Jump to content

All Activity

This stream auto-updates     

  1. Past hour
  2. UPDATE: looks like as far as USB everything else is dynamic... I used USBDeview.exe from sysinternals to sort out the bits. I plan to look at what drivers it uses with process monitor and go from there. The issue there is it may be different from win 7 to 10 or builds of windows etc...
  3. Today
  4. No sir, both were connected to the same 2.4GHz network. I tested this with other devices as well, and it appears that my phone isn't the only thing that can't be deauthed. I had another Windows 10 PC connected, and that wasn't able to be deauthed either. Any ideas? Again, it works perfectly with the actual Deauth module, but not the deauth button.
  5. Yesterday
  6. Yeah, I have been having issues getting my not-domain joined, updated Windows 10 machine to take SMB connections into it unless I screw with the token setting in registry. So, I assume this is an enterprise payload unless the home user/friend you are picking on is knowledgeable, have Win10 pro and setup a home domain or edited his machine to behave as a domain joined machine. I was going to work on an impacket implemented payload (use the actual library to make my own suing smbconnection library to spawn through connections. You could even skip the nmap scan since SMBConnection will throw an error if it cannot connect. Since there is a fast PoC out there already, I am going to move on to working back on my own tool since I have a week off this week. Going to use Go on the BB. Anyway, yeah, it is cool he got MM going on the BB but I knew there would be overhead.
  7. I'll have to take a look into these and give them a try. Thanks.
  8. Hello, I'am facing lot of issues with keyboard layout (there is several posts about this issue in this forum). I use fr_ch or de_ch keyboards and I wonder how to create a layout file to compile my code with? Thanks in advance.
  9. For example, if I use java -jar duckencoder.jar -i wifi.txt -o inject.bin -l ch then the char } is interpreted correctly but the char { is not recognized. If I use -l fr then it is even worst. I have tried to use ASCII code instead of { and } but the command ALT seems not able to simulate it. Is there a workaround for this keyboard issue? Thanks in advance 🙂
  10. Hi all! @kbeflo or others. For mac OS users who reconfig'd the Nano's IP to be 192.168.2.x for use, it seems the EvilPortal modules still try to ping the 172.16.42.x IP address. Is there a way to change the config of the modules to run on this IP? uci set network.lan.ipaddr='192.168.2.10' uci set network.lan.gateway='192.168.2.1' uci commit && reboot
  11. You might be able to get away with using a tethering app to bypass your carrier, I seem to remember something about this a while back. Its a long shot but maybe worth a try. IIRC it sort of fools the phone into thinking its an app using data but passes it to the USB rather than use the android built in tether. Prob wrong but worth a look. EasyTether + others maybe.
  12. So I made a post a while ago about me using USB Tethering, apparently that isn't really possible since my carrier doesn't support it from what I can find. So I am curious if I can add in a WiFi adapter, connect it to my phones hotspot, and share an internet connection to it that way. I can connect it to my phone as a client with wlan2 no problem, but honestly not sure the best way to get internet sharing to it.
  13. Hello, I have the same issue. Actually it seems difficult (impossible?) to use usb rubber on none English system. Strings are never like in the duckycode.txt. I use the java duckyencoder, ducktoolkit.com (choosing Switzerland as language) but nothing to to.
  14. How do you get modules loaded to external storage on a WIFI Tetra as you can do on a WIFI Nano? To add some further context to my questions around how do I get the storage working. So, my need isn't so much for space as much as it is for the portability. On my WIFI Pineapple Nano, I have in it a MicroSD. There I have loaded my modules. Anytime I need to upgrade the firmware, like from 2.0 to 2.5.4, the process flashes the image in that ends up wiping out any modules loaded on the device. With them being on the MicroSD, I do not have to download again all my modules with any that have dependencies. Re-downloading is just time-consuming. The WIFI Pineapple Tetra does not have a MicroSD slot, but instead has a USB slot. My goal was to use that USB slot to load the modules into so that I do not have to download and reconfigure modules when I flash the firmware. The size doesn't matter, I just used a drive I had that was small enough physically to do what I needed, just happened to be a 64GB drive. The concept is what I am trying to get working. I did try something else by renaming the mount point to be like in the Nano and so I have it look like below. The screen did flash momentarily to ask about internal or external storage but I couldn't select an option. So still trying to find out how to do this configuration. Filesystem Size Used Available Use% Mounted on rootfs 1.8G 1.9M 1.8G 0% / /dev/root 12.5M 12.5M 0 100% /rom tmpfs 61.4M 128.0K 61.3M 0% /tmp /dev/ubi0_1 1.8G 1.9M 1.8G 0% /overlay overlayfs:/overlay 1.8G 1.9M 1.8G 0% / tmpfs 512.0K 0 512.0K 0% /dev /dev/sda 56.8G 51.8M 53.9G 0% /sd So is there some sort of config parameter or location that the OS is expecting the external storage to be in order to get that capability? TIA Michael Krogstad
  15. So, my need isn't so much for space as much as it is for the portability. On my WIFI Pineapple Nano, I have in it a MicroSD. There I have loaded my modules. Anytime I need to upgrade the firmware, like from 2.0 to 2.5.4, the process flashes the image in that ends up wiping out any modules loaded on the device. With them being on the MicroSD, I do not have to download again all my modules with any that have dependencies. Re-downloading is just time-consuming. The WIFI Pineapple Tetra does not have a MicroSD slot, but instead has a USB slot. My goal was to use that USB slot to load the modules into so that I do not have to download and reconfigure modules when I flash the firmware. The size doesn't matter, I just used a drive I had that was small enough physically to do what I needed, just happened to be a 64GB drive. The concept is what I am trying to get working. I did try something else by renaming the mount point to be like in the Nano and so I have it look like below. The screen did flash momentarily to ask about internal or external storage but I couldn't select an option. So still trying to find out how to do this configuration. Filesystem Size Used Available Use% Mounted on rootfs 1.8G 1.9M 1.8G 0% / /dev/root 12.5M 12.5M 0 100% /rom tmpfs 61.4M 128.0K 61.3M 0% /tmp /dev/ubi0_1 1.8G 1.9M 1.8G 0% /overlay overlayfs:/overlay 1.8G 1.9M 1.8G 0% / tmpfs 512.0K 0 512.0K 0% /dev /dev/sda 56.8G 51.8M 53.9G 0% /sd
  16. Maybe your phone was connected via 5Ghz and the laptop was 2.4ghz? You can use only beacon response on its own just fine. Or broadcasting SSID pool on its own. Both combined just gives more chance for a connection.
  17. I'm curious as to why you need more than 2gb. What are you doing that needs 50+GB? Very long term deployment?
  18. I did this recently while on holiday using my tetra but should be similar with nano but be aware the nano has limited range/power. The only WiFi was at a main building some distance away and the lodges had none. I used another wifi adapter (using a directional panel antenna) as wlan2 but you could also use wlan1 if you are not using PineAP. Connect to the weak AP using wlan1/wlan2 in client mode on the pineapple. Then use your wlan0 or wlan0-1 as your local AP. Its already built into the pineapple and needs very little configuring.
  19. Hi everyone, can anyone here help me with hdd backup partition image of cs100 internal hdd. i have formatted the disk now my player is dead. Please help upload partition image of disk without ur data, Thank you in advance.
  20. Did you get it to work? And if yes could you tell me how? I want to use it also for my tello 🙂
  21. sorry APP.accounts table with user column
  22. correction. it should be APP.contacts table with user column.
  23. Correction. This logs in admin' and (select count(user) from app.accounts where user not like '%')=0-- But not admin' and (select count(user) from app.accounts where user not like '%')>0--
  24. Hi. I have to pen test altoro mutual site(https://demo.testfire.net) for a project. The site uses DERBY DB. I have discovered that its login page is vulnerable to blind boolean sqli. I have discovered that there is a table called user under schemaname of APP (ie. APP.user). I typed in Username: admin' and (select count(user) from app.accounts where user like '%a%')>0-- Password: anything This tests whether there is a user that contains a letter 'a'. If the test succeeds altoro mutual site logs in. Otherwise it says "Login Failed: We're sorry, but this username or password was not found in our system. Please try again." I've tried the same test but this time iterated from a-zA-Z. But it never succeeds in logging in which tells me that maybe Username is not English alphabet. But this is unlikely. So my problem is I don't know why LIKE operator doesn't return a result that is expected. I also tried Username: admin' and (select count(user) from app.accounts where user not like '%a%')>0-- Password: anything And this time every iteration of a-zA-Z logs in. So this result also tells me Username does not contain a letter. Lastly this one works (it logs in) Username: admin' and (select count(user) from app.accounts where user not like '%')>0-- Password: anything Can you help me why LIKE operator fails when user LIKE '%a%' and so on? THX
  25. I should have also said Im able to deauth my network with the Deauth module (every device including phone), however I don't believe that it has specific client targetting so I'm a little less keen to use it.
  26. Hi all, glad to be a new member of the forums! 🙂 I recently purchased a WiFi Pineapple Nano, and I've learned how to navigate it and use it a little better since. Unfortunately due to my lack of terminology and the proper understanding of the pineapple I've had some confusion and questions I'd appreciate if somebody would be able to help a newbie out with. I apologize if something like this has already been posted and I haven't yet seen it, or if I posted this in an incorrect area- as I said I'm brand new to the forums. First question/issue relates to the Deauth button, as to if I'm using it wrong and whatnot. I have my iPhone 8 on my personal home network, and I ran a recon scan with the Nano. I saw my Home network SSID, and I tried to run a deauth request to my network. I'm not fully sure as to how this works yet, but from what I know its supposed to deauth devices from the network. I noticed that after about 5 minutes my laptop with the nano connected to it gets deauthed, but my phone on the network never did. I know for a fact I ran the deauth on the entire network, not just a specific device. I've tried several multipliers, none of which deauthed my phone. Am I doing something wrong or not understanding something? Last question orients around the SSID pool and the beacon/broadcast options. I know that broadcasting the SSID pool sends out separate open AP's from previously captures SSID's. I believe beaconing a response checks for devices trying to connect to a specific SSID, then a spoofed AP with the same SSID from the pineapple says "that's me!", and the device connects to the pineapple. Do I need to have both beaconing responses and broadcasting SSID options checked? Or am I able to simply beacon responses *without* broadcasting the SSIDs? Sorry for the rather long and probably innacurate post, I hope my interpretations weren't too far off. 🙂
  27. So, I found one of my issues...should be external_disk, not eternal_disk. Made that change and in testing a module download, there was a quick flash to ask to save it someplace but it went away. Is there a switch or config parameter that needs changing? Or does the location need changing? TIA, Michael
  1. Load more activity
×
×
  • Create New...