Jump to content


Photo

Keylogger

Module

Best Answer digininja, 31 January 2013 - 04:29 PM

For those who haven't spotted it, the module is now live.

 

Please post all questions and bugs to the new thread.

 

http://forums.hak5.o...module-release/

Go to the full post


  • This topic is locked This topic is locked
116 replies to this topic

#41 Deathstormer

Deathstormer

    Hak5 Fan

  • Active Members
  • PipPip
  • 22 posts
  • Location:Australia - Queensland

Posted 14 April 2012 - 06:19 AM

Has anyone else had an issue with this not logging all keys entered?

I.E with the gmail template, i enter Bill as the username, Smith as the Password.

all i see in the Keylogger interface is.

* gmail
* Keys
> mih -which should really be Smith.

Any Ideas?

#42 Whistle Master

Whistle Master

    Hak5 Ninja

  • Pineapple Moderators
  • PipPipPipPipPipPipPip
  • 623 posts
  • Gender:Male
  • Location:CH

Posted 14 April 2012 - 09:25 AM

the issue may be because javascript is not fast enough to get all the keys from the beginning.

Whatever, I'm currently working on a generic version which does not use templates but ettercap. I'm still getting some problems with ettercap though :o

24302.png
Paypal: Donate Link
Bitcoin: 1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#43 Vulture

Vulture

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 78 posts

Posted 15 April 2012 - 09:22 AM

WM,

Got another idea I will try tonight and update you on the progress. I believe we are very close and it may actually be the built of ettercap we are using.

#44 Sebkinne

Sebkinne

    WiFi Pineapple Developer

  • Root Admin
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 2,213 posts
  • Gender:Male

Posted 15 April 2012 - 11:19 AM

I had ettercap working.

Will report back soon.

Best,
Sebkinne

#45 Vulture

Vulture

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 78 posts

Posted 15 April 2012 - 01:25 PM

Sebkinne,

That is amazing news, if you wouldn't mind after you release the details to explain why it didn't work WM and myself have been working on this with no progress or understanding of why it does not seem to function, and I found little on other sites detailing the issue.

#46 Whistle Master

Whistle Master

    Hak5 Ninja

  • Pineapple Moderators
  • PipPipPipPipPipPipPip
  • 623 posts
  • Gender:Male
  • Location:CH

Posted 15 April 2012 - 02:20 PM

Sebkinne,

That is amazing news, if you wouldn't mind after you release the details to explain why it didn't work WM and myself have been working on this with no progress or understanding of why it does not seem to function, and I found little on other sites detailing the issue.

I totally agree :P Everything is ready, just waiting for a solution for ettercap working!

24302.png
Paypal: Donate Link
Bitcoin: 1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#47 shadowmmm

shadowmmm

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 89 posts

Posted 21 April 2012 - 12:48 AM

still sooooooooooooooooo looking forward to this :)

#48 Whistle Master

Whistle Master

    Hak5 Ninja

  • Pineapple Moderators
  • PipPipPipPipPipPipPip
  • 623 posts
  • Gender:Male
  • Location:CH

Posted 21 April 2012 - 01:15 AM

We still have issue with ettercap :mellow: We are working on it with Seb.

24302.png
Paypal: Donate Link
Bitcoin: 1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#49 ON-jOlt

ON-jOlt

    Newbie

  • Active Members
  • 7 posts

Posted 23 April 2012 - 07:08 PM

i've not completely familiarized myself with the pineapple, i know enough about it. I just put OpenWRT on a TP-Link MR3020 (the one they use for PirateBox) and thought to myself im going to make it more like a pineapple.

I digress, could you not just route them through a proxy that, instead of injecting an ad, you inject the JS. have the ajax point to HTML5 socket or nodeJS, hell you may even be able to open an XMLHttpRequest to "<anydomain-like-google.com/pineapple/kl" then just filter (regex) the request at the proxy for "/pineapple/kl" and redirect it to wherever you want to run it. I do XSS hacking this way alot.

Just my 2 cents, they do this kind of JS for logging mouse movements and keys on OWA (OpenWebAnilitics) and piwik and store it in DB so you can replay a session, its sick.

#50 hakatta

hakatta

    Newbie

  • Active Members
  • 7 posts

Posted 28 May 2012 - 10:45 PM

Did I miss something, I cant find keylogger in the Module system. I have a Mk4 running v2.1.

Thanks

#51 Whistle Master

Whistle Master

    Hak5 Ninja

  • Pineapple Moderators
  • PipPipPipPipPipPipPip
  • 623 posts
  • Gender:Male
  • Location:CH

Posted 29 May 2012 - 01:12 AM

The first version of the keylogger module is not available because I currently trying to make a v2 with ettercap, but still having issue with it :mellow:

24302.png
Paypal: Donate Link
Bitcoin: 1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#52 KiatoGS

KiatoGS

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 178 posts
  • Gender:Male

Posted 21 June 2012 - 04:56 PM

Is there any progress with this module?? WM i am really hoping you are steel working on it because it sounds just PERFECT!

Is there any way of installing v. 1.1?? It has all I need ;)

Edited by Giannhs, 21 June 2012 - 05:00 PM.

KiatoGS


#53 thaihenry

thaihenry

    Hak5 Fan

  • Active Members
  • PipPip
  • 29 posts

Posted 21 June 2012 - 06:24 PM

Instead of using ettercap, (the filters don't work properly) use sslstrip to write an iframe in the response body. If you provide me with your java script code, I can modify sslstrip for you to do that, so that your sslstrip module will also do key logging!

This can also be taken further to do all kinds of things like for example sending users to a computer running metasploit, set etc.

while you are at it might as well do a SET module since I have SET working on my router.

#54 Whistle Master

Whistle Master

    Hak5 Ninja

  • Pineapple Moderators
  • PipPipPipPipPipPipPip
  • 623 posts
  • Gender:Male
  • Location:CH

Posted 22 June 2012 - 12:33 AM

To be honest, I did not give a try since quite a long time :unsure: I have everything ready but I need to investigate some stuff with Seb on ettercap. You are right thaihenry, this could also be done with a modified version of sslstrip, I will give it a try.

24302.png
Paypal: Donate Link
Bitcoin: 1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#55 Crazy52

Crazy52

    Hak5 Fan

  • Active Members
  • PipPip
  • 19 posts
  • Gender:Male

Posted 22 June 2012 - 02:26 AM

ive had more luck with ajax keyloggers than java

#56 Whistle Master

Whistle Master

    Hak5 Ninja

  • Pineapple Moderators
  • PipPipPipPipPipPipPip
  • 623 posts
  • Gender:Male
  • Location:CH

Posted 22 June 2012 - 04:20 AM

This is a ajax keylogger but the injection with ettercap does not work at the moment. This is what I have to investigate.

24302.png
Paypal: Donate Link
Bitcoin: 1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#57 KiatoGS

KiatoGS

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 178 posts
  • Gender:Male

Posted 22 June 2012 - 09:07 AM

Is it possible to make the v 1.1 available again until the release of v 2?

I think v 2 will become pineapple's top module ;)

KiatoGS


#58 Anton

Anton

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 133 posts
  • Gender:Male
  • Location:Scotland
  • Interests:WiFi, Hacking, Hardware, Football, Gaming

Posted 22 June 2012 - 09:33 AM

Is there a module out there that will dump all traffic for every one connected to the pineapple to a file so i can open it in say wire shark or something like that latter?

Scotland_240-animated-flag-gifs.gif

1315848720480J32.jpg"Don't look for the router, Become the router" - The WiFi Pineapple1315848720480J32.jpg

01110100 01110010 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100


#59 Molotof

Molotof

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 115 posts
  • Gender:Male
  • Location:East Coast
  • Interests:If it ain't broke, Break it and fix it !

Posted 22 June 2012 - 10:03 AM

Is there a module out there that will dump all traffic for every one connected to the pineapple to a file so i can open it in say wire shark or something like that latter?



Yes for sure it is call tcpdump it will capture all traffic and put it in a pcap file for your wireshark pleasure, but SSL traffic is going to be useless, so run sslstrip with it to have an all seeing eye :)

#60 Anton

Anton

    Hak5 Zombie

  • Active Members
  • PipPipPipPipPip
  • 133 posts
  • Gender:Male
  • Location:Scotland
  • Interests:WiFi, Hacking, Hardware, Football, Gaming

Posted 22 June 2012 - 02:45 PM

getting an error with tcpdump "/usb/modules/tcpdump/tcpdump.sh: line 2: tcpdump: not found" is there a guid on how to use this any where?

Cheer Molotof.

Scotland_240-animated-flag-gifs.gif

1315848720480J32.jpg"Don't look for the router, Become the router" - The WiFi Pineapple1315848720480J32.jpg

01110100 01110010 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users