no42

Those ones are fixed :)

in it.properties what key combination do you have for ASCII_7B =?

One question - odd they got both you and your wifes cards; Where do both of you shop? be it petrol stations or internet sites? might narrow down the culprit?

Research Testing equipment is not vulnerable to Pineapple attacks Testing equipment is not vulnerable to SSL attacks Testing equipment is not vulnerable to usual WiFi attacks Security Awareness Demonstrations (office / functions/ seminars) I Read Your Email...

Cheap option: drawing pin?

are you using the zip or svn?

The Duck: The delay is advised to be around 3000 msecs for the OS to recognise and install drivers (Window 7 & 8), Windows XP is slightly faster. Cant remember the speed of Linux and OSX but this number can be tweaked. Using a familiar VID PID speeds this up even more, as some drivers might be preloaded. Doubt AV is messing about here, as you are at the EFI. AV evasion/Device Control Evasion is by altering the VID & PID. Also you can try altering the Serial Number and Device strings in the main firmware. OSX: As for iCloud lock (according to Apple & Genius Team) that engages when a laptop/phone has been reported as stolen. Best to turn in the device to the police. (Maybe the owner will let you keep it, and remove the lock?)

What shows up in dmesg / device-manager?

Worked for me. Sadly URLsnarf doesn't work, also tried re-installing. UPDATE: Now back-up and running. Silly me, fixed after reinstalling, followed by another reboot :). Whatever the issue was? Classic case of Turn-It-Off-And-On-Again. It was sorted by a 3rd reboot (1x after firmware upgrade, 1x after sslstrip upgrade, 1x after reinstalling urlsnarf).

Its a 'Trade' Accton MR3201A device! Essentially it is the same as a FON. So sounds like a MK I (might be a MK II). If anyone else has one of the following devices - they are all essentially the same: ACCTON MR3201A FON FON2100A,B,C and F Edge-Core WA3101 Philips SNR6500 SMC WEBT-G Siemens Gigaset Wlan repeater 108

Use a hexeditor to create a 4 byte file (vidpid.bin); first 2 bytes = VID second 2 bytes = PID Full list of VIDPIDs can be found https://code.google.com/p/ducky-decode/wiki/Index?tm=6

It currently modifies a symlink. It is only a small change (with some sed action) for it to edit to the master_file to persist across reboots.

I see the bots are already onto it. Think we need to read up on http://www.mediawiki.org/wiki/Manual:Combating_spam

Depending on your router, and the antenna, it is most likely a neighbour. Then again could be someone with a powerful yagi that could be slightly further away. Your router config should be able to tell you what clients are connected, if not use kismet. You can then use kismet with a directional antenna, scanning the area for clients. Find the matching client MAC address (providing attacker is still online & not changing his MAC every time). And narrow down the location. I've done this and pinned it down to a single house in the past. But then what are you going to do? Police aren't really interested. Advice: Go out buy a newer router. Enable WPA2, Disable WPS, Set a very long WPA2 key (24+ chars (preferably almost random))

There is a live cd Vipervast http://vipervast.sourceforge.net that should contain all the tools you need. Also Cain & Able on Windows can do some VOIP stuff.

I personally like SyntaxHighlight - GeSHi - Generic Syntax Highlighter

FAT32 or VFAT should be fine.

That is strange. Have you tried blacklisting the mac address of wlan1?

The battery size = 6800mAh The charger Output = 350mA 6800 / 350 = 19hrs. But I only left mine on for 12hrs (figured long enough) and the green led went out.

Here is one way: https://forums.hak5.org/index.php?/topic/30779-system-patch-add-time-zone-selection-to-configuration-tile/

The error is in /pineapple/components/system/karma/includes/helper.js within function refresh_report() Because the variable i is bing used twice within a loop (oops). var karma = data[2]; for (var i = karma.length-1; i >=0 ; i--) { if(karma[i].indexOf("Successful") !== -1){ var client = new Array(); client[0] = karma[i].split(' ')[5]; client[1] = karma[i-1].slice(71); var exists = false; for (var i = clients.length - 1; i >= 0; i--) { if(clients[i][0] == client[0]){ exists = true; } } if(!exists){ clients.push(client); } } } change the 2nd var i to var j: var karma = data[2]; for (var i = karma.length-1; i >=0 ; i--) { if(karma[i].indexOf("Successful") !== -1){ var client = new Array(); client[0] = karma[i].split(' ')[5]; client[1] = karma[i-1].slice(71); var exists = false; for (var j = clients.length - 1; j >= 0; j--) { if(clients[j][0] == client[0]){ exists = true; } } if(!exists){ clients.push(client); } } }

I'm sure there are more bugs/errors to be found, keep them coming. Thanks Snake

think that command is using the builtin language map (unless you have unzipped and re-packaged?), java -jar encoder.jar -l <path to modified language map> -i pass.txt -o inject.bin

Try : ASCII_5E = KEY_RIGHT_BRACE, MODIFIERKEY_SHIFT If it works I'll patch the SVN, and update the download tomorrow.

Thanks - committed to SVN.