Jump to content


Popular Content

Showing content with the highest reputation since 11/11/2019 in Posts

  1. 1 point
    My apologies for the trouble - that doesn't seem right at all. If you haven't already, go ahead and open a ticket at https://shop.hak5.org/contact and we'll get you sorted.
  2. 1 point
    The Lan Turtle has an ethernet connection on it so if plugged in to a network it has network by default so initiating a VPN from it is trivial unless router is blocking it. The BashBunny does not have a network connection unless the host it is connected to it is sharing its network with it which is done manually and usually not straight forward on all OSes...like MacOS. You will need to initiate sharing and then have an openvpn client on the BB with the vpn profile. So, if you get network sharing going on the host... Get openvpn client installed on Bunny.... Then I see possibility. Only other way is to install a vpn client on the host and initiate connection from it and use host as vpn client. Of course you need admin rights and you will be installing software on the victim this way.
  3. 1 point
    Try doing a factory reset: https://docs.hak5.org/hc/en-us/articles/360010555853-Factory-Reset Then do the initial config for the pineapple. Follow this guide to connect via SSH: https://docs.hak5.org/hc/en-us/articles/360010471514-Secure-Shell I would try connecting with a connection to the pineapple using ETH port. If that doesn't work for some reason post back and can try a few other things.
  4. 1 point
    Try watching some Hak5 videos on YouTube: https://www.youtube.com/hak5
  5. 1 point
    Yes. If C2 is at location A and you can establish connection from location B then you have a good route. The next issue is to check if all the settings are correct in C2 for the config file loaded on the pineapple. All it would take is one wrong option. The other thing to check is that the correct ports are open at both locations. If a firewall at on location is configured strictly it could be the cause of the issue. If you can ping the server at A from B then the next thing I would check is all your C2 configs. Possibly do a complete reinstall to make sure you have all the routing info correct. If this setup wrong at initial setup then all the config files for devices will be wrong as well.
  6. 1 point
    If she has done it properly then you won't be able to get proof. If you are worried about her continuing to do it, get yourself a non-smartphone and use that for a while. It's the safest way.
  7. 1 point
    i'll say, I actually got to use my License key! attempting to enroll a device now. Thx for the assist, looking forward to the update that makes this work as it should.
  8. 1 point
    I think it is specific to LetsEncrypt only. In your case, since you are using a self-signed cert, it is not needed. I just wanted to be clear with my example in case someone reads it in the future. I outlined my own struggles with certs in another post.
  9. 1 point
    @UnLo Try these suggestions: Use a full path for the executable part: /root/c2_community-linux-64 (or wherever this file is located - type in pwd to see the folder name). It's always best practice to use the full path Take out the https:// in the hostname, and just use: c2.mydomain.net Verify that the certFile path is correct: /etc/ssl/certs/selfsigned.crt Do you also have a key file that was created when you created the SSL certificate? You should specify it as well with -keyFile switch Here is my full command: /root/c2_community-linux-64 -db /root/c2.db -hostname c2.myhostname.com -https -keyFile /etc/letsencrypt/live/c2.myhostname.com/privkey.pem -certFile /etc/letsencrypt/live/c2.myhostname.com/fullchain.pem In my case, my -certFile is a bundled file that contains both the certificate and the intermediate trusted certificates from LetsEncrypt.
  10. 1 point
    Yes it has. Go to the shop and buy yourself a new one then don't allow her access.
  11. 1 point
    We're aware of the issue and will be releasing an update with ACMEv2 soon. Account creation should work again today. Let's Encrypt is doing 24 hour brownouts to call attention to the upgrade. In the meantime either wait the 24 hours for the v1 service to come back online, or provide your own keys using the appropriate command line parameters.
  12. 1 point
    Correct. STRING simply states to treat the file as standard ASCII so it can be viewed in the Cloud C2 web UI. Otherwise it's treated as a binary. The SOURCE is indeed just a tag - which is helpful when managing loot from multiple payloads. No problem on the example payload - I really enjoy writing these and hope they're useful for others looking to implement these features.
  13. 1 point
    If your phone support a USB Ethernet dongle, you can exfiltrate data via the web UI from your phone. I'm sure many other methods - like SMB as you mentioned - would work similarly. The USB-C port is only for charging. Interestingly, you can use your phone to charge the Shark Jack. Select "Connected device" from USB controlled by on the USB Preferences menu.
  14. 1 point
    Currently the C2EXFIL command accepts only one file at a time. USAGE -- C2EXFIL (optional)STRING (required)<PATH> (optional)<SOURCE> Examples: C2EXFIL STRING <PATH> <SOURCE> - send text data from <PATH> file from <SOURCE> C2EXFIL <PATH> <SOURCE> - send <PATH> file from <SOURCE> C2EXFIL <PATH> - send <PATH> file Multiple files may be uploaded using the tool, however you would need to loop over them in order to do so. I've published an example of this here: https://github.com/hak5/sharkjack-payloads/blob/master/payloads/library/example/cloudc2-multi-file-exfiltration/payload.sh
  15. 1 point
    Thanks for the report. We are looking into this now. This is related to Hak5 infrastructure as it pertains to adding packages not already in the mainline OpenWRT feeds end and will not impact your ability to install standard packages.
  16. 1 point
    @Geeksystem here's the article on manual flashing as promised: https://docs.hak5.org/hc/en-us/articles/360038189894-Manual-Upgrade
  17. 1 point
    Seems Recon ( under 2.6.2) is now not showing live updates during scan, but is writing to file - I was guided by to this solution. That's better than nothing.
  18. 1 point
    Hi Danny, Lets get started with making a custom bash script. We will begin by doing "vim H5C2", and creating a script with the following content. #!/bin/bash ./c2_community-linux-64 -hostname mysub.hostname.com -https We will then use the nohup command to keep the process running in the backgroup even after we exit the terminal as so. nohup ./H5C2 & The script will now run in the background even after your exit/close terminal.
  19. 1 point
    nah ' not a dumb question . sounds like the Mandingo just needs to be put in the right path, that's all
  20. 1 point
    Yes, this is doable using the macchanger utility. If it's not included in 1.0.1, it will be included in the forthcoming 1.0.2 which will introduce the NETMODE command for dhcp server, dhcp client, and transparent modes.
  21. 1 point
  22. 1 point
    Both the keymanager and autossh modules have now been updated with fixes for these bugs. You can use the update modules function from within module manager to get the latest versions.
  23. 1 point
    Why not just use the business's firewall? 99.99% of them have that capability.
  24. 1 point
    thanks for the reply but I just managed to figured out a solution -- I created it as a service, here's the steps: sudo vi /lib/systemd/system/hak5c2.service ------------ [Unit] Description=Hak5 Cloud C2 Server After=multi-user.target [Service] Type=idle ExecStart=/usr/local/bin/c2_community-linux-armv7 -https -hostname [hostname] -db /var/hak5c2/c2.db [Install] WantedBy=multi-user.target ---------- sudo chmod 644 /lib/systemd/system/hak5c2.service sudo systemctl daemon-reload sudo systemctl enable hak5c2.service systemctl start hak5c2.service // OR // sudo reboot
  25. 1 point
    I miss this app on windows. When I was running macOS. https://hisham.hm/htop/index.php
  26. 1 point
    Xavious! Thanks for all your help and useful input. Those of us with mind reading skills really enjoy your insights. In 31 years of IT and Network administration I've known many folks like yourself. Fired every single one of them. X:\Downloads\c2-1.1.1_community\c2_community-windows-64.exe -hostname -listenport 80 Where -hostname can equal your gateway on your network or an actual URL. _listenport for browser in this case If all goes well you should see something like this: X:\Users\You>X:\Downloads\c2-1.1.1_community\c2_community-windows-64.exe -hostname -listenport 80 [*] Initializing Hak5 Cloud C2 [*] Initial setup detected. Setup token: UXXX-MXXX-CXXX-BXXX [*] Running Hak5 Cloud C2 Go to your browser and type "localhost" without quotes, follow the prompts to register and login. You'll need the Setup token and the license key to complete the process. Hope this helps
  27. 1 point
    I have several Tetras. Unfortunately, they crash/reboot very often. It fills me with nostalgia for my days as a Windows user. I have a Nano, too, but don't use it often enough to say if it crashes with the same frequency.
  • Create New...