An additional requirement is a screen, which is connected to the board to display the NetGOI interface.
How does the video demonstrate the configuration of NetGOI?
-The video demonstrates the configuration by connecting the board to the WiFi Manager dashboard and setting up the actual test Wi-Fi.
What features can be tested using NetGOI as shown in the video?
-Features that can be tested include scanning for vulnerable hosts, running a ping test, and checking the time synchronization.
What issues were encountered while testing the FTP server functionality of NetGOI?
-The FTP server that was started was not detected during the scan, and the video creator was unsure if anything was done wrong or if the scan happened infrequently.
What feedback does the video creator seek at the end of the demonstration?
-The video creator seeks constructive feedback, as they find the NetGOI project promising for its honeypot or network scanner capabilities in a small form factor.

Outlines

00:00

🛠️ Setting Up ESP32 with NetGuard IoT Firmware

This paragraph introduces a tutorial on installing NetGuard IoT firmware on an ESP32 project. The video emphasizes the defensive capabilities of NetGuard, such as intrusion detection and acting as a honeypot. The presenter highlights the convenience of the project, requiring minimal equipment like a micro USB cable and a small screen. The process begins with downloading the latest source code from GitHub, followed by setting up the Arduino IDE with necessary libraries. The presenter guides viewers through installing dependencies and libraries specific to the ESP32 or ESP8266, and the ADF, LCD, and FTP server. The tutorial continues with uploading the firmware to the ESP8266, configuring Wi-Fi, and demonstrating the initial interface of the NetGuard IoT, including autoconnect features and the Wi-Fi Manager dashboard.

05:03

🔍 Testing NetGuard IoT with Network Scanning

The second paragraph details the testing phase of the NetGuard IoT setup. The presenter uses another device to create a bridge between a wired network and an access point, simulating a network environment. The NetGuard IoT is then used to connect to this network, and the presenter demonstrates how it scans for vulnerabilities and services. The video shows the NetGuard IoT detecting an SSH server but not an FTP server that was intentionally set up, indicating potential issues with the scanning functionality. The presenter also mentions the lack of response from certain buttons and controls within the NetGuard interface, suggesting areas for improvement. Despite these challenges, the presenter expresses enthusiasm for the project's potential as a compact, user-friendly network scanner and honeypot, complete with a distinctive visual design.

Mindmap

Keywords

💡ESP32

ESP32 is a low-cost, low-power system on a chip (SoC) with integrated Wi-Fi and dual-mode Bluetooth BLE. In the context of the video, it is used as the main microcontroller for the project, highlighting its capabilities for IoT applications. The script mentions installing a new project on the ESP32, indicating its role as the central component for the net firmware.

💡Firmware

Firmware refers to the software that provides the low-level control for a device's specific hardware. In the video, the term is used to describe the 'net firmware' being installed on the ESP32, which is a defensive tool for network security, emphasizing the importance of firmware in device functionality and security.

💡Honeypot

A honeypot in cybersecurity is a decoy computer system or network set up as a trap to lure cyber attackers and study their methods. The video discusses the net firmware's ability to act as a honeypot, showcasing its defensive capabilities to detect and potentially mitigate cyber threats.

💡Arduino IDE

Arduino IDE is an integrated development environment (IDE) for programming hardware like the ESP32. The script mentions using Arduino IDE to flash the net firmware onto the ESP32, which illustrates the IDE's role in the development and deployment process for IoT projects.

💡Dependencies

In software development, dependencies are external libraries or modules that a program relies on to function. The video script describes the need to install dependencies in Arduino IDE before flashing the firmware, highlighting the importance of these libraries for the proper operation of the net firmware.

💡Libraries

Libraries in programming are collections of pre-written code that can be used in a program. The script refers to installing libraries such as ADF, LCD, and FTP server, which are necessary for the ESP32 to perform its functions, emphasizing the modular nature of software development.

💡Autoconnect AP

Autoconnect AP refers to an Access Point (AP) that automatically connects devices to a network. The video script mentions using an autoconnect AP for configuring the net firmware, which simplifies the setup process and allows for easier initial configuration of the device.

💡WiFi Manager

A WiFi Manager is a software component that handles the connection and management of Wi-Fi networks. The video describes connecting to the WiFi Manager dashboard, which is part of the net firmware, indicating its role in managing network connections for the ESP32.

💡Ping

Ping is a network administration software used to test the reachability of a host on an Internet Protocol (IP) network. The script mentions the use of ping in the net firmware to test connectivity, which is a common method for verifying network functionality and the health of a connection.

💡FTP Server

An FTP (File Transfer Protocol) server is a computer system that allows users to transfer files using the FTP protocol. The video discusses the setup of an FTP server as part of the net firmware's capabilities, which could be used for file transfers or as a honeypot to detect unauthorized access attempts.

💡Vulnerability Scanning

Vulnerability scanning is the process of scanning a computer system or network to identify potential vulnerabilities that could be exploited by malicious actors. The video script mentions the net firmware's ability to perform vulnerability scanning, which is a key feature for network security assessment.

Highlights

Installing a new ESP32 project with net firmware for defensive capabilities.

The net firmware offers intrusion detection features and the ability to act as a honeypot.

The project is praised for its ease of use, requiring no additional hardware like a micro USB cable.

Everything needed for the project can be obtained for less than one dollar.

The process starts by downloading the latest source from the GitHub page.

Arduino IDE is used to flash the board after downloading the source.

Dependencies must be installed before flashing the net firmware.

Correct libraries need to be installed in the Arduino IDE for the firmware to work.

The dip file should be opened to view the required libraries for specific boards or components.

Folders containing libraries for ADF, LCD, and FTP server are mentioned.

Instructions on copying library folders for different operating systems are provided.

The Arduino IDE's library manager is used to install the required libraries.

The net GOI .ino file is opened, and all necessary files are present in the same folder.

The upload process compiles the sketch and uploads it to the ESP8266.

The Alit gfix button and the ntp client are installed during the process.

The screen is wired to the board, and the net GOI interface is displayed.

The board is flashed and connected to the screen, showing an invitation to configure the net GOI.

The WiFi Manager dashboard is accessed through the net GOI interface.

The INF button provides detailed information about the chip.

The net GOI records the screen and displays animations during the setup.

The net GOI is used to connect to a Wi-Fi network and run tests to reach online servers.

The net GOI detects an SSH server but not an FTP server that was started during the test.

The user is unsure if the net GOI alert or host data information functions are working correctly.

The user expresses hope for constructive feedback on the promising project.

The user thanks viewers for watching and encourages them to stay tuned for new experiments.