inTheDMZ

I suggest emailing the hakshop, double check its not hidden in the packaging somewhere!

what computerchris said is correct, however if you have successfully run wp4.sh it should have set up these IP table rules for you. It can't hurt to run it again as it flushes the rules and the re-applys them.

1) Are you connected to the internet on Kali? 2) what port on the pineapple are you plugged into the LAN or WAN - they are labelled 3) have you run the wp4.sh script on kali? Please run these commands on the kali box (feel free to blank out MAC addresses) - then put them in code boxes in your reply here(this is very important for my sanity) cat /proc/sys/net/ipv4/ip_forward ifconfig ping 172.16.42.1 -I eth0 -c 4

have you blacklisted the mac address?

The Pineapple is based on OpenWRT, therefore much of its configuration is found on the OpenWRT wiki. Try this link for static addresses, you only need to port forward if you are trying to access the camera from outside the pineapples internal network, if so then try here. You shouldn't need to set a static IP address for the computer, unless the IP camera has a fixed address itself, in which case you need to switch it to accept DHCP addresses from the pineapple. Bare in mind OpenWRT as default is designed to be managed via terminal, and therefore unless you have prior experience this may prove a steep learning curve.

If you have configured your host correctly then it will provide internet and record karma probes, can I direct you to the hakshop where you will find a link to the wifipineapple book explaining these questions.

looks like its connected at the end of that log?

Try without the channel hopping script first, time sure most hardware just needs its WiFi interface in monitor mode and it works pretty much out the box

Ok, swap the mobile.o2.co.uk for payandgo.o2.co.uk and try again

try this instead of the existing settings for the 173: *12d1:1436*) echo "Huawei E173 detected. Attempting mode switch" uci delete network.wan2 uci set network.wan2=interface uci set network.wan2.ifname=ppp0 uci set network.wan2.proto=3g uci set network.wan2.service=umts uci set network.wan2.device=/dev/ttyUSB0 uci set network.wan2.apn=mobile.o2.co.uk uci set network.wan2.username=payandgo uci set network.wan2.password=password uci set network.wan2.defaultroute=1 uci commit network usb_modeswitch -v 12d1 -p 1436 sleep 10; rmmod usbserial sleep 3; insmod usbserial vendor=0x12d1 product=0x1436 sleep 5; /etc/init.d/firewall disable; /etc/init.d/firewall stop logger "3G: firewall stopped" iptables -t nat -A POSTROUTING -s 172.16.42.0/24 -o 3g-wan2 -j MASQUERADE iptables -A FORWARD -s 172.16.42.0/24 -o 3g-wan2 -j ACCEPT iptables -A FORWARD -d 172.16.42.0/24 -m state --state ESTABLISHED,RELATED -i 3g-wan2 -j ACCEPT

Try here: http://www.dd-wrt.com/wiki/index.php/Channel_hopping_on_kismet_drone Install kismet, and in the /etc/rc.local put the wireless interface in monitor mode, give me 20mins and I will dig the script out. Edit: this is my rc.local file: # Put your custom commands here that should be executed once # the system init finished. By default this file does nothing. airmon-ng stop wlan0 sleep 10 iwconfig wlan0 mode moniter sleep 10 kismet_drone & exit 0 obviously i had the aircrack-ng suite installed, and it may not be the most elegant of scripts but it worked for me

You need to script the channel hopping, I had kismet drone running on the wr703n and the wr840nd and both worked well

Can you boot with it attached?

You could install kismet on the pineapple but I would say their are devices better suited to the job, even a wr703n with a battery pack should pick up quite a few devices.

I used giff gaff, which worked very well. Have you double checked the APN settings? Try these: http://www.geeksquad.co.uk/articles/chapter/595-04-how-to-set-apn-settings-for-the-02-mobile-network

can you run a nslookup of facebook.com from one of the clients? Double check your dnsspoof config file is correct by cat'ing it over ssh. Should be: 172.16.42.1 *.facebook.com Don't think the extra '.' would make much different but add it in anyway

Can you not pick up a 3G USB modem off eBay and stick a payg data sim in it? That is what I have done previously, I'm in the UK though.

Glad its working!

Can you post your 3g config file? Post in a code box to maintain the formatting etc

You understand that wlan1 will have a different IP address as assigned by the access point it connects to. For example if your router hands out IP address in the 10.0.0.1/24 range and the pineapple is on 10.0.0.15 then to access the pineapples web interface from the same Access point as wlan1 is attached would mean browsing to 10.0.0.15:1471

Reflashing is always the first port of call for problems like this, make sure you check the MD5sum of the download before flashing and only flash over a wired connection (which of course you will have to anyway)

using URLsnarf with no internet connection would prove pointless, as a client would connect to one site, be unable to access it and more then likely cease to use that router. DNSspoof can be used without a connection as the DNS entries you provide would direct all users trying to access a certain site to your spoofed site.

I'd say this is more of a personal preference for the user, personally I use my android phone with a USB connecting into a small non-powered USB hub, with the sandisk 4GB usb stick plugged in too, never had any issues with anything and my phone contract is unlimited data so never had to pay a extra penny.

So you had the 5v from the USB serial adaptor and the 12v adaptor both plugged in?

Just to start from the ground up, have you plugged into a laptop and ensured it is unlocked? Edit: Take a look here, not sure if it helps but possibly..