Dazzle

The above will only apply if the network that the laptop was connected to was unencrypted. In that case the Pineapple will broadcast the same SSID and whoever responds to the probe request first will get the client, I think it's all about the speed of the response and although proximity does play a role it is not certain that it will respond faster when it's closer If the network was encrypted the only way to prevent them from connecting to that network would be to keep a deauth running constantly so they (or their PC) are forced to look for a different AP (hopefully they'll sent out probe requests for an unencrypted AP so they'll connect to your Pineapple through Karma)

You could do something like DNS spoofing all domains and then load the actual domain they requested in an iframe and you can add any code to the page containing the iframe. I don't think your Bitcoin mining has any useful pen-testing purpose though

You could try to mount the ftp server so you can access it like any other directory. You should be able to to that using something like http://curlftpfs.sourceforge.net/ I haven't tested this with the Pineapple Kernel so I have no idea whether it actually works, but it's worth a try Maybe I'm overthinking it and your command might work just as well For your error about curl missing, have you tried installing it? (apt-get install curl) Regards,

Here is why ip forwarding gets disabled, so adding -u should solve your problem: -u, --unoffensive Every time ettercap starts, it disables ip forwarding in the kernel and begins to forward packets itself. This option prevent to do that, so the responsibility of ip forwarding is left to the kernel. This options is useful if you want to run multiple ettercap instances. You will have one instance (the one without the -u option) forwarding the packets, and all the other instances doing their work without forwarding them. Otherwise you will get packet duplicates. It also disables the internal creation of the sessions for each connection. It increases performances, but you will not be able to modify packets on the fly. If you want to use a mitm attack you have to use a separate instance. You have to use this option if the interface is unconfigured (without an ip address.) This is also useful if you want to run ettercap on the gateway. It will not disable the forwarding and the gateway will correctly route the packets.

I'm willing to translate the strings to dutch, will I need to be a beta-tester to do so? I missed the registration for the beta unfortunately! Dazzle

Thanks for clearing that up, I'll look into it when I get the chance Great work!

Great work, although I might prefer to code manually I'll definitely have a look into this. Good job on giving more people an opportunity to contribute to this project!

After reading this I'm going to try the same approach, I can only find 1 AP with my Pineapple, while I can find ~15 with my internal Laptop Wifi card. Any suggestions on where to get good quality connectors?

I've always used WBFS, I thought it had an ok interface and I was able to see game covers etc. Also at the time the USB loader I used didn't support Fat32, so I've never used it actually don;t know about the loading times, maybe it has more difficulty reading from a Fat32 disk? Not exactly sure on that one so you should test it out if you get the chance :) Good luck

Did you plug the harddrive in the USB port on the that's on the right (outside)? It will only read the disk in that port.

Are you powering your pineapple with the adapter or with an USB cable? I had the same issue using a single usb cable and my USB stick in the pinapple. Probably not getting enough power I guess

NT Offline password is a great tool indeed, I used it on Hiren's BootCD, maybe you can download and burn Hiren's BootCd, that way you've got NT Offline password live Infiltrator suggested and aslo a lot of different tools that will come in handy ;)

I agree, it's probably even better to use a USB powered hub than this since this will require more power from the pineapple. A 3G expansion board would be great, but probably pretty expensive to manufacture. I don't think we'll be able to think of anything what can't be done with USB already actually

Very interesting project, I'm going to look into this some more when I get the chance! Thanks bwall and digip! :)

If you would like to get a password for a user on windows you can probably best use Ophcrack. Ophcrack will actually crack the password hash, where kon-boot will just remove the password. What exactly would you like to do?

Did you try to run 'opkg update' ? Also SSLstrip is probably to big to fit the pineapple, you should probably install it to USB using the '--dest usb' parameter Good luck Dazzle

I've also used a usenet server for a few years now, a 100mbps usenet server, and I've got a 100mbps connection Downloading around 10~12 Mb/s and a retention of 500+ days. I only use torrents for stuff that's really hard to find. I'd really recommend an usenet server, once you're used to it you don't want anything else

I'm just having a look at some modules and the demo module to get an idea of how it works. Just got started with my pineapple yesterday so I've got a lot to learn ;)

Thanks, glad I could help :) Was actually looking into making this a module, but I see no way of replacing the port trough a bash script, because I can't do a search and replace because it changes Any ideas on this? Are there any ways to change whole lines trough a script? Thanks, Dazzle

I had set auto start on for sslstrip and it locked me out too. To change the uHTTPd port nano the file '/etc/config/uhttpd' change the 7th line "list listen_http 0.0.0.0:80" to whichever port you'd like to use like this; "list listen_http 0.0.0.0:1337" then run '/etc/init.d/uhttpd restart' to restart the server Good luck, Dazzle

Hey Titanium thanks for your reply. The Battery pack looks similar to the Astro indeed, and your experience with it show that it really works just as well. Thanks for the link, I think I'll order this one! Dazzle

Yeah indeed, thanks for all the comments guys, but I was already able to solve it half an hour after I opened this thread so I just didn't try enough before posting ;) Thanks, Dazzle

Well it isn't really a page, you just get a login prompt in the terminal, Its the same one you get when telnetting to the device, and in the terminal it says adminu:admin adminp:password. While actually the username is root and the password is 80546334 I got to that login prompt by using UART > USB but it's the same as telnet. Don't know what ALFA is thinking with their firmware, it's a buggy firmware and there's no documentation or updates for it. Sorry for the confusion ;)

Don't think there's a way to reset it without Serial, because I read something about the reset button not working properly. To open your MK IV just take off the 2 feet on the side of the USB port, unscrew those 2 screws and then it kinda pivots on the other end Good luck, Dazzle

Yeah I know already, I just didn't choose the option and got into a login page for ALFA, which I was accessing trough Serial though. But after I chose option 3 everything went fine B)