Jump to content

All Activity

This stream auto-updates     

  1. Today
  2. I had a student do this as a university dissertation two years ago. He used a pineapple to broadcast multiple ESSIDs and then watched the location on his phone move around based on what values he broadcast. It was partially successful and he could get it to move, but as soon as you put it in a real world environment it wasn't great as his fake values were competing with real ones from the environment.
  3. I would like to learn how Outdoor Wifi positioning systems like Skyhook work. My thought was to take data from a site like wigle.net and try to replicate it in a shielded room I have built in my basement in order to test how services like Skyhook work. My question is what kind of hardware do I need in order to replicate 3 or 4 hotspots accurately. Is this something I could buy 3 or 4 wifi pineapples for or is there another tool that would work better?
  4. UPDATE: I've also tried flashing the firmware to version 2.4.1 but the results remain the same. I've swapped the antennas to see if there was a faulty antenna but that did not make a difference.
  5. Hmm. I don't know if this link is allowed here...?
  6. UPDATE: I've played around with the filters and setting to deny to allow and MAC address or SSID. I've also set to allow and specified the exact MAC address and SSID. Still no results. I've tried changing the country code to the US but that did not work. I've tried a few different power sources but the results remain the same. I've also been testing the management AP and that works fine. Which leads me to think that one of the chipsets is faulty. I'll wait a little while longer to see if the community has any suggestions if not I'll raise an RMA with the vendor.
  7. I downloaded and installed it. It installs their own app to be able to download and install from them THEN it goes out and downloads the WiFi Pineapple Connector app. I uninstalled the Aptoide Ap and the WiFi Pineapple app runs fine. So the link I posted WILL install their app first. After testing, it doesn't look to do anything but allow access to their repository similar to Google Play. Is the Hash of the original APK somewhere on Hak5 ? I'd love to compare it. While the WiFi Pineapple Connector may no longer be supported, It would be nice to leave it on Google or within the Hak5 community somewhere... It works on my Android very well with the Nano. I get it that it "can" be a nightmare to support 1 single Android App for all the various devices. But <shrugs>. thanks for the reply P.S. Yeah, I know just because someone "says" they are safe.... but before installing, I googled it and followed a great deal of links. So I feel safe it didn't infect my 'droid There's a response from one of the co-founders: https://android.stackexchange.com/questions/74618/how-safe-is-it-to-use-aptoide
  8. Yesterday
  9. Is it the same? Not sure. Would need a known good file hash to verify and compare. Is it safe? Sometimes, but I'm not going to install it without a official, verified checksum/file hash from a Developer against which to try and match it. The site says "trusted site" and "guaranteed working". That worries me. Trusted by whom, and who is making this guarantee? The Jury is out on this one, for now. At least I know Google checks all submissions for problems and malware. In general, I do not trust 3rd party sites.
  10. UPDATE: Trying to troubleshoot this further and have performed a packet capture using a 3rd party Wi-Fi device (in monitor mode). It seems that the NANO does not reply to the probe request frames. In addition it also seems to stop transmitting beacon frames as well. Brief extract below: 57 21:25:44 27/03/2020 3.8083188 [20720D 3903F8] [*BROADCAST] WiFi WiFi:[ ManagementProbe request] ....... RSSI = -30 dBm, Rate = 1.0 Mbps, SSID = test3 58 21:25:44 27/03/2020 3.8083373 [20720D 3903F8] [*BROADCAST] WiFi WiFi:[ ManagementProbe request] ....... RSSI = -30 dBm, Rate = 1.0 Mbps, SSID = BroadCast SSID 59 21:25:44 27/03/2020 3.8925997 [20720D 3903F8] [*BROADCAST] WiFi WiFi:[ ManagementProbe request] ....... RSSI = -34 dBm, Rate = 1.0 Mbps, SSID = test3 60 21:25:44 27/03/2020 3.8926186 [20720D 3903F8] [*BROADCAST] WiFi WiFi:[ ManagementProbe request] ....... RSSI = -34 dBm, Rate = 1.0 Mbps, SSID = BroadCast SSID 61 21:25:44 27/03/2020 3.9350643 [58C17A 62AA51] [*BROADCAST] WiFi WiFi:[ ManagementBeacon] ....... RSSI = -50 dBm, Rate = 1.0 Mbps, SSID = Home Network, Channel = 11 62 21:25:44 27/03/2020 4.0374835 [58C17A 62AA51] [*BROADCAST] WiFi WiFi:[ ManagementBeacon] ....... RSSI = -50 dBm, Rate = 1.0 Mbps, SSID = Home Network, Channel = 11 63 21:25:44 27/03/2020 4.1398378 [58C17A 62AA51] [*BROADCAST] WiFi WiFi:[ ManagementBeacon] ....... RSSI = -50 dBm, Rate = 1.0 Mbps, SSID = Home Network, Channel = 11 As you can see the probe requests go unanswered and the beacons are from a neighboring AP.
  11. Hi all, Received my NANO but I haven't been able to get any wireless clients to connect to the rogue AP. My settings My filter policy is set to send for both Client Filtering and SSID Filtering. Both fields are empty. The PineAP is set to allow associations Using firmware version 2.7 What I have tried I've tried to mimic a live open SSID and deauth client devices the client devices do disconnect but don't connect to the rogue AP which has a higher SNR & RSSI. I have also created a new open SSID on the NANO and while the AP broadcasts the SSID the client device fails to connect to the SSID. I have tired a few different client devices each have the same issue. I've tried completing a factory reset but the results did not change. Please let me know if you need any further information that might be useful.
  12. 😄 I have been procrastinating on getting this setup for a while. It was fine for the first 5 episodes being that they were mostly purely instructional setup. But now we are diving deep into the educational aspect that encourages a lot of exploration and collaboration. Let's see how it goes! I'll be adapting future episodes around what I see here.
  13. Just for grins and giggles, I found the Pineapple Android App on other websites (version 1.1) and not the Google Play Store. https://wifi-pineapple-connector.en.aptoide.com/app Is this the same app that was on Google Play ? Is it safe from a 3rd party place like this ?
  14. This is just to also add in another factor as to why ICS may not work ! Recently, I went to upgrade both my Nano and Tetra. Starting with the Nano, I got it to update via the manual way but could not get Internet Connection Sharing working from my Windows 10 Pro Laptop. I followed the ICS instructions to the T and it did not work for me. Tried the slight mod as posted here to no avail. I even changed the Registry key for the Shared Access to force it to use 172.16.42.42 as suggested. The Registry Key is: "Computer\HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters" Changed the "ScopeAddress" and the "ScopeAddressBackup" to the suggested 172.16.42.42. When I turned on ICS, it forced the IP to be correct. 🙂 [ Side Note, Yes, you can force your system to use a different default IP address than the standard Windows ICS range. Just change the Registry keys as shown above] However, I still could not get the ICS working even telling Windows to force the Ip to what is required. More digging turned up the problem. While Windows Firewall didn't care if the ICS was turned on or off, the AntiVirus software DID ! I had to go into the AV settings for the AV Firewall and tell it to "Allow Internet Connection Sharing". Once I did that, it all worked perfectly. I wanted to add this information to this post for those still not able to get ICS working. Sometimes it's not ICS but another Software Firewall blocking it. Cheers!
  15. kuyaya

    Jackalope

    Can you please put the output of the nmap scan here? If you're sure that it is blocked then make a new firewall rule to open 445.
  16. Ok fare enough.Could we also address possible ways of working around the connectivity issues with NetworkManager-s who knows we might stumble upon a solution.
  17. Cookie

    Jackalope

    Hey there i got the problem that the Port 445 on windows i set to listening but when i run nmap -sS -sV -vv -p 445 172.16.64.10 on my BB its filtered and therfore the Payload doesnt work.
  18. OK here it is, thanks in advance 🙂 system log Dmesg
  19. Just to address this: Devices that are not sold by us or the retailers we partner with are not guaranteed to have not been used in the past. Buying new parts from us directly or the retailers we choose don't come with a password set.
  20. Hi, The WiFi Pineapple Connector App has been deprecated (for nearly a month now), due to difficulty supporting multiple types of devices considering the size of our team. I wasn't aware that NetHunter had the app built-in to their ROM otherwise I'd have tried to reach out and let them know.
  21. Cherry-picking details from the logs that you deem strange doesn't help us diagnose any potential issues. Full log output is appreciated.
  22. essexbrash

    Switch Lite

    Today I would say that you need full size
  23. So I decided to do a firmware reset and see what kind of errors I was getting after running into problems with continuous scan and SD cards. I have taken out the SD card In 2.4.1 during scans dmesg gives no errors during scanning. Continuous live scan updates the list quickly now. In 2.7.0 during scans dmesg gives the following errors as soon as I enable pineap daemon with the following options enabled: Log PineAP events Client Connect Notifications Client Disconnect Notifications Capture SSIDs to Pool [ 579.384084] ath: phy1: Short RX data len, dropping (dlen: 5) [ 592.150145] ath: phy1: Short RX data len, dropping (dlen: 9) [ 595.464274] ath: phy1: Short RX data len, dropping (dlen: 3) [ 598.730644] ath: phy1: Short RX data len, dropping (dlen: 2) [ 607.190915] ath: phy1: Short RX data len, dropping (dlen: 5) [ 607.894143] ath: phy1: Short RX data len, dropping (dlen: 5) [ 611.263665] ath: phy1: Short RX data len, dropping (dlen: 5) [ 632.194657] ath: phy1: Short RX data len, dropping (dlen: 9) [ 632.289032] ath: phy1: Short RX data len, dropping (dlen: 5) [ 641.686280] ath: phy1: Short RX data len, dropping (dlen: 9) [ 645.175573] ath: phy1: Short RX data len, dropping (dlen: 5) [ 648.729921] ath: phy1: Short RX data len, dropping (dlen: 😎 [ 653.544791] ath: phy1: Short RX data len, dropping (dlen: 😎 [ 663.020244] ath: phy1: Short RX data len, dropping (dlen: 2) [ 666.587049] ath: phy1: Short RX data len, dropping (dlen: 5) etc etc etc From the logs, some stuff that looks strange: Thu Feb 27 22:05:33 2020 kern.info kernel: [ 14.172963] ath9k_htc 1-1.1:1.0: ath9k_htc: FW Version: 1.4 Thu Feb 27 22:05:33 2020 kern.info kernel: [ 14.177191] ath9k_htc 1-1.1:1.0: FW RMW support: On Thu Feb 27 22:05:33 2020 kern.debug kernel: [ 14.182088] ath: EEPROM regdomain: 0x0 Thu Feb 27 22:05:33 2020 kern.debug kernel: [ 14.182095] ath: EEPROM indicates default country code should be used Thu Feb 27 22:05:33 2020 kern.debug kernel: [ 14.182100] ath: doing EEPROM country->regdmn map search Thu Feb 27 22:05:33 2020 kern.debug kernel: [ 14.182119] ath: country maps to regdmn code: 0x3a Thu Feb 27 22:05:33 2020 kern.debug kernel: [ 14.182127] ath: Country alpha2 being used: US Thu Feb 27 22:05:33 2020 kern.debug kernel: [ 14.182132] ath: Regpair used: 0x3a Thu Feb 27 22:05:36 2020 daemon.err procd: unable to find /sbin/ujail: No such file or directory (-1) Thu Feb 27 22:07:03 2020 kern.warn kernel: [ 121.741849] overlayfs: upper fs does not support tmpfile. Thu Feb 27 22:07:03 2020 daemon.info mount_root: syncronizing overlay Thu Feb 27 22:07:03 2020 daemon.err mount_root: failed to sync jffs2 overlay Thu Feb 27 22:07:08 2020 kern.info kernel: [ 127.143076] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready Thu Feb 27 22:07:08 2020 daemon.notice netifd: radio1 (2841): Interface 0 setup failed: BRIDGE_NOT_ALLOWED Fri Mar 27 11:01:54 2020 daemon.notice netifd: radio0 (2840): Failed to connect to hostapd - wpa_ctrl_open: No such file or directory Fri Mar 27 11:01:54 2020 daemon.notice netifd: radio0 (2840): Failed to connect to hostapd - wpa_ctrl_open: No such file or directory Fri Mar 27 11:01:56 2020 daemon.notice procd: /etc/rc.d/S99pineapd: [!! 27-03-2020 10:01:56] [INTERFACE] Failed to create capture handle for wlan1mon: wlan1mon: No such device exists (SIOCGIFHWADDR: No such device) NB I have no idea why it thinks it was Feb 27 and then Mar 28 What do you guys recommend? Thanks!
  24. Hi, Properly not as the computer needs to recognise it before it can work. But there are media keyboard buttons defined in the encoder. Two which may be of interest too you are (MEDIA_MUTE or MUTE) and (MEDIA_VOLUME_DEC or VOLUMEDOWN). The reason for two names for each is the second is an alias. You could give them a go and see.
  25. I have been playing with this for the last few days.... and understand that it is not supported.... I was running the MKV v3.0.0 beta firmware and some of the modules were no longer working once updated.. like Recon etc... Since it is no longer supported i thought screw it... what is the worst that could happen it doesn't do what i need now if i break it i'm no worse off. I downloaded the official upgrade-2.7.0.bin for the NANO and scp'd it to the /tmp and then sysupgrade'd it with -F to skip the hardware id check... Boom I currently have the HAK5 Official Compiled Nano Firmware 2.7.0 running on my MK V... I got to the get started page and then went fuck... there is no reset button to press.... First i tried tricking it using fiddler to say the button was pressed but there was a step in the configuration that checked it again in the backend that could not be bypassed... I tried console into it over the UART... need a root password... looking deeper i found it was looking for GPIO12 to write a file to show the button was pressed... next i looked up the AR9331 chip pin-outs and found where the GPIO12 pin was... Shorting out the Solder Pads for C26... and then it let me through to configuring the root password, wifi etc.... I then wired in a button for it. What is working: Ethernet Port works USB Works Both WLAN adapters work. Hacked Reset buttons custom script works 😛 What does not work: PineAPD SegFaults because the boards hardware ID does not match what is expected... it tests if the board id matches 44b65156 a quick hex patch to change it to test for 61b798de instead.. that works.... 🙂 The SDCard doesn't mount and sometimes causes the USB to reset... also when a SD Card is installed after boot it is not detected. [ 399.323414] usb 1-1.4: reset high-speed USB device number 5 using ehci-platform [ 399.857733] sd 0:0:0:0: [sda] tag#0 UNKNOWN(0x2003) Result: hostbyte=0x00 driverbyte=0x08 [ 399.864581] sd 0:0:0:0: [sda] tag#0 Sense Key : 0x6 [current] [ 399.870298] sd 0:0:0:0: [sda] tag#0 ASC=0x28 ASCQ=0x0 [ 399.875486] sd 0:0:0:0: [sda] tag#0 CDB: opcode=0x28 28 00 03 ba 77 88 00 00 38 00 [ 399.882977] print_req_error: I/O error, dev sda, sector 62551944 Removed SD Card here... [ 399.934481] sd 0:0:0:0: [sda] tag#0 UNKNOWN(0x2003) Result: hostbyte=0x00 driverbyte=0x08 [ 399.941252] sd 0:0:0:0: [sda] tag#0 Sense Key : 0x2 [current] [ 399.947129] sd 0:0:0:0: [sda] tag#0 ASC=0x3a ASCQ=0x0 [ 399.952198] sd 0:0:0:0: [sda] tag#0 CDB: opcode=0x28 28 00 03 ba 77 c8 00 00 28 00 [ 399.959776] print_req_error: I/O error, dev sda, sector 62552008 [ 399.970757] sda: detected capacity change from 32026656768 to 0 The Blue LED does not light up. Sometimes when using an additional USB Wifi Adapter the wlan numbering screws up. The GPIO Headers and Dip Switches will not work either as nothing in firmware for them
  26. Finely area for this Gadget
  1. Load more activity
×
×
  • Create New...