cyoung_mi

I am looking for something like Wireshark, that will capture network traffic. But without the big interface. Something a little more stealth. I plan to use the captured file with NetWitness afterwards. It doesn't need to be totally stealthy, but not as obvious as WireShark. I am using an old apple cube as a network router, media center, etc. ( it is running Leopard but it is a PPC ) Thanks for your help! Chris

Sorry for doing something to death.. I did a search for VNC.. I understand most exe and such are blocked, but perhaps if the exe was zipped, it might pass ok. and I wasnt clear I guess.. I didnt mean try and embed VNC into a jpg or avi file.. I meant, hidding VNC server install inside a exe that does something simple, so the user thinks it worked. ( maybe like a keygen program or something simple ) Basicly I am asking if there a way for someone to sneak a VNC server install on your machine without you knowing. and if so, how do you protect yourself? ( besides the well known idea of "DONT OPEN ATTACHMENTS!" haha )

Hi, I was wondering if anyone has found a way to hide a quiet vnc server installation in something small like a movie file or some other type of attachment? I'm wondering if it's possible to email someone a simple attachment ( one that might pass a virus scan ) that once they extract or run it, it shows something "Fun" like a silly movie, or the like but also installs VNC server service quietly and updates something like dyndns.org? I'm guessing either the virus scan would catch VNC install, or windows would popup the internet access to dyndns.org ( vista for sure ). This could be really nasty and I hope there are ways to block this or protect yourself. Thanks! Chris

What do you have running at port 3501? Looks like you need to add iptables to route the lan packs to the wan. I haven't tried digininja's suggestion of renaming the iptables binary. Let us know what you end up doing.

Hi, Anyone else using the Mac version of Hamster? I'm using the most current version of 2.0.1 But I'm having some problems. I get Ferret up and running no problems there but during the capture, I get an error saying the Proxy failed. Also from what I have tried with my spare laptop, I visit a few sites and login on the spare laptop.. On my mac with Hamster I get the Ip, and the list of sites on the side. But when I choose one of the links, it takes me to the site, but doesn't show me logged in. am I doing something wrong? or are there problems with the Mac version of Hamster?? Would love to hear what others have found.

ah ok... ya the $99 was from a google search. I'm waiting for the Fon2 to be released here in the USA.. that really looks fun.

Well I'm not exactly sure why it works now. I was doing some research on iptables. with mine, DNS worked fine so I figured the gateway was ok. I changed the the FORWARDING line to an -I instead of -A ( but all that does is insert the line instead of appending it so not sure why that changes it but it works now ) #Allows wireless clients to access the internet iptables -A INPUT -i ath0 -j ACCEPT iptables -A INPUT -i eth0 -j ACCEPT iptables -A OUTPUT -o ath0 -j ACCEPT iptables -A OUTPUT -o eth0 -j ACCEPT iptables -I FORWARD -i ath0 -o eth0 -j ACCEPT iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE #Allow wan to connect via SSH iptables -t nat -A prerouting_wan -p tcp --dport 22 -j ACCEPT iptables -A input_wan -p tcp --dport 22 -j ACCEPT #Allow wan to open to Webif iptables -t nat -A prerouting_wan -p tcp --dport 80 -j ACCEPT iptables -A input_wan -p tcp --dport 80 -j ACCEPT #Allow wan to open Jasager iptables -t nat -A prerouting_wan -p tcp --dport 1471 -j ACCEPT iptables -A input_wan -p tcp --dport 1471 -j ACCEPT

WOW! Quite the price difference. I wasn't sure what the DIR300 was, I see it's a D-Link router. But WOW.. $99 for it vs. $29 for the Fon. I order the Fon's directly from the Fon Store with no problems.. And Personally I like the small size, the face the 2100 run off 5v ( Usb works great or battery ) and I put a new +12DBi antenna on it's standard port. Really glad to hear you got it working. But I for the price difference can you help explain why it's better? Why are you not able to get the Fon's? Just curious, I don't mean to sound like I'm putting the DIR300's down, I don't know much about them. I'm sure they are worth the extra money.

What do you have in your Network config? I found I have a problem in my Firewall.user file that was blocking the clients from reaching the internet.

Are you able to access the Fon using Wifi? What is the status of the Fon? Did you Flash it yet or do anything in the Jasager tutorial? Sounds like the Ethernet port on the Fon is not 'On' or you have a bad cable. What have you done so far?

I am. Well kinda. I have a problem I'm trying to figure out but it's not Mac related. My clients are not reaching the internet, but the Fon itself is. Looking into the gateway settings. Are you having problems? I use my aircard for internet service, and share the internet with the ethernet port.

Hmm.. does anyone have any suggestions at all?? I'm really stumped here.. The clients are unable to reach the internet. Yet I can from the Fon unit. What am I doing wrong?? Please??

I ran into this myself, but then I remembered during one for the tutorials.. you had to copy the original WebIf to another directory before installing Karma. I think WebIf overwrites some of the Karma files during the install. I installed the Piranha2 firmware it everything works great.. I have it installed on a 2100, with SD card installed. I used the windows client to flash the firmware. I need to figure out how to setup the firewall info now. I can run karma, and Clients associate with it, but they have no internet access. I'm really looking forward to getting ahold of a new FON 2, since they have Hamster/Ferret compiled for linux/mac now. would be awsome to attach my aircard for internet access, and run everything on the little fon. No need for another device, ( just browse to the Fon unit to access Hamster ) The unit can be totally wireless that way! Sorry got a little off topic. What client are you using to flash your fon? windows or linux? and what files are you flashing?

I was wondering if it was possible to control the fon's Leds. Both during normal operation and during the initial boot. I would like to have the LED's display the status the boot for example. Either have them count in Binary like a progress bar. Not sure if that's possible or not. I'm guessing it would be easier to assign them functions after the boot is complete. But would like some tips on how that can be done. Perhaps use them to show the status of Karma, or other scripts. ( turned on or off ) Thanks!

I just flashed the new Piranha 2 + Jasager 2.1 image. then I scp'ed the files you list above ( after doing a copy and paste from the website to a text file ) I made sure to copy everything except the firewall.users file to /etc/config and the users file to /etc My Jasager is accepting connections, and issuing ip address, but the clients can not reach the internet. I have my mac laptop set to ICS my Aircard with my ethernet. ( I changed the ICS network to 192.168.2.1 since that's what macs use for ICS. ) The clients are able to use DNS, but when I tried to ping www.google.com for example, the DNS resolves to the IP but it says Dest Port not reachable ( 10.10.10.1 ) say my client is 10.10.10.232, I am able to ping 192.168.2.250 ( the FON Eth0 interface ) and I can ping 192.168.2.1 ( the Laptop Ehthernet Interface ) Also from SSH on the fon, I am able to ping www.google.com. so it seems to me I have a problem in the Fon, but i'm unable to figure out what it is. Any thoughts?? is there a typo in the above configs? or is something changes with the new Piranha 2 + Jasager 2.1 ??

Great Tutorial.

This may be a total NOOB question, but I wanted to confirm myself. If the 'Mark' sends out probe requests for a WEP or WPA AP, what does Der Jasager do with those? it's not able to connect because the auth is not there right? Der Jasager only works with open AP probe requests right? I started thinking about that, because in one of the episodes, they discussed the 'Mark' sending out probes for both their home network, as well as the Corporate one. ( Do many Corporate wifi networks use no encryption these days? ) or is Der Jasager able to say, 'Yes I'm that AP and Yes that is the correct encryption'? Letting the 'Mark' connect?

I had a look at wifizoo.. The little Fon device is going to be quite the deal. To be totally self contained like that: 3G, DHCP, ICS, Jasager, wifizoo, and anything else people want to add. I'm not sure the power requirements of the Fon2 device, but to just plug it in, turn it on and that's it! You could login with your laptop, and surf like the other noobs. Then when you like, login to the Fon and see what's it's found and have some fun! No need to have a wired connection to the Fon unit, With a large thumbdrive you could set this unit up and leave it for a while.. letting it just collect those yummy packets. Come back, pick it up and YUM all that data! Anyone have any idea when we can buy a Fon2 here in the USA?

The Fon 2 looks like a great little device.. Nice that it can support 3G directly. Just imagine a Fon 2, with your 3G connection, running Jasager, and if someone can port Hamster.. All on one device! No need to run a laptop, ( expect to access Hamster and view the tasty cookies! ) Really looking forward to the USA release of the device. I can only image what some of the really smart people here will be able to do with this device.

Thanks! Ya had to figure it was limited.. someone would almost have to hack the firmware and install it. do you have any other info? like where to get the software or if that's what they did? or if it's an app that is installed on the phone separate from the firmware. also like to know how it works a bit more...

I have seen this all over the news. I work for VZW, and would like to know much more. I understand someone can install software on a cell phone in like 10min, that will allow them from anywhere to read all your sms messages, listen to your phone conversations, and turn on the phones Mic to hear what is happening around you. I wonder if anyone has any details on this. Is it targeting only a couple phone models or can they do it to any phone?? here is one news report were they did it. They have a video at the FEATURED VIDEO link just above the photo of the three cell phones. Http://www.newson6.com/Global/story.asp?s=8210979 Thanks for any help and assistance.