JayBlack

All I need is to download the windows Audible client from Audible's website and install it with admin priveledges from a user account that has none. Looking through the payloads I find 'download and execute' for normal user permissions. And the admin priveledges seem to be for remote shell (which is something I don't want). What's the piece of the puzzle for executing the exe with admin priveledges?

What's happening is many large websites and countries see the ip addresses of the "exit nodes" for the Tor network and they've blocked these addresses. Google will stop you after a couple of searches stating "your ip seems to be a bot sending multiple searches." Or something similar to that. Also Hulu blocks it. Also the website you're trying to access may be region specific. As in they expect you to be in the US only and you may be coming out of a Germany exit node. There is a very rare chance you may connect through a small time unlisted exit node and then you will find that works, but it's not likely. For these sites I recommend a VPN. Otherwise you're going to have to dig deep into configuring your exit node to be a small traffic exit node, and a fairly new one at that. And that's hit or miss. Now if you were having trouble connecting to the Tor network itself, that's a whole other ball game. There is an alternate way to connect to the Tor network. Because countires and business have learned how to single out the specific secure connection to Tor you need to fake it. TorProject has a browser setup to connect to alternative bridges that are not publically listed. They list about 1 or 2 every 30minutes or hour or so. The browser is "Obfsproxy", and it's available on torproject.org for download. My setup involves 3 parts. I use the Tor network through a VPN and in firefox I blacklist websites I don't want using the Tor network. So any website that uses large videos/transfers/downloads I list under "don't use proxy for these sites" in Firefox. So Firefox connects through my localhost Tor proxy for every site except what I've listed in the do not proxy list. Everything else just flows straight through the VPN. I also have a command line tool called ProxyChains I use before any command line app that I want to tunnel through Tor. One odd thing that doesn't work through Tor is github's http git clone download. You can still git clone projects, but you actually have to use the ssh download for git if you're going to do it over Tor. For the record the; most affordable VPN I've found is http://www.privateinternetaccess.com who are also recommended by PC Magazine.

Because all hackers use terminals. Here's a color twitter feed for your xterm window. https://github.com/danielpclark/TwitterSeeds/blob/master/twitseeds.rb Currently it scrapes your twitter feed and gives you sweet console footage. I think my next step will be to incorporate #ash tag watchers. Then from there other internet services and feeds, etc. Whatever will get what's new without having to use a browser to find it. Enjoy! Hack responsibly! -Daniel

These are the relevant tickets. Creating a link /usr/lib/ruby -> /usb/usr/lib/ruby fixed this ticket https://dev.openwrt.org/ticket/7804 and the current issue I'm having they still haven't resolved has to do with socket.so in the ruby-core package https://dev.openwrt.org/ticket/9873 . They say it's "still a problem in the Backfire branch (at least when building with eglibc as libc library)." For others trying to install ruby you will need to install a downgraded version of zlib as indicated here http://www.hackup.net/2012/01/openwrt-and-scripting-languages-part-1/ ... this guy never bothered to fix the problem I've listed here. I can't find the page that mentioned merging with the old makefile to get things to work. But this is all the info I can find via Google.

When I first got my pineapple I could opkg install ruby and other ruby packages just fine. Ruby "still" works... but irb and gem won't. I've looked into the fact that /usr/lib/ruby is at /usb/usr/lib/ruby ... I linked it. After that I seemed to have progress except I get a "/usb/usr/bin/ruby: can't resolve symbol 'getipnodebyname'" error. It seems that OpenWRT has a bad file in the package. One source suggests downgrading the zlib library... but the link given is bad. Another seems to indicate it's a makefile difference and a merge to an old version will fix it. Are we able to build/fix packages on the box? I really would like to use the full power of the Ruby language here. Help would be greatly appreciated!

Hey guys, Of course I have the MK4. But as is recommended I tried setting my MAC address per trusted host in my network connections configuration (on my laptop). But after I do it won't connect to it (the Internet sharing router). I put the MAC in MAC Address field (above Clone MAC field). Instead the only way to connect requires a "new" connection set without the MAC addy. And I'm back to square one Now this is a problem when I run karma on my MK4. It takes over my connection and I end up with no throughput to the Internet. I have a trap that traps myself. Any advice in internally restricting trusted web connections wlan0 whilst still allowing a serial connection over eth0 to the pineapple? Once I have the MAC's set then I can have karma work and my laptop won't self implode on network traffic. Thanks for the help! * - You are using Ubuntu 11.04 - the Natty Narwhal - released in April 2011 and supported until October 2012.

Thanks for the reply and link!

Hey Darren, Have you met Kevin Mitnick? And do you think you could have him as a guest on an episode? Thanks, Huge Fan of the show! -Daniel

I have had no problems with it. The only oddity is when you try to access the pineapple folder after removing it you get an infinite loop between your redirect page and index... simply change your index page to redirect to something like 'http://www.google.com/error.html' and everything runs fine.

Come one guys, you've written way too much code for something so simple. Try this: #!/usr/bin/python import commands def getmac(iface): words = commands.getoutput("ifconfig " + iface).split() if "HWaddr" in words: return words[ words.index("HWaddr") + 1 ] else: return 'MAC Address Not Found!' if __name__ == "__main__": print getmac( "wlan0" ) You can also swap out 'if' and 'else' with 'try' and 'except' if you would like to raise an exception error on not finding the MAC address.

I'll have to look into this. I didn't know the MAC address could be redefined outside of 'burning in' a hard-wired network chip... I did know you could spoof it. I guess I just never thought about it. When you say restrict... what do you mean by that? Another quick thought, switch ssh login to an alternate port, or authorise the serial connection and not wlan.

One of the first things your realize when you start running your pineapple is it's shouting it's SSID 'pineapple'. Well we all can easily figure that one out. Goto /etc/config/wireless and change the line to say 'option SSID CHEVETTE'. Well once that's all said and done we still know that the router runs a webhost control panel (ip/folder)... so we can check for that each time we connect to an openwifi. So what I would recommend is rename the folder under www to SomethingLessSuspicious, and then run a script (which you will need to write or get) to replace all strings in the subdirectory to your new directory... ex: for each instance of string oldfolder/ rename to SomethingLessSuspicious/ . Also go into /etc/config and edit httpd.conf, replacing string oldfolder/ to the new SomethingLessSuspicious/ . These are the places I've found to replace the string so far. My example is currently working without errors. You just don't want other people's 'cron jobs'/'brothers' checking your access points path with a simple directory check saying hey, does this 'pineapple' exist? --sound the alarm suspicious folk are about. Broadcasting this identity either way is similar to letting a lot of people know you have the skill of slight of hand. And where as you are the good magician, they may instantly judge you to be the pick pocket out to get them. Proverbs 22:1 "A good name is more desirable than great riches;" As they say, this is simply a tool, use responsibly. Now, I believe, these changes should remove the big red flag towards all shades of "HATs" (White/Gray/Black) out there. The one other thing I can think of is the network server/client numbering methodology. But this really doesn't raise any flags as being suspicious. Lots of different networks use different networking schemas. Of course there are other network checking techniques, some can't see past this, some can.

Sorry for not following forum rule basics and giving it a more thorough go at it myself. I've followed the instructions at http://wiki.openwrt.org/doc/techref/opkg under Installation Destinations. What I hadn't understood before is that the -dest option for opkg requires a nickname from the /etc/opkg.conf file and not an actual directory. Once I figured this out the idea is simple to do. To see a list of available packages you can peruse http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages

I am fluent with Python and pretty decent with Ruby. I've been looking into installing ruby and python on external USB for usage with the Pineapple Mark IV. When looking at OPKG instructions I tried defining output/destination/temp directories with the command line and I get the following opkg -d /usb -o /usb -t /usb/tmp install ruby ruby-core ruby-gems ruby-dl ruby-enc Collected errors: * opkg_conf_load: Could not create lock file /usb//var/lock/opkg.lock: No such file or directory. I would like to install everything straight to the USB without accessing or modifying anything on the Pineapple. I know I would need to add lib and bin directories to PATH, no problem there. Some of the other instructions talk of redefining all your paths to the USB drive (with extroot and /etc/opkg.conf)... but I don't want to overwrite or remove existing paths. Any advice on a pure install with no other system mod'/touch' ? Thanks!