Portable social-engineering LAN tool for automated payloads and wired audits — based on Luckfox Pico Max
Fox-Jack is a low-cost, DIY social engineering LAN implant inspired by the Hak5 SharkJack.
Designed for payload delivery, opportunistic wired auditing, and SE engagements, it features DIP-switch mode control, RGB LED feedback, and USB gadget interfaces — all powered by the Luckfox Pico Max (RV1106G3).
-
USB gadget function: RNDIS over USB
-
100 Mbps onboard GMAC Ethernet
-
Based on Luckfox Pico Max (RV1106G3)
-
Optional open-source extension board PCB:
- 300mAh LiPo battery support (~1–2hr uptime, longer with bigger battery)
- NeoPixel RGB LED status indicator
- 2-position DIP switch to select payloads
-
Optional 3D printable cases
-
Rootfs: Buildroot
-
Boot: SD card
-
U-Boot: Luckfox official SDK
-
🧰 Luckfox Pico Official SDK
-
🔨 Image build scripts
-
🧱 3D-printable case designs
-
🗒 Optional extension board:
- KiCad project
- Gerber files
- BOM
| Item | Qty | Link |
|---|---|---|
| Luckfox Pico MAX (256 MB RAM version only) | 1 | Amazon |
| M2x0.4 Heat-Set Thread Insert (D3×H2.5) | 2 | Amazon |
| M2x0.4 Heat-Set Thread Insert (D3×H2) | 2 | Amazon |
| M2x0.4 Ultra-Low Head Torx Screws (3mm) | 2 | Amazon |
| M2x0.4 Hex Socket Head Cap Screws (10mm) | 2 | Amazon |
| DIP Switch 1 Positions | 1 | Amazon |
| 302040 Lipo 3.7v battery | 1 | Amazon |
Note
🔧 PCB & BOM: all files in the pcb/ directory
-
28 AWG electrical wire
-
Soldering tools:
- Solder
- Solder iron
- Solder paste
- Solder flux
- Hot air gun (for SMD components on extension board)
Assembly Notes: README
see: README
-
Create a Debian/Ubuntu/Kali (or other Debian-based) Linux environment (You can use a VM or physical machine — author uses a Debian laptop)
-
Install required dependencies:
sudo ./dep.sh sudo apt update sudo apt install -y docker.io kconfig-frontends make cmake automake autoconf libtool libtool-bin rsync
-
Clone the repository:
git clone https://github.com/KaliAssistant/Fox-Jack.git
-
Navigate into the repo:
cd Fox-Jack -
Run the build script:
sudo ./build.sh all
You will see the SDK's lunch menu:
You're building on Linux Lunch menu...pick the Luckfox Pico hardware version: [4] RV1106_Luckfox_Pico_Pro_Max ... Which would you like? [default: 0]: 4 Lunch menu...pick the boot medium: [0] SD_CARD Which would you like? [default: 0]: 0 Lunch menu...pick the system version: [0] Buildroot Which would you like? [default: 0]: 0
Note
✅ Just enter 4 / 0 / 0 — only Luckfox Pico Max is supported currently.
You can tweak build options using the following:
-
Buildroot menuconfig:
sudo ./build.sh luckfox buildrootconfig
-
Kernel menuconfig:
sudo ./build.sh luckfox kernelconfig
-
Foxjack extra config (e.g., SSH key, services):
sudo ./build.sh foxjackconfig
Note
Security Note:
Default root password is foxjack, but SSH password login is disabled (PermitRootLogin prohibit-password) for security.
Add your public key via foxjackconfig.
If you need password login, modify /etc/ssh/sshd_config in rootfs manually.
To access via USB RNDIS, make sure your host PC has a static IP in the same subnet as defined in foxjackconfig.
Once the build is complete, flash the image:
sudo ./build.sh sdflashYou'll see:
WARNING: Check the SD card dev path! blkenvflash can overwrite your system drives!
Enter your SD card dev path (/dev/sxx)... >
Warning
Be careful! Enter the correct SD card device path to avoid overwriting your OS drive.
Fox-Jack supports 4 modes, selected via a 2-position DIP switch:
| Mode | SW1 | SW2 | Description |
|---|---|---|---|
| 0 (debug) | 0 | 0 | Dev/debug mode |
| 1 | 1 | 0 | Payload 1 |
| 2 | 0 | 1 | Payload 2 |
| 3 | 1 | 1 | Payload 3 |
Read via GPIO:
#define SW1_PIN 67 // gpio2_a3_d (pin 27)
#define SW2_PIN 66 // gpio2_a2_d (pin 26)In debug mode (SW1=0, SW2=0):
-
USB gadget provides RNDIS Ethernet + Mass Storage
-
Payloads can be edited directly from host PC
-
LOOT (results, passwords, hashes) is saved in:
<UMS>/loot/
see README
Payload filenames must follow this format:
E????-name.payload
E????is a 4-digit payload ID (e.g.,E0000)nameis a short, descriptive label
Example:
E0000-arp-scan.payload
Fox-Jack is intended for authorized security testing, educational, and research purposes only.
Use of this device without explicit permission on networks or systems you do not own or have authorization to test is illegal and unethical.
The author and contributors are not responsible for any misuse or damage caused by this tool.
Please ensure you comply with all applicable laws and obtain proper consent before deployment.
Fox-Jack is open-source and released under the GNU General Public License v3.0 (GPLv3). You are free to use, modify, and redistribute under the terms of this license.
See the LICENSE file for full details.