Jump to content

MarcusW

Active Members
  • Posts

    15
  • Joined

  • Last visited

  • Days Won

    1

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

MarcusW's Achievements

Newbie

Newbie (1/14)

  1. I had both the ALFA AWUS036H and AWUS036NH working in BT5R3 with VMWare 8 on my USB3 ports. Worked a treat with Easy-Cred, Yamas and various other tools. Upgraded to VMWare 9, started getting the driver error. I'll try downgrading at some point, but you could try the same?
  2. Upgraded and working like a dream. Thanks!
  3. Hi, Is it possible to search and replace contents of packets in real-time if the Pineapple is acting as a router? I'm thinking of subtle (and not so subtle) manipulation of insecure packets similar to the goatse/airpwn demo (http://evilscheme.org/defcon/)
  4. Yeah, I ended up doing that in the end. I'm just too eager to get *everything* running on the Mk4 ;-) It was really just the harvesting through site cloning I wanted - having said that, it's more flexible to custom-clone a few different sites and handle via the redirect.
  5. Given SET's advanced exploitation capabilities, has anyone got any tips on getting it installed on an external USB key? opkg doesn't appear to have all the python dependencies and setting up the correct python environment without using apt-get is an unknown to me at the mo. Thanks
  6. Worth checking that this isn't the issue? http://forums.hak5.org/index.php?showtopic=26089&pid=200909&st=20entry200909
  7. ...and it's been published. Playing with it while I write this. Lovely. Thanks! Edit: Been having success with this filter to capture all http posts, but admittedly my tcpdump-fu is weak: tcpdump -i 3g-wan2 'port 80 and (tcp[20:4] = 1347375956 or tcp[24:4] = 1347375956 or tcp[28:4] = 1347375956 or tcp[32:4] = 1347375956 or tcp[36:4] = 1347375956 or tcp[40:4] = 1347375956 or tcp[44:4] = 1347375956 or tcp[48:4] = 1347375956 or tcp[52:4] = 1347375956 or tcp[56:4] = 1347375956 or tcp[60:4] = 1347375956)' Based on this post: http://superuser.com/questions/286062/practical-tcpdump-examples
  8. Fantastic - glad I could help :-) Got my 2352 up and running (see my other thread) and it's a blast. Everything in my backpack, and I can configure it all through my smartphone. Discrete :)
  9. Hrm. Connection issue resolved. It was the 'ppp_redial=persist' which caused the echo-checking. Removed that, and things started working. *1410:7001*) echo "Novatel 2352 (MiFi) detected. Attempting mode switch" uci delete network.wan2 uci set network.wan2=interface uci set network.wan2.ifname=ppp0 uci set network.wan2.proto=3g uci set network.wan2.service=umts uci set network.wan2.device=/dev/ttyUSB0 uci set network.wan2.apn=general.t-mobile.uk uci set network.wan2.defaultroute=1 uci set network.wan2.peerdns=1 uci set network.wan2.dns=8.8.8.8 uci set network.wan2.keepalive=1 uci set network.wan2.pppd_options=persist uci set network.wan2.pppd_options=debug uci set network.wan2.pppd_options=noauth uci commit network rmmod usbserial sleep 3; insmod usbserial vendor=0x1410 product=0x7001 iptables -t nat -A POSTROUTING -s 172.16.42.0/24 -o 3g-wan2 -j MASQUERADE iptables -A FORWARD -s 172.16.42.0/24 -o 3g-wan2 -j ACCEPT iptables -A FORWARD -d 172.16.42.0/24 -m state --state ESTABLISHED,RELATED -i 3g-wan2 -j ACCEPT ;; ...and here's the log: Jan 1 01:46:39 Pineapple kern.info kernel: [ 6399.410000] usbserial: USB Serial Driver core Jan 1 01:46:39 Pineapple user.notice 3g-hotplug: Starting interface wan2 for device ttyUSB0 Jan 1 01:46:44 Pineapple daemon.notice pppd[2668]: pppd 2.4.5 started by root, uid 0 Jan 1 01:46:45 Pineapple local2.info chat[2673]: abort on (BUSY) Jan 1 01:46:45 Pineapple local2.info chat[2673]: abort on (NO CARRIER) Jan 1 01:46:45 Pineapple local2.info chat[2673]: abort on (ERROR) Jan 1 01:46:45 Pineapple local2.info chat[2673]: report (CONNECT) Jan 1 01:46:45 Pineapple local2.info chat[2673]: timeout set to 10 seconds Jan 1 01:46:45 Pineapple local2.info chat[2673]: send (AT&F^M) Jan 1 01:46:45 Pineapple local2.info chat[2673]: expect (OK) Jan 1 01:46:45 Pineapple local2.info chat[2673]: AT&F^M^M Jan 1 01:46:45 Pineapple local2.info chat[2673]: OK Jan 1 01:46:45 Pineapple local2.info chat[2673]: -- got it Jan 1 01:46:45 Pineapple local2.info chat[2673]: send (ATE1^M) Jan 1 01:46:45 Pineapple local2.info chat[2673]: expect (OK) Jan 1 01:46:45 Pineapple local2.info chat[2673]: ^M Jan 1 01:46:45 Pineapple local2.info chat[2673]: ATE1^M^M Jan 1 01:46:45 Pineapple local2.info chat[2673]: OK Jan 1 01:46:45 Pineapple local2.info chat[2673]: -- got it Jan 1 01:46:45 Pineapple local2.info chat[2673]: send (AT+CGDCONT=1,"IP","general.t-mobile.uk"^M) Jan 1 01:46:46 Pineapple local2.info chat[2673]: timeout set to 30 seconds Jan 1 01:46:46 Pineapple local2.info chat[2673]: expect (OK) Jan 1 01:46:46 Pineapple local2.info chat[2673]: ^M Jan 1 01:46:46 Pineapple local2.info chat[2673]: AT+CGDCONT=1,"IP","general.t-mobile.uk"^M^M Jan 1 01:46:46 Pineapple local2.info chat[2673]: OK Jan 1 01:46:46 Pineapple local2.info chat[2673]: -- got it Jan 1 01:46:46 Pineapple local2.info chat[2673]: send (ATD*99***1#^M) Jan 1 01:46:46 Pineapple local2.info chat[2673]: expect (CONNECT) Jan 1 01:46:46 Pineapple local2.info chat[2673]: ^M Jan 1 01:46:46 Pineapple local2.info chat[2673]: ATD*99***1#^M^M Jan 1 01:46:46 Pineapple local2.info chat[2673]: CONNECT Jan 1 01:46:46 Pineapple local2.info chat[2673]: -- got it Jan 1 01:46:46 Pineapple local2.info chat[2673]: send ( ^M) Jan 1 01:46:46 Pineapple daemon.info pppd[2668]: Serial connection established. Jan 1 01:46:46 Pineapple daemon.info pppd[2668]: Using interface 3g-wan2 Jan 1 01:46:46 Pineapple daemon.notice pppd[2668]: Connect: 3g-wan2 <--> /dev/ttyUSB0 Jan 1 01:46:51 Pineapple daemon.warn pppd[2668]: Could not determine remote IP address: defaulting to 10.64.64.64 Jan 1 01:46:51 Pineapple daemon.notice pppd[2668]: replacing old default route to br-lan [172.16.42.42] Jan 1 01:46:51 Pineapple daemon.notice pppd[2668]: local IP address 178.104.136.52 Jan 1 01:46:51 Pineapple daemon.notice pppd[2668]: remote IP address 10.64.64.64 Jan 1 01:46:51 Pineapple daemon.notice pppd[2668]: primary DNS address 149.254.230.7 Jan 1 01:46:51 Pineapple daemon.notice pppd[2668]: secondary DNS address 149.254.192.126 Jan 1 01:46:52 Pineapple user.notice ifup: Enabling Router Solicitations on wan2 (3g-wan2) Jan 1 01:46:52 Pineapple user.info autossh[2752]: starting ssh (count 1) Jan 1 01:46:52 Pineapple user.info autossh[2752]: ssh child pid is 2753 Jan 1 01:46:52 Pineapple user.err autossh[2752]: ssh exited prematurely with status 1; autossh exiting Jan 1 01:46:55 Pineapple daemon.info dnsmasq[1678]: reading /tmp/resolv.conf.auto Jan 1 01:46:55 Pineapple daemon.info dnsmasq[1678]: using nameserver 149.254.192.126#53 Jan 1 01:46:55 Pineapple daemon.info dnsmasq[1678]: using nameserver 149.254.230.7#53 Jan 1 01:46:55 Pineapple daemon.info dnsmasq[1678]: using nameserver 8.8.8.8#53 Jan 1 01:46:55 Pineapple daemon.info dnsmasq[1678]: using local addresses only for domain lan The MIFI has a tendency to connect as USB ID 1410:5041 or 1410:7001. If it's the former, I need to change usb_modeswitch it, which I still need to figure out. I'll do the USB sniffing to check what the command to change modes is.
  10. 12d1:14ac - looks as if it's switched over from being a storage device ok. Have you done the following? rmmod usbserial insmod usbserial vendor=0x12d1 product=0x14ac
  11. I'm away from my pineapple at the mo, but from memory I think it's comgt -x -d /dev/ttyUSB0 Edit: Actually you can use this as well, I think it's synonymous: gcom -d /dev/ttyUSB0
  12. Yeah - bought it a while back and threw a T-Mobile sim in it. I've not seen the 'pineapple supported' devices in this country, but there's an 'unofficial list' worth looking at. PPP is being a little bit funny with the 2352. It's sending an echo request even if I tell it not to and because the 2352 doesn't respond it kills the connection, so I'm getting it restarting the connection every 20 seconds or so :-(
  13. Hi Richy, I'm close to getting a Novatel 2352 working - aka the MiFi. It's a nifty unit that has room for a microSD card and has its own battery. I'm getting a response from the modem and it's reporting the signal/network. Just need to figure out the network part.
  14. Hi, I've just been trying to come up with the magic 3g.sh recipe that will get my Novatel 2352 (aka MiFi) registered with my Pineapple, attached via the USB port. I feel I'm close, but I'm missing something. Pineapple Firmware: 1.1.1 lsusb output: Bus 001 Device 008: ID 1410:7001 Novatel Wireless Now it doesn't seem to need modeswitching as insmod usbserial *appears* to work. I'm getting responses to my AT commands. 3g.sh section: *1410:7001*) echo "Novatel 2352 (MiFi) detected" uci delete network.wan2 uci set network.wan2=interface uci set network.wan2.ifname=ppp0 uci set network.wan2.proto=3g uci set network.wan2.service=umts uci set network.wan2.device=/dev/ttyUSB0 uci set network.wan2.apn=general.t-mobile.uk uci set network.wan2.username= uci set network.wan2.password= uci set network.wan2.defaultroute=1 uci set network.wan2.ppp_redial=persist uci set network.wan2.peerdns=0 uci set network.wan2.dns=8.8.8.8 uci set network.wan2.keepalive=1 uci set network.wan2.pppd_options=debug uci set network.wan2.pppd_options=noauth uci commit network #No modeswitch appears necessary sleep 3; rmmod usbserial sleep 3; insmod usbserial vendor=0x1410 product=0x7001 iptables -t nat -A POSTROUTING -s 172.16.42.0/24 -o 3g-wan2 -j MASQUERADE iptables -A FORWARD -s 172.16.42.0/24 -o 3g-wan2 -j ACCEPT iptables -A FORWARD -d 172.16.42.0/24 -m state --state ESTABLISHED,RELATED -i 3g-wan2 -j ACCEPT ;; When 3g.sh is run, the following appears in the log: Jan 1 01:35:26 Pineapple user.notice 3g-hotplug: Starting interface wan2 for device ttyUSB0 Jan 1 01:35:30 Pineapple daemon.notice pppd[6473]: pppd 2.4.5 started by root, uid 0 Jan 1 01:35:31 Pineapple local2.info chat[6478]: abort on (BUSY) Jan 1 01:35:31 Pineapple local2.info chat[6478]: abort on (NO CARRIER) Jan 1 01:35:31 Pineapple local2.info chat[6478]: abort on (ERROR) Jan 1 01:35:31 Pineapple local2.info chat[6478]: report (CONNECT) Jan 1 01:35:31 Pineapple local2.info chat[6478]: timeout set to 10 seconds Jan 1 01:35:31 Pineapple local2.info chat[6478]: send (AT+CSQ^M) Jan 1 01:35:31 Pineapple local2.info chat[6478]: expect (OK) Jan 1 01:35:31 Pineapple local2.info chat[6478]: AT+CSQ^M^M Jan 1 01:35:31 Pineapple local2.info chat[6478]: +CSQ: 16,99^M Jan 1 01:35:31 Pineapple local2.info chat[6478]: ^M Jan 1 01:35:31 Pineapple local2.info chat[6478]: OK Jan 1 01:35:31 Pineapple local2.info chat[6478]: -- got it Jan 1 01:35:31 Pineapple local2.info chat[6478]: send (ATE1^M) Jan 1 01:35:31 Pineapple local2.info chat[6478]: expect (OK) Jan 1 01:35:31 Pineapple local2.info chat[6478]: ^M Jan 1 01:35:31 Pineapple local2.info chat[6478]: ATE1^M^M Jan 1 01:35:31 Pineapple local2.info chat[6478]: OK Jan 1 01:35:31 Pineapple local2.info chat[6478]: -- got it Jan 1 01:35:31 Pineapple local2.info chat[6478]: send (AT+CGDCONT=1,"IP","general.t-mobile.uk"^M) Jan 1 01:35:32 Pineapple local2.info chat[6478]: timeout set to 30 seconds Jan 1 01:35:32 Pineapple local2.info chat[6478]: expect (OK) Jan 1 01:35:32 Pineapple local2.info chat[6478]: ^M Jan 1 01:35:32 Pineapple local2.info chat[6478]: AT+CGDCONT=1,"IP","general.t-mobile.uk"^M^M Jan 1 01:35:32 Pineapple local2.info chat[6478]: OK Jan 1 01:35:32 Pineapple local2.info chat[6478]: -- got it Jan 1 01:35:32 Pineapple local2.info chat[6478]: send (ATD*99***1#^M) Jan 1 01:35:32 Pineapple local2.info chat[6478]: expect (CONNECT) Jan 1 01:35:32 Pineapple local2.info chat[6478]: ^M Jan 1 01:35:32 Pineapple local2.info chat[6478]: ATD*99***1#^M Jan 1 01:35:32 Pineapple local2.info chat[6478]: CONNECT Jan 1 01:35:32 Pineapple local2.info chat[6478]: -- got it Jan 1 01:35:32 Pineapple local2.info chat[6478]: send ( ^M) Jan 1 01:35:32 Pineapple daemon.info pppd[6473]: Serial connection established. Jan 1 01:35:32 Pineapple daemon.info pppd[6473]: Using interface 3g-wan2 Jan 1 01:35:32 Pineapple daemon.notice pppd[6473]: Connect: 3g-wan2 <--> /dev/ttyUSB0 Jan 1 01:35:37 Pineapple daemon.warn pppd[6473]: Could not determine remote IP address: defaulting to 10.64.64.64 Jan 1 01:35:37 Pineapple daemon.notice pppd[6473]: replacing old default route to br-lan [172.16.42.42] Jan 1 01:35:37 Pineapple daemon.notice pppd[6473]: local IP address 31.104.103.253 Jan 1 01:35:37 Pineapple daemon.notice pppd[6473]: remote IP address 10.64.64.64 Jan 1 01:35:37 Pineapple daemon.notice pppd[6473]: primary DNS address 149.254.230.7 Jan 1 01:35:37 Pineapple daemon.notice pppd[6473]: secondary DNS address 149.254.192.126 Jan 1 01:35:37 Pineapple user.notice ifup: Enabling Router Solicitations on wan2 (3g-wan2) Jan 1 01:35:37 Pineapple user.info autossh[6554]: starting ssh (count 1) Jan 1 01:35:37 Pineapple user.info autossh[6554]: ssh child pid is 6555 Jan 1 01:35:37 Pineapple user.err autossh[6554]: ssh exited prematurely with status 1; autossh exiting Jan 1 01:35:48 Pineapple daemon.info pppd[6473]: No response to 1 echo-requests Jan 1 01:35:48 Pineapple daemon.notice pppd[6473]: Serial link appears to be disconnected. Jan 1 01:35:48 Pineapple daemon.info pppd[6473]: Connect time 0.2 minutes. Jan 1 01:35:48 Pineapple daemon.info pppd[6473]: Sent 2827 bytes, received 0 bytes. Jan 1 01:35:48 Pineapple daemon.notice pppd[6473]: restoring old default route to br-lan [172.16.42.42] Jan 1 01:35:54 Pineapple daemon.notice pppd[6473]: Connection terminated. Jan 1 01:35:55 Pineapple daemon.notice pppd[6473]: Modem hangup From 01:35:37 onwards is where things seem to go pear shaped. At times I've had bytes sent and received,but the connection doesn't appear for long. Any ideas, anyone?
×
×
  • Create New...