httpCRASH
-
Posts
107 -
Joined
-
Last visited
Posts posted by httpCRASH
-
-
Hi,
im having some problems, i have tried setting up ICS by following the 2 ways explained here (and they both work)
http://forums.hak5.org/index.php?showtopic=20930
but when starting the jasagerpwn script im back to having no positive nslookups from the victim, even though i can ping both the BT5 laptop and 8.8.8.8 great..
anyone else have this problem? and if yes, how did you fix it?
-
If I'm not mistaken what they are selling at that gargoyle shop is an OM1P which is not compatible with Jasager. In my opinion though, you don't really need Jasager just something capable of ICS.
maybee you don "need" jasager, but it does give you an etch when trying to pentest, because its so much easier to get clients connecting to you.
-
Fire up metasploit, there are several modules that exploit DNS, fake_dns is one of my favorites. Start that up and get it listening on your attacking machine (or another machine would work as this is resource intensive). The victim should already have 172.20.0.1 (attacking machine) as the DNS, now all requests can be rerouted to a SET java clickjack page, = instant meterpreter shell on all connected clients : ) I made a topic on it somewhere in this forum if you're interested.
ofcourse im interested.. ;)
we dont have much to do in our IT department, so this is my new hobby :D
Im about to take the "cisco ccna security" certification, so its also relevant for my job ;)
-
i was actually just trying to make networksharing work with the scripts from this treath first..
but your post gave me the rigth idea..
after i set the primary dns static up on the victim to 8.8.8.8 it worked..
so even though the victim gets 10.110.0.1 (atacker laptop) as primary DNS, and 8.8.8.8 as secondary it dos'nt work, so it never makes use of its secondary DNS entry...
but now you got me hooked on the jasagerPWN script, had the same problem, so set the nameserver in the script to 8.8.8.8 and it now works..
i know this is not the optimal solution, because now i cant redirect some websites to localhost to phising websites, but sslstrip works fine, and that was my primary goal..
but i would ofcourse also be glad to get the DNS proxy to work.. :D
my setup is basic rigth now:
ISP gateway (192.168.3.1) --->
(192.168.3.120) BT5 laptop (10.110.0.1) --->
(10.110.0.2) Pinapple/jasager -->
(10.110.0.5) Victim
-
Hi,
i have tried for a week now to get this up and running, and my pride hold me from asking before now :D
first of all i have re-flashed my fon with the jasager image, re-installed BT5 on my laptop
(both to be shure that there was not any old settings i made that would fuck this up)
i then setup the fon with the script for that, and followed the instructions on the webif interface.
run the other script on BT5.
connected to the router with a windows 7 laptop, it got an ip in the right range, the right gateway, and the right DNS servers.
i can then ping 8.8.8.8, so the forwarding rules in BT5 works.
but now comes the FAIL, i cant do any DNS lookups, so i can go to http://209.85.148.147 but not http://google.com
what really makes me ponder is the fact that my windows 7 gets 8.8.8.8 as its secundary DNS server, and i can ping 8.8.8.8, so even if the primary DNS fails, it should be asking google instead.
(again, i still have thins problem after a clean install) :(
i have tried ALOT to fix this, so now i turn to you guys, anyone got a good idea what could be wrong?
Is It Only Me :)
in Everything Else
Posted
Is it only me that noticed the 15 nov. (yesterday) as the release date for a pineapple MK3 segment (found on the hakshop) :D
now we just neeeeeed it... go go go