[Eletronic Cigarettes]

Sorry, wrong thread...

[[Version 1] How To Become A Developer]

I'm definitely offering my services.

C++ was the first language I learnt, about 4 years ago now, + known C for ~3. I'm always trying to finish off some project inbetween lectures but I finish all my exams in a month, so I'll be looking for some programming to do.

This should be fun.

[U3 Smart Drive Help]

Help please! I ran universal customizer on my U3 flash drive and no when i put it in my comp it lights up and the computer will show up a removable disk but when i click on it it says their is no disk entered please insert a disk. I have all the folders backed up, is their any way to restore my flash drive or am i screwed? Please help me Thanks In advance for your responses.

If you right click you may be able to re-format the drive.

Re-formatting may help.

-Jez

[Jasager installed now what]

NO one is attempting to connect to Jasager but it's turned on and everything is working. So I must not have something set up right.

Any help?

Hmm... Sorry to advise something simple, but did you turn Karma on?

and learning from digininja: the wiki tutorial referenced above doesn't get it working fully. The DHCP server has to run on the Fon (setup by default) to allow you to see the assigned IP in the jasager interface.

And with respect to MitM, As its already in the middle, you just fire up wireshark to get some packets.

Say you want to do some more interesting stuff: ettercap filters are pretty fun.

[Where do you live]

Where do you live???????????????

Im in Australia :D

Austrailia is nice. Shame about some recent news stories though:

[Jasager + sslstrip/sslniff]

Hi Everyone

If i were to use Pineapple in conjunction with SSLtrip in a windows enviroment . Do i need to reroute or ARP the victims oops i meant my other testing laptop . Just wanted to simulate what Darren did in a windows enviroment

B)

I'm not sure about windows. Just running on linux would be your best bet as that is what the software is designed for.

Maybe If you get hold of the source code you could compile it on a windows machine into an .exe

But I dunno, lol.

-Jez

[nmap ?]

ok .. one of my neighbors was just on my wireless im sure of it .. i disabled it and my speeds returned..i live in rural area so i dont worry 2 much about the security of it.

the question is .. how do i use nmap to scan for the intruder... and i remember once i did a nmap scan that returned the compname or user-name of a computer .. and once i returned the comp names there were once on my network but not connected when i ran the scan... can u help me out .. ??? i have forgotten how to use it and would appreciate it if some one could give me the proper commands... using the zenmap gui thing.

What's with you guys? The young Mitnick would be ashamed...

Have some fun with him. As long as he isn't doing anything illegal, or use a lot of bandwidth with torrents, keep him on the network.

Run Nmap,

find his IP,

MITM with ettercap.

Write a filter that swaps every image with "goatse.jpg" see how long he keeps using the network .

????

PROFIT!

Be creative, I thought having fun with guys like this was standard stuff. If he keeps using it, add more filters once a day, redirect him from google to klingon google.

I know this is a late reply, but C'MON! Hacking is about having fun!

-Jez

[Wireshark decrypt SSL with Mitm]

As I understand it I can achieve decrypted ssl with a mitm, I want to be able to decrypt ssl in wireshark for my own personal use and so I can see the actual http and not just ssl traffic.

From what I have read I need

-A SSL connection

-A Mitm Proxy

- A certificate for the proxy (does not have to be signed for my self I can just tell firefox to accept).

-Wireshark

=- Fire up Backtrack3;

=- Open up a shell: "ettercap -G";

=- Scan for hosts;

=- View host list;

=- Add appropriate target to "target 1" and router address (192.168.1.1) to target 2;

=- MITM -> ARP -> Check "sniff remote connections";

=- Start Sniffing (if you don't do this, the target cannot connect to the interwebs);

Certificate authentications will pop up on the target's browser, most people just click accept. If you don't want this to happen you'll have to get physical or complete remote access to the targets computer and upload your certificates. In my opinion, not worth it.

Any SSL passwords will be shown in the ettercap GUI interface without any decryption needed.

If you like, open up Wireshark to get any another yummy packets.

So in this case, Wireshark isn't even necessary to get your passwords.

.... So how can I get the Mitm set up, what software it out there for windows xp to do this (free if possible)?

Don't use windows XP?

if you really have to, use Cain. I believe there is a link above me.

Cain is easypeasy to use.

Good luck, young padawan.

-Jez

[help flashing the fon]

oooo i see thanks a lot

No problem, tell me how it goes.

I got to wait a month for my cable, so would like to know how you get on.

[169 ip when connected to ethernet]

Hi guys

I was poking around my pineapple AGAIN. I remember assigning a static for my Pineapple, now after a reboot i cant access karma and jassanger Config pages. It gives me 169 ip. which is APIPA i presume . Please can anyone help me to rectify this . ;)

Try starting from step 11 on the install/setup guide:

http://hak5.org/forums/index.php?showtopic=9908

Reflashing it nearly always works.

Try this linux script for a quick flash (nearly always worked for me until I bricked myself out one day, now waiting on a cable for a serial boot);

sudo ./easyflash eth0 openwrt-atheros-root.squashfs openwrt-atheros-vmlinux.lzma

Good luck,

Tell us how it goes.

[help flashing the fon]

help i was trying to flash the fon with the new firmware in darrens guide step 11 and i accidently disconnected the ethernet cable and so i restarted it. I tried to flash it again but either it is not working or it is taking a real long time 40 plus minutes. Is it working or am i wasting my time?

You may have bricked it. I'm in the same boat after disconnecting it trying to do something similar.

Your best bet is to flash it again, using a serial cable. The guide to do it is here:

http://hak5.org/forum/index.php?showtopic=12506

If this doesn't work then you maybe out of luck. But that is v. unlikely, as the serial boot is like CPR for the fon.

Best of luck.

> EDIT: Also, if you are no good with hardware, like I am, a user on here called "digininja" is selling the necessary cable for a good price.

I hope he doesn't mind me advertising.