Molotof
-
Posts
157 -
Joined
-
Last visited
-
Days Won
2
Posts posted by Molotof
-
-
ever since the NTP time update has been added to the pineapple I stopped using cron to autostart stuff, and I did try @reboot with no luck.
I use the boot script now.
What boot script? i am confused lol.
-
awesome this must be the one that is working great for you? I'll give this one a try?
THAT is for sure the one i was lucky with, as i ordered more stuff from hak5 and got the spyder usb hub too and it was nothing but trouble, so i went back to my trusty belkin and started building from there.
-
Are you taking power from that battery pack in your picture? Might I request a labeled picture so I can understand how you have that nice bag setup?
I'll try a powered USB hub tomorrow to see if that is the issue, it might be but I do know when I had the modem plugged straight into the Pineapple it was giving me troubles.
I have my setup detailed in this thread, if the modem plugged in straight to the pineapple and it was giving you troubles thats a sign of the modem needing more amperage than the pineapple can provide.
-
Followed your guide, but when I get to this step: iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
It booted me from the webui and now when I try to get back to the webui, I get problem loading page error. thoughts?
You could wait a little bit and you will gain access to the webui or you could go to the shell and type : iptables -t nat -D PREROUTING 1 ......... then you will get the webui back.
-
not sure why this happens? lately I have not experienced it, could be when I autostart dnsspoof. but I noticed that after all the lights come on about 10 seconds after that I am able to log into the ui and ssh, otherwise I have to reboot and start over again.
but like I said I have not experienced this problem in the last month
Is there a way to make these scripts start at boot with a delay?
I tried sleep 20 in the script, nothing.
I tried cron and make it start @reboot x.sh , did not get used, might be the cron version does not accept the @ arguments only the interval timing ?!?!
-
I have a 4 port usb "hub", actually I think it's this one specifically. Alone with the modem is a Sandisk Cruzer Fit 16GB, I was going to go with the 32GB but saw everyone using the 16GB and opted for it not knowing if there was an issue with the 32GB version.
This is the one i am using, notice it has power adapter to give it power, that might be what you need, good luck.
-
Yes that is correct, I have not done much testing on it otherwise. You just need to manually install the prerequisites as having SET install them for you will not work.
Also have quite a few other python tools working great like mitmproxy
Can you please shed some light on mitmproxy configuration and advantages?
-
I want to try to keep this question in this thread, as I have been on holidays for the last month, and I come back to see so many new faces around the forum. :)
So I wonder if any reader can update me:
Has there been any update on either the iPhone tethering or the wifi card support over the last month or so.
I would love wifi card support, as I currently have 3 different (all not compatible) cards, and before I go and buy a new one (the Alfa's are not available here in Eire), I want to see how support is progressing. I currently use a pogoplug/plugbox with two of my cards to perform deauth attacks on (my ;) ) wifi router. Whilst great, it's not exactly mobile.
Hmmmm pogoplug? can you please touch up on that a little, like config and hardware used, as i have a pogoplug pro which is driving me crazy sitting doing nothing with arch linux.
-
From the log it shows that the pineapple is trying bring up the modem but the modem is making a fuss about it because the pineapple is not able to give it the required amperage to power up it's radio. what else do you have connected to the usb port on the pineapple?
-
Great work!!!! It really gives you a lot of choises of how you can use your pineapple :D I have some questions for you :P
Why did you connect the power port from the Y Usb Cable directly to the battery instead of puting it next to the data port at the USB hub? Is there any difference???
Is the Y USB Cable actualy neccesary for powering the Alfa? I have read somewhere tha is not for new USB ports. It only is if the machine with the USB port (e.g. computer) is old and it is not always able to provide the 500ma that a normal USB port provides.
Thank you, this was made with what i already have and it is not optimal as i need to stray away from the metal zippers on the bag, what i am looking to do is the water proof box from the local hardware shop and make sure the antennas are mounted on the outside, also take all circuit boards out of there boxes and apply heat sinks to the main processors of both boards.
I ordered a raspberry pi and it will be coming to me in the next 1000 weeks lol, while its on its way i will be working on customizing my raspberry pwn image in scratchbox and it's home is going to be the LAN port on the pineapple.
When i connected both connectors of the alfa usb Y cable to the hub and turned on the pineapple it worked BUT when i put the alfa in mass deauth (selective wifi jammer) i started getting errors in the log from the usb storage and then lost the storage mount which ruined my active session dumps, it is really like walking over a fine wire.
You have to put into account that the battery pack is rated at 2.5 AMP/hour PEAK (do not mind the capacity of 16 AMP/hour) and the pineapple is pulling 1 Amp, the tl-3020 another 1 AMP with the connected 3G usb modem, so that leaves a little amount of amperage for the alfa and usb storage.
-
Yes, those are the rules I issued, then waited as I understand it may take some time to begin NAT'ing those ports?
As to that route, well perhaps it is there b/c I had the pineapple plugged into router (which assigned it that 10.0.0.7 addy) well before issuing the iptables rules?
Have you been able to get the WAN port to work with your home conn?
I don't really see any practical scenario, other than learning, for this setup, but I just love the challenges this thing presents me with. Thank you.
We are all having fun here and learning at the same time :) yes it works on my end, try rebooting then issue the commands before connecting the wan port to your home router.
-
I present to you the Molotov(f) Pudding with pineapple recipe :
-----------
-----------
Ingredients:
1 Pineapple MK4 with latest sauce
1 TP-LINK TL-MR3020 with latest stock firmware
1 Alfa AWUS036NHA
1 USB flash memory of your choice
1 3G modem of your choice
1 Powered usb hub
1 Big ass usb battery (iSound 16000 mah)
2 SMA extension antenna cables (optional but good for flavor)
Method:
. fire up the pineapple without the usb and flash it with the latest firmware
. format the usb storage
. update the fstab with the config you have on the usb storage
. hook up the storage and fire up the pineapple again
. run petertfm's script or do your own thing of installing all the modules you like
. put the iptables commands for WAN in rc.local
now pineapple is ready, set it aside.
. get the tl-mr3020 and update its firmware
. configure the 3G tab with your modem of choice
. configure the router to be a client for another wireless access point (WISP as they say)
. configure bandwidth so it would trickle
. configure the firewall not to allow streaming media
. configure the switch for 3G and WISP to be a soft switch so you can change the hook up remotely without touching the (drop box)
now the messenger (tl-mr3020) is ready.
final preparation:
Power connections:
pineapple powered via dc socket to usb battery
tl-mr3020 powered via usb cable to usb battery
Alfa powered via Y usb cable to usb battery
usb hub powered with dc cable to usb battery (DO NOT USE a Y usb cable to power a hub - find a hub that takes dc jack)
Data connections:
alfa and usb storage into hub
hub into pineapple
3G modem into tl-mr3020
Cat5 cable from tl-mr3020 (now lan) port to wan port on the pineapple
Now the the Pie is ready to eat....
Fire up everything at the same time and log in and enjoy :)
P.S. you can of course manage the tp-link router by going to the gateway address of the wan port of pineapple :)
Any questions or comments or ideas PLEASE let me know :)
-
That looks great Molotof! I'm sure I'm not the only one who would love to read a full post about your comprehensive setup. If you care to make one it'd be greatly appreciated.
telot
Sure it looks like a mangled web but it is a fun pack to have lol, i don't want to hijack the thread so i am going to make a new post about it :)
-
What about only allowing the ssh traffic, as I think you only want to use that connection(the 3g) for remote monitoring/administration thru autossh, right?
This has been my goal since I very first got the thing back in early march. I've even been through the troubles the the 598u. I switched to the tmobile ZTE mf591 because I can reliably deal with the sdCard.
Achieving our goal would make it the ultimate drop-box...
Drop box anyone ?
---
I think the pics can say what is involved, it was painful to get it working but it works now GREAT thanks to hak5, you guys and darren :)
-
I'm super frustrated, and as always; I'm sure its my fault.
It takes me days of research and trial to get ANYTHING to work right, but this one seems simple and I CAN NOT figure it out. Seems everyone else experiences no problems...
I issued the iptables rules over 2 hours ago and I cannot get the pineapple to use my broadband conn.
Tbe pineapple is issued the ip of 10.0.0.7 from my router
I can ping and resolve host names of web sites but am unable to 'surf' to those sites from clients connected to pineapple. I feel I have been researching this here @ the forums, but I cannot seem to get it to work.
here's the routing table:
Kernel IP Routing Table Destination Gateway Genmask Flags Metric Ref Use Iface default 172.16.42.42 0.0.0.0 UG 0 0 0 br-lan default 10.0.0.1 0.0.0.0 UG 0 0 0 eth1 10.0.0.0 * 255.255.255.0 U 0 0 0 eth1 172.16.42.0 * 255.255.255.0 U 0 0 0 br-lan
please help.
You mean you did issue these commands :
iptables -A FORWARD -i eth1 -o wlan0 -s 172.16.42.0 -m state --state NEW -j ACCEPT
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
And it did not work for your wan port ? And i see an extra rule that should not be there :
default 10.0.0.1 0.0.0.0 UG 0 0 0 eth1
MAYBE this will help you a little.
-
Pineapple Hardware Version: Mark IV
Pineapple Software Version: 2.3.1
OS Used: Ultimately none, otherwise OS X & Backtrack
So I'm poking around the innards (software) of the Wifi and I have a few questions.
- What is the difference/benefit of the /www/pineapple/ssh/ AutoSSH connection script versus the built in one under /etc/init.d/autossh & /etc/config/autossh?
- Has anyone gotten the Ting 598U microsd storage to work reliably? I saw the post about mounting /dev/sda twice and then it would see it. I've found however that even it if sees it initially it will eventually disappear and then not come back until a reboot of the Pineapple.
- Network setup. Was looking to setup the WLAN (Karma) and LAN ports as pass through from the network connection given to the WAN. Basically bridging the connection and becoming a passthrough AP for the target network. Then using the 3G modem as the egress point for AutoSSH. Possible with the current hardware?
on #2 You need to give it some more juice by using a Y usb cable to let the micro sd be stable and not un-mount or error out.
on #3 I get your point, you want to make a wifi tap and listen on it from the 3G, right?
- What is the difference/benefit of the /www/pineapple/ssh/ AutoSSH connection script versus the built in one under /etc/init.d/autossh & /etc/config/autossh?
-
I don't think the pineapple could taper off- far too much support and possibilities, where as the rubber ducky is restricted uses. I'm waiting for the mk5 pineapple to make its appearance, built in 3g, multiple internal wireless interfaces and a full set of backtrack like tools pre-installed ;)
I wish for all that to happen without going the NV ION platform and powering 12v dc, wish i can find an ARM that is not so androidy and limited, BT5 arm native with usb host and compiled wifi drivers ahhhhhhhhhh !
-
What happen to the source ??
I thought this was an open source project or is it going the way of the rubber ducky?? The github witht the pineapplestuff was nice but it seems to have been taken down and put at the very bottom of the todo list. Please dont let this just taper off like the rubber ducky did.
If you really want the files go to my fork of the pineapple at github molotof/wifipineapple :)
-
This looks really weird, i have never been able to produce this mdk3 style garbled ssid's using karma, IMHO reflash the pineapple and see if it does it again.
-
Oh yeah, about relaying. You can configure sendmail to send a copy of all emails that it relays to an email account you create such as logmail or whatever you want to name it. It takes some configuring in the mc.conf but I think I can make this work. I get my new MK4 today so I will work on this over the weekend.
I have a MK4 that the wireless signal worked only about 5 feet and was past the warranty time to send back. Snubs offered to take it back anyway but after I saw the new elite pack I just ordered a new one and will try to crack open the other and reseat the antenna myself. The hack 5 team is awesome. I will keep you posted on what I come up with.
Thanks for keeping the thought train running, there is so many possibilities to this configuration, the hak5 team keeps pumping new things every week on the videos making me switch from a network admin to a security expert :)
I will be waiting for what you might think of later!
-
It's a matter of trail and error, good call on not logging the chatty ports instead of logging a different interface.
So all these ipk's fit in the pineapple without choking it memory and speed wise?
-
Your eth0 state is down, check your cable as it sounds like no physical connection.
-
The only way to find out is try it yourself and see if it does but it sounds workable. what will you use as a relay sniffer server?
On second thought you will be doing them a favor of relaying there encrypted traffic with zero gain for you unless you force a downgrade for them to use authenticated un-encrypted communication.
-
Thanks for the guide but i have a BIG question which is if we have TCPDUMP running on br-lan and using a CIFS share to store logs and fetching fun files, all that traffic will be logged to the pcap file which will make it bloat, i might target wlan0 for the TCPDUMP to avoid this, right?
This also gives me a nice idea of not hooking a usb storage device to the pineapple and using a different IP storage and mount it as /USB.
Does the CIFS shares mount fast after boot up or there is a wait time?
Molotov Pudding With Pineapple Recipe
in WiFi Pineapple Mark IV
Posted
This setup gives me more advantage as i now can :
. Use the alfa to do tasks while the pineapple getting internet from the 3G router
. If i don't need the 3G modem i can put extra storage and tether to my iphone to provide internet to the pineapple
. Control the bandwidth on the 3G connection
. Control the protocols that can go thru and disallow VPN protocols from going thru my 3G connection except my own AutoSSH
. All this while not making the pineapple sweat with it's tiny 400mhz processor