Jump to content

echoblack

Active Members
 View Profile  See their activity

  • Posts

    86

  • Joined

  • Last visited

 Content Type 

Everything posted by echoblack

  1. echoblack
    you know what give me a few more hr's on this script. The xterm sslstrip window is not staying open for me. I'd like to clear the "Default route" on fail and start up because it troughs "SIOCADDRT: File exists" if you run twice I don't really know how to do that yet though. Also, the installer-0.1 will tell you it install correctly even if it didn't :P ----------------------- I guess I could just write a scrip to set up the Pineapple too Then this how to would be nothing but RUN this on Pineapple & RUN this on laptop -------------------------------
  2. echoblack
    Installer-0.1 has BUG ! LINE #55 - cp ./sslstrip-0.7 /usr/src/sslstrip-0.7 Corrected #55 cp -r ./sslstrip-0.7 /usr/src/sslstrip-0.7 ====================== I'll post toughs files in a little bit. But you can just do this to change the IP to 10.110.0.0/24 Edit the /etc/config/dhcp FIRST to the 10.110.0.0/24 THEN "With out rebooting" ++++++++++++++++++++++ Now, Navigate to the Webif Admin Web Page of Network/Networks i.e. """" http://192.168.*.*/ cgi-bin/webif/network.sh """" OK Now, Fill in the input fields with this information. . . CODE Connection Type = Static IP Type = Bridged IP Address = 10.110.0.2 Netmask = 255.255.255.0 Default Gateway = 10.110.0.1 Lan DNS servers = Leave Blank Or Set To 10.110.0.2 NOTE: Make sure there is not 10.110.0.1 in the DNS box or Anything ells It will mess things up. Now, hit the "Save Changes" Button then Apply Changes at the bottom. It probably will not reconnect so just let it sit for like 5min's then Power Cycle +++++++++++++++++++++++++++++++++++++
  3. echoblack
    OK, I got v0.1 of the pineapple.sh w/sslstrip uploaded There are some typos in the comments but other then that I think it is one sexy script If I do say so myself :P But, I am sure I'll have v0.2 up tomorrow LOL
  4. echoblack
    You know what I think I was doing something ells wrong and that is way I was getting that error. I am almost done with new new "pineapple.sh + sslstrip". I'll probably have it up tomorrow. I just has to spend 2hr's helping my roommate get ripped off on a new laptop form BestBuy. They made him pay $70 for some crappy antivirus software... And I am just going to install Linux on it anyway... What a rip off ! He refused to change his billing address on his credit card so Newegg.com kept rejecting his order.
  5. echoblack
    boy, sorry I bought a Pineapple for Darren. So, I don't really know where to get all the stuff that you need. All i needed to do when I got it was get the new haserl, webif but you already have found that. If you get a working setup I am sure it will work with toughs lines put in the /etc/config/dhcp --------- You know just and idea could be totally wrong. But my Pineapple Darren made had Both the ipkg packages manger and opkg package manager intalled? Maybe they are really the same but if not then maybe the packages your are looking for are only for the opkg package manager and you need to install that first.
  6. echoblack
    Ya, I was thinking the only reason you would have put that stuff in the /etc/config/dhcp is if there were alredy thoughs option in there. You should be fine upgrading. Use the opkg thing. I'd give you a like to the packages and can if you can't find them. But I am lazy
  7. echoblack
    Ya, go ahead and up grade to Kamakaze 9.01 I think it is now..... That mite not be the problem your haveing though. What do you meen your useing option 'gatway' 10.110.0.1' option 'dns' '8.8.8.8' ? Try just Cut and Past my /etc/config/dhcp into your Fon router and try that. ----------- Also, NOTE the BUG in the script I just pointed out in that section of the HowTo
  8. echoblack
    You know what. that line with all the IF [ 1 == x -o 1 == y -o 1 == z ]; then That give me a "Too many arguments specified" error -------- I'm also having problems gettting the output of commands converted to strige values. If you feel like giveing me the answer that'd be cool. ----------- Never mind I just changed the code so I don't have to do that.
  9. echoblack
    Nice, I was looking how to convert the text to lower case or how to do that IF [1=x OR 1=y]; then but just gave up. Thanks, I put that in now and also made all the IP's variables and the sslstrip port a variable. I was going to have the user input the IP's they want but that mite cause problems because the Pineapple needs to be set up for them too. So, I didn't but it is now a lot easyer for the user to change the IP's to the ones they want. I also figured that just hard coding in sslstrip port of 10000 is fine too because with the default port there is no need to specify the port for sslstrip to listen on. --------- I'd like to have the scrip make sure sslstrip is installed but it is just a Python scrip that the user may not have in /usr/bin OR they may have even changed the name. This is the same reason I didn't have it open a Xterm and start sslstrip for the user.. . . . HUM, I "Could" just include sslstrip In the script itself! That would be cool. Then I'd just have to check if Python is installed. I mean come on why would you not run sslstrip ?. . . Ya, man I am doing that right now. I'm going to put this script and the sslstrip scrip in a tar.gz and write an installer. Any other cool tools you think I could install with it?
  10. echoblack
    Hum, I'd like to do just a little more research on them. Just to find out more facts. Here in Hawaii everyone uses Aloha, Shaka, Hawaii, Pineapple, in there passwords. It is crazy easy to crack passwords out here :P Aloha + some #'s is Huge seemingly 20% of passwords
  11. echoblack
    Yes, It has WPA2-Personal. However, with an essid like that I bet the passphrase is crackable. But that would not matter if you just want to DOS's it. Or if you have a Pineapple..... Right, Jasager will just except any encryption the AP it is impersonating has or just tell the client that there is not need or something to that effect?
  12. echoblack
    Internet Connection Sharing on "LINUX" & Jasager Pineapple Setup All credit for this HowTo go's to taiyed14 I just made this HowTo page for the Hak5 forums and commented/tidied up the shell scrip & added the sslstrip stuff --------------------------------------- When you get to setting the IP address in the Webif and the /etc/config/dhcp Set then to the IP address I have in there i.e. 10.110.0.2 for the pineapple and stuff --------------------------------------- - On Pineapple - IP address = 10.110.0.2 Ethernet Interface = ETH0 WiFi Interface = WiFi - On laptop - Ethernet Interface - Pineapple GW IP address = 10.110.0.1 Internet Facing Interface & Wireless Interface = wlan0 Pineapple Facing Interface & Ethernet Interface = eth0 This is how it will all work in the end. [internet+DNS > ("DHCP"GW > wlan0) > (eth0 > "DHCP"ETH0 > WiFi)] ---------------------------------------------- If you have a FON La Fonera NOT a la Fonera+ Then you can just use this scrip to set up your pineapple for use with the Pineapple.sh script below And then skip to section - 2 - Otherwise just keep on reading the HowTo. It is simple anyway. Follow the README file inside Uploaded at these two sites pineapple-setup-0.1 http://rapidshare.com/files/324684119/pine...etup-0.1.tar.gz http://www.filefactory.com/file/a13045d/n/...etup-0_1_tar_gz sha1-sum = 096eba367c6d570685f623ae84ba5288aef0e08e md5-sum = 11a48e9a7e73c7729daeb32b5cee06bd ---------------------------------------------- ( Section - 1 - ) First lets set up the Jasager-Pineapple Connect to the Jasager-Pineapple and SSH into it ssh -c blowfish root@&lt;IP ADDRESS OF YOUR PINEAPPLE AT THIS TIME&gt; Now you need to edit the /etc/config/dhcp Configuration file. So, it looks like this. config 'dnsmasq' option 'domainneeded' '1' option 'boguspriv' '1' option 'filterwin2k' '0' option 'localise_queries' '1' option 'local' '/lan/' option 'domain' 'lan' option 'expandhosts' '1' option 'nonegcache' '0' option 'authoritative' '1' option 'readethers' '1' option 'leasefile' '/tmp/dhcp.leases' option 'resolvfile' '/tmp/resolv.conf.auto' config 'dhcp' 'lan' option 'interface' 'lan' option 'start' '100' option 'limit' '150' option 'leasetime' '720m' option 'ignore' '0' list 'dhcp_option' '3,10.110.0.1' # This is the IP address of . . #. . The Host Laptop's Net-Interface acting as GW list 'dhcp_option' '6,10.110.0.2,8.8.8.8' # This is Option 6 define the DNS server, . . # . . Then IP of Pineapple, Then Googles DNS IP config 'dhcp' 'wan' option 'interface' 'wan' option 'ignore' '1' option 'start' '100' option 'limit' '150' option 'leasetime' '720m' ! Don't Reboot Yet ! Now, Navigate to the Webif Admin Web Page of Network/Networks i.e. http://<IP ADDRESS OF YOUR PINEAPPLE AT THIS TIME>/cgi-bin/webif/network.sh OK Now, Fill in the input fields with this information. . . Connection Type = Static IP Type = Bridged IP Address = 10.110.0.2 Netmask = 255.255.255.0 Default Gateway = 10.110.0.1 Lan DNS servers = Leave Blank Or Set To 10.110.0.2 NOTE: Make sure there is not 10.110.0.1 in the DNS box or Anything ells It will mess things up. Now, hit the "Save Changes" Button then Apply Changes at the bottom. It probably will not reconnect so just let it sit for like 5min's then Power Cycle ------------------------------------------------ OK Jasager Powered Pineapple is all setup ------------------------------------------------ ( Section - 2 - ) Now connect to the Internet through a Wireless Router with your Host Laptop's Wireless Interface "wlan0" You can download this script pineapple-0.9.1 from this link. Extract the tar.gz file. Navigate into it and run the installer as root sudo ./install.sh NEW PINEAPPLE-0.9.1 Support for BackTrack4 included in the installer! http://rapidshare.com/files/393232951/pineapple-0.9.1.tar.gz md5sum = 317f6e9fd878d0e062950b435d22f6e9 sha1sum = e2f982e6f9bebfd7fee2b5c02065a5fd75456ac0 OLD PINEAPPLE-0.9 http://rapidshare.com/files/381908032/pineapple-0.9.tar.gz md5sum = d904beabab441a8990d6423d7a02e9fb sha1sum = b29583126a3ad4e8dc65ea219b56f293d46a8bd9 OLD PINEAPPLE-0.8 http://rapidshare.com/files/377906412/pineapple-0.8.tar.gz md5sum = d6db93a2befab50a23a92785934a9289 sha1sum = b4f04d06e99361c7dbeb48cfeacd810182710d22 =========================== OLD PINEAPPLE-0.6 http://rapidshare.com/files/363545320/pineapple-0.6.tar.gz md5sum = aedec7f15ff5f37f0ceaa6ddbe740232 sha1sum = 4f641e61455eac36af2bb036812e10770d44d084 OLD PINAPPLE-0.4 http://rapidshare.com/files/324710329/pineapple-0.4.tar.gz ---------------------------------- All Right then ---------------------------------- Now you can just connect to a Wireless Router with the Wireless Interface on the Host Laptop Then run this command after install with root privileges sudo pineapple.sh Then Plug in the Pineapple :) ---------------------------------------------------------------------- Navigate to the Jasager Admin Webpage and turn Karma ON. Make sure you add Your Fon Routers essid of "pineapple" or "OpenWrt" to the "Black List" - Every Time you Reboot the router ! ! ! Now Start up Wireshark on your Host Laptop and listen on interface "eth0" and get your packet sniffing on. Check out the dsniff tools too. Maybe Run an Attacker WebPage with all the latest Exploits & redirect victims there. Maybe inject Javascrip or Flash and take control of the users WebCam Also, If you deauth victims and maybe run a DOS on there AP they will connect to your Pineapple. Maybe have an open WiFi LAN with an essid of "Free Public WiFi" and victims will connect on purpose. -------------------------- The possibilities are endless. SOOO much better then attacking one network at a time. ================================================ To Kill all of this just Run these commands with Root privileges iptables -X iptables -F /etc/init.d/iptables stop ================================================ If you have problems with Pineapples Clients not being able to connect to the internet. Ping your way out... Watch Wireshark and find out where the brake is. Start up a VirtualBox. Give it it's own Wireless NIC Via USB Pass Through Open a Shell and . . . ping 10.110.0.2 ping 10.110.0.1 ping (The wlan0 IP address) ping (The GW address) ping 8.8.8.8 ping google.com
  13. echoblack
    Woops..... Sorry I am a dumbass. I was watching Wireshark and every time I made a DNS request I was seeing a ICMP Port Unreachable from my laptop Ethernet Port to the Pineapple 10.110.0.1 -> 10.110.0.2. Then Looked at the Webif page and it had put my Host laptop Ethernet port as a DNS server. I took that out and now it is just as fast as when I was running the dnsmasq on my laptop. Sorry.....
  14. echoblack
    Woops..... Sorry I am a dumbass. I was watching Wireshark and every time I made a DNS request I was seeing a ICMP Port Unreachable from my laptop Ethernet Port to the Pineapple 10.110.0.1 -> 10.110.0.2. Then Looked at the Webif page and it had automatically put my Host laptop Ethernet port as a DNS server. I took that out and now it is just as fast as when I was running the dnsmasq on my laptop. Sorry..... ------------------------ So, I guess I'll leave this HowTo up just for reference sake but Ya, taiyed14's script is the way to go.
  15. echoblack
    I was at the mall with my laptop and just was sniffing to see what was around. Low and behold a Wireless network broadcasting an essid of "Security Cam" First I though Hay, I could deauth the cam and connect it to my Pineapple but then realized there is a far more simple and harmful attack that could be done. Just DeAuth all the Cam's ! It would be crazy simple to take down the whole Security Cam system & run a DOS on the AP. Any noob could do it. This alone is an Unacceptable security risk. Not to mention taping in and being able to see what all the security cams see. Sure having the Security Cam system broadcasting it's essid and naming it "Security Cam" is super dumb too but it could be found out anyway. I think all WiFi Security Cams should be taken off the market do to there complete lack of "Security."
  16. echoblack
    Ya, maybe I am just missing something. Owe, I see in Wireshark that DNS requests are just sent on the Broadcast IP. 10.110.0.255 if all ells fails. So I guess it doesn't matter what IP I put there.... Or, maybe that is what was slowing it down. I got a noob on now so I want to play with them for a bit. He, he he. This Jasager is SOOOO much more fun then cracking one network at a time. I always hated when I'd get into one network only to look at airodump-ng and see some other network has all the noobs.
  17. echoblack
    Well, I was wrong ! I figured with the extra network hop it would slow it down but no. It is WAY FASTER to handle DHCP+DNS on my Host laptop. When having the Jasager-Pineapple doing DHCP+Passing DNS The Wireless Clients have almost unusably slow connection. Can't watch Youtube. With the Pineapple doing DHCP+passing DNS PING google.com (66.102.7.103) 56(84) bytes of data. 64 bytes from lax04s01-in-f103.1e100.net (66.102.7.103): icmp_seq=1 ttl=52 time=93.3 ms ^C64 bytes from lax04s01-in-f103.1e100.net (66.102.7.103): icmp_seq=2 ttl=52 time=80.2 ms --- google.com ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 5219ms rtt min/avg/max/mdev = 80.237/86.783/93.329/6.546 ms With my laptop running dnsmasq doing DHCP+DNS & pushing Port 80 through sslstrip ! PING google.com (66.102.7.104) 56(84) bytes of data. 64 bytes from lax04s01-in-f104.1e100.net (66.102.7.104): icmp_seq=1 ttl=52 time=69.5 ms 64 bytes from lax04s01-in-f104.1e100.net (66.102.7.104): icmp_seq=2 ttl=52 time=70.8 ms ^C --- google.com ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1002ms rtt min/avg/max/mdev = 69.523/70.198/70.874/0.725 ms
  18. echoblack
    Hum, Well I got it to work with the edited /etc/config/dhcp. root@OpenWrt:~# cat /etc/config/dhcp config 'dnsmasq' . . . . . Edited to keep short. . . . config 'dhcp' 'lan' option 'interface' 'lan' option 'start' '100' option 'limit' '150' option 'leasetime' '720m' option 'ignore' '0' list 'dhcp_option' '3,10.110.0.1' list 'dhcp_option' '6,10.110.0.254,208.67.222.222' config 'dhcp' 'wan' option 'interface' 'wan' option 'ignore' '1' option 'start' '100' option 'limit' '150' option 'leasetime' '720m' list 'dhcp_option' '3,10.110.0.1' list 'dhcp_option' '6,10.110.0.254,8.8.8.8' However, it is super super Slow. . . . . Maybe there are some other settings I can change. It is like dial up speeds with the Fon set up like that. I even changed the DNS server form the google 8.8.8.8 to the OpenDNS 208.67.222.222. Still super slow can't even watch YouTube. My Real GW is at 1MB/down and 1Mb/up. (Yes Mega Byte >1,300KB/s Down :) ) However, When running with my dnsmasq on the Host laptop doing DHCP+DNS I get nearly Full Down/Up bandwidth and extremely low latency. Even with all Port 80 traffic being pushed through sslstrip. With the Pineapple doing DHCP+passing DNS PING google.com (66.102.7.103) 56(84) bytes of data. 64 bytes from lax04s01-in-f103.1e100.net (66.102.7.103): icmp_seq=1 ttl=52 time=93.3 ms ^C64 bytes from lax04s01-in-f103.1e100.net (66.102.7.103): icmp_seq=2 ttl=52 time=80.2 ms --- google.com ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 5219ms rtt min/avg/max/mdev = 80.237/86.783/93.329/6.546 ms With my laptop running dnsmasq doing DHCP+DNS & pushing Port 80 through sslstrip ! PING google.com (66.102.7.104) 56(84) bytes of data. 64 bytes from lax04s01-in-f104.1e100.net (66.102.7.104): icmp_seq=1 ttl=52 time=69.5 ms 64 bytes from lax04s01-in-f104.1e100.net (66.102.7.104): icmp_seq=2 ttl=52 time=70.8 ms ^C --- google.com ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1002ms rtt min/avg/max/mdev = 69.523/70.198/70.874/0.725 ms
  19. echoblack
    Ya, and I bet the Fon will dish out IP's faster then my Laptop. It is looking like I almost got it I just need to edit the /etc/config/dhcp I'll write a new HowTo for the proper way and put a link to it at the top of this how to. I'll leave this howto alone though for diversity.
  20. echoblack
    root@fonz1:~# cat /etc/config/dhcp &lt;SNIP&gt; config 'dhcp' 'lan' option 'interface' 'lan' option 'start' '100' option 'limit' '150' option 'leasetime' '1h' list 'dhcp_option' '3,10.168.1.1' #Push default gateway to clients (laptop eth0) list 'dhcp_option' '6,10.168.1.254,8.8.8.8' #Push DNS servers to clients config 'dhcp' 'wan' option 'interface' 'wan' option 'ignore' '1' Owe, I was suppose to literally put list 'dhcp_option' '6,10.168.1.254,8.8.8.8' Ok, So. . . list 'dhcp_option' '3,10.110.0.1' # This is the IP address of the Ether net port on my Laptop Providing Internet to the Fon list 'dhcp_option' '6,10.110.0.254,8.8.8.8' # I don't understand This ? What is with the last part of the IP "254" Why is that 254 ? Fon Ethernet port is # 10.110.0.2 Ethernet port on Laptop Provideing Internet to the Fon is # 10.110.0.1 Real GW at house is # 192.168.1.1
  21. echoblack
    Thank you digininja ! I'm glad this meats your expected level of quality. I try to write all my HowTo's right after I figure things out for the first time. This way I remember all the pitfalls a newbie can have. I am working with taiyed14 to try and have the DHCP server running on the Jasager-Pineapple but with that way Wireless Clients can never traverse form the network block 10.110.0.0/24 to 192.168.1.0/24. I left the Windows flaming in because I figure anyone reading this is probably a Linux user. Also, Matt Lestock knows a lot more then me so I figure he can take a little ribbing. He give a little ribbing to Linux. So you know, all in good fun. All respect for Matt Lestock.
  22. echoblack
    It still is not working your way for me. Here I added the 8.8.8.8 google DNS server to both the Webif interface and that file. With out running DHCP+DNS on my Host-Laptop. The clients connected to the Pineapple-WiFi can't get past eth0 to wlan0 I did clear all the iptables and stop my dnsmasq running on my laptop. Then ran your script. . . Connected to the Pineapple via Ethernet. Connected OK. Then connected to the Pineapple within a . . Backtrack4-VirtualBox with it's own wireless card supplied via USB Pass-through The Wireless Client can not Ping past eth0 on my laptop Client connected to WiFi on the Pineapple ping 10.110.0.2 # pineapple Ethernet port -&gt; OK ping 10.110.0.1 # eth0 on Host laptop -&gt; OK ping 192.168.1.166 # wlan0 on Host laptop -&gt; FAIL ping 192.168.1.1 # GW -&gt; FAIL ping 8.8.8.8 # Outside Google sever -&gt; FAIL ping google.com # DNS -&gt; FAIL Ping -&gt; FAIL SSH'd in to the Pineapple and Pinging from there. ping 10.110.0.1 # eth0 on Host laptop -&gt; OK ping 192.168.1.166 # wlan0 on Host laptop -&gt; OK ping 192.168.1.1 # GW -&gt; OK ping 8.8.8.8 # Outside Google server -&gt; OK ping google.com # DNS -&gt; OK Ping -&gt; OK root@OpenWrt:~# cat /etc/config/dhcp config 'dnsmasq' option 'domainneeded' '1' option 'boguspriv' '1' option 'filterwin2k' '0' option 'localise_queries' '1' option 'local' '/lan/' option 'domain' 'lan' option 'expandhosts' '1' option 'nonegcache' '0' option 'authoritative' '1' option 'readethers' '1' option 'leasefile' '/tmp/dhcp.leases' option 'resolvfile' '/tmp/resolv.conf.auto' config 'dhcp' 'lan' option 'interface' 'lan' option 'start' '100' option 'limit' '150' option 'leasetime' '720m' option 'ignore' '0' option '6,10.110.0.254,8.8.8.8' config 'dhcp' 'wan' option 'interface' 'wan' option 'ignore' '0' option 'start' '100' option 'limit' '150' option 'leasetime' '720m' option '6,10.110.0.254,8.8.8.8'
  23. echoblack
    Awe, Ok I'll set that up on the Pineapple /etc/config/dhcp I never set that up on the Fon. I was just setting the DNS server in the Webif interface. I got a Pineapple form Daren so I didn't install/seetup OpenWRT or Jasager.
  24. echoblack
    Ya, it is better to handle the DHCP on the Pineapple. But How are the WiFi clients getting DNS?
  25. echoblack
    Hum, No the traffic-forwarding.sh script is not working on my Archlinux Box.It all connects up fine but I can't resolve DNS on a connected WiFi client. . . Ya, I just did it agin and made sure to add the OpenDNS IP's in the DNS severlist and still no go in a Client connected to the WiFi. . . Can't pull up google.com. In theory though, the way your doing it should be working. It seems the problem is with the extra layer of network between the WiFi - ETH0 on the Pineapple. Like I "can" resolve DNS if I SSH into the Pineapple just not from Clients connected to the WiFi. Also, To answer my question about a safe Tx Power setting for the Fon router... Ya, just go ahead and max it out at 16dbm p.s. I edited my HowTo and set the IP address range to 10.110.0.1/24 like how you did. I think it is much less likely to be connected to a GW of a 10.110.0.1/24 then the 192.168.bla.1/24
×
×
  • Create New...