What can you do with a low-cost Linux device that has minimal flash memory and just a single GPIO pin? While it may seem limited, sometimes the key goal of your project is simply to gain root access, which shows what you can achieve. Any practical applications that arise from this are just an added bonus.
This fascinating story starts on AliExpress, where [Easton] came across inexpensive WiFi repeaters that can be plugged directly into a wall outlet to improve wireless coverage. Intrigued by this idea, [Easton] ordered several devices and received them, ready to dive in. Here’s a spoiler: while the first attempt with the initial device successfully established a console session through the UART port and allowed a root password reset, [Easton] inadvertently damaged the repeater while trying to upload an OpenWRT image.
In the second attempt, using a different but similar device, the results were much more favorable. The basic web interface didn’t have an obvious way in, but it provided good details about the hardware inside the device [Easton] was handling. Understanding the risk of UART access leading to another setback, [Easton] checked a security advisory which highlighted a vulnerability that permitted remote code execution via a cleverly crafted SSID. This means that gaining root access on these dongles can be done just by executing a simple curl
command—no need for any hardware tweaks!
As for what you can do with these small Linux WiFi devices, the possibilities are up to your imagination. We love [Easton]’s idea of running something like Pi-Hole on them; setting up Home Assistant might even be an option, though these devices are quite limited in their capabilities. Regardless, the knowledge gained from this experience is priceless, and at this price point, it’s time to have some fun.