Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

Everything posted by CanadianTaco

  1. I only own the AWUS036H wifi adapter which only supports b/g wireless networks (I'll probably buy the AWUS036NHA in the near future) , but after looking at the product pages it seems that the AWUS036NHA supports b/g/n networks, thus allowing you to possibly 'pick-up' or see more available networks for whatever reasons you may need. I know for a fact that the AWUS036H(b/g) works wonderfully with backtrack and the wifi pineapple. So I'm assuming that the AWUS036NHA (b/g/n) works well too since the product page says it can be used to 'piggy-back' with the wifi pineapple. AWUS036H AWUS036NHA Hopefully that helps somewhat
  2. I've only tested it with Google Chrome, Firefox, and Internet Explorer. And so far only Google Chrome works. The other two get automatically redirected to 'peets.html' -edit- If it helps I saved the files using Google Chrome 'save page as' then 'Webpage, Complete'. Although I don't quite see how this could be causing the issue...
  3. I left the login pages as they were, except for the login form itself of course.
  4. So I have an Pineapple (mark IV) that is set up to connect through one of my laptops that is set up for internet connection sharing. The idea is that targets can connect to whatever site they want except facebook, twitter, or yahoo. When they attempt to connect to one of these three sites they get redirected to my facebook.html, twitter.html. and Yahoo.htm. On my target laptop (using google chrome and connected to my pineapple network) I can get redirected flawlessly. In Internet Explorer or Firefox, not so much. It gets automatically redirected to the sample 'peets.html' page. DNS Spoof Host: yahoo.com twitter.com facebook.com Landing page: <html> <head> <meta http-equiv="REFRESH" content="0;url=/s/redirect.php"> </head> <body> </body> </html> redirect.php: <?php $ref = $_SERVER['HTTP_REFERER']; if (strpos($ref, "facebook")) { header('Location: facebook.html'); } if (strpos($ref, "twitter")) { header('Location: twitter.html'); } if (strpos($ref, "yahoo")) { header('Location: Yahoo.htm'); } require('peets.html'); ?> tl;dr: Does anyone know why one browser would handle this differently than the other? or if this isn't the issue, how to go about fixing it? -edit- If it helps I saved the files using Google Chrome 'save page as' then 'Webpage, Complete'. Although I don't quite see how this could be causing the issue...
  5. This guide was originally meant for the older models of the pineapple, but the scripts still work: http://hak5.org/hack/pineapple-phishing I have my pineapple set up for multiple phishing pages by redirecting to a redirect.php script and then when the user clicks login or submit the form (with another .php script) that collects the info sends that info to a txt file and shows an error page to the user. redirect.php: <?php $ref = $_SERVER['HTTP_REFERER']; if (strpos($ref, "facebook")) { header('Location: facebook.html'); } if (strpos($ref, "twitter")) { header('Location: twitter.html'); } if (strpos($ref, "hotmail")) { header('Location: Hotmail.htm'); } if (strpos($ref, "live")) { header('Location: Hotmail.htm'); } if (strpos($ref, "gmail")) { header('Location: Gmail.htm'); } if (strpos($ref, "yahoo")) { header('Location: Yahoo.htm'); } require('peets.html'); ?>
  6. I used the tutorial found here: http://hak5.org/hack/pineapple-phishing Under "Modify a website to capture credentials" is where you want to read. Basically you're just editing the form action to your .php script thus sending the login info 'name' and 'pass' to you.
  7. The wiki has a few basic 'tutorials' if you will: https://github.com/sebkinne/wifipineapple/wiki
  8. That's what the admins at my school thought. They blocked access to cmd.exe ... so I created a new shortcut to command.com ... done. Didn't do anything bad... unless you consider solitaire bad.
  9. Came across this bit on the Daily Show. http://content.usatoday.com/communities/technologylive/post/2012/03/homeless-hotspots-stir-debate-at-sxsw/1#.T2FfRcWiHjY Darren... Security??
  10. At the time I hadn't had that much experience with HTML as well. If you want, I recommend downloading a program like Notepad++ and just start messing around/creating stuff. Another great source would be W3Schools (http://www.w3schools.com/). Have fun, learn. -Edit- <html> <head> <title>IT'S PEANUT BUTTER JELLY TIME!!</title> <style> body { background-color: #FFFF00; } img.b { display: block; margin-left: auto; margin-right: auto; } </style> </head> <body> <img class="b" src="PBJ.gif" width="214"height="212"> <EMBED src="PBJ.mp3" AUTOSTART=true WIDTH="1" HEIGHT="1" LOOP="2"> </body> </html> As you can see there are multiple ways to do the same thing. I threw this together with a touch of css. On a related note, I'm uploading this to my pineapple now :D
  11. Yea, my original one needed some editing/cleaning up, I think I made that for the MK2 back in the day... But anyway, I was just wondering how to go about doing all this, now you could potentially embed more content. I also noticed this info was also added to the wiki: http://wifipineapple.com/doku.php?id=usbdrive Now to fancy this all up with some CSS and whatnot! Thanks! -EDIT- Went back and found my original nyan cat thread: http://forums.hak5.org/index.php?showtopic=20651 and also noticed the nyan cat in the Cnet news article with Darren: http://news.cnet.com/8301-27080_3-57394887-245/sxsw-hot-spot-honeypot-hackers-heaven
  12. Wow, you did use the Nyan cat lol: http://news.cnet.com/8301-27080_3-57394887-245/sxsw-hot-spot-honeypot-hackers-heaven/
  13. I have my Cat6 cable plugged into my pineapple right now... works.
  14. Slice it? http://howtocutapineapple.com/
  15. Just out of curiosity, who's your ISP?
  16. WiFiFoFum is another good one, and I think it's on iOS as well as Android. Either way both work and both are free
  17. I decided to test out my MK4, so students at an undisclosed college got redirected to a local 'Kony 2012' image without any deauth help. But I was thinking that I could get many more clients to connect if I did use a deauthentication attack. But for some reason all the deauth attacks that I've seen/used pinpoint a specific client, What should I run to do a more 'global' deauth attack?
  18. I'd look into more into 'Bluetooth hacking'.
  19. Youtube video: "This video contains content from WMG, who has blocked it in your country on copyright grounds. Sorry about that." Also, I was wondering if it would work if the user uses https?
  • Create New...