Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

Everything posted by RChadwick

  1. Since Mousejack type of attacks can be accomplished with a reprogrammed Logitech Unifying USB adapter, is this something we'll see in the future?
  2. Well, I got a proper ST-Link V2, but get the exact error. I'm running Kali in a VM on Windows, and I'm thinking there might be a problem with the USB passthrough. I tried the Windows version of openocd under Windows, but couldn't get that to work either. This is what I got in Kali: root@kali:~/Desktop/PocketAdmin-master/firmware# make upload openocd -s ./openocd -f stlink-v2.cfg -f stm32f0x.cfg -c "program firmware.bin verify reset exit 0x08000000" Open On-Chip Debugger 0.8.0 (2014-10-20-21:48) Licensed under GNU GPL v2 For bug reports, read http://openocd.sourceforge.net/doc/doxygen/bugs.html Error: session's transport is not selected. Runtime Error: embedded:startup.tcl:20: in procedure 'script' at file "embedded:startup.tcl", line 58 in procedure 'swj_newdap' called at file "./openocd/stm32f0x.cfg", line 34 in procedure 'transport' called at file "/usr/share/openocd/scripts/target/swj-dp.tcl", line 26 in procedure 'ocd_bouncer' at file "embedded:startup.tcl", line 20 Makefile:23: recipe for target 'upload' failed make: *** [upload] Error 1 ---------------------------------------------------------- This is what I got while experimenting under Windows: C:\temp\OpenOCD-20190828-0.10.0\bin>openocd -s ./openocd -f stlink-v2.cfg -f stm32f0x.cfg -c "program firmware.bin verify reset exit 0x08000000" Open On-Chip Debugger 0.10.0 (2019-08-28) [https://github.com/sysprogs/openocd] Licensed under GNU GPL v2 For bug reports, read http://openocd.org/doc/doxygen/bugs.html Info : auto-selecting first available session transport "hla_swd". To override use 'transport select <transport>'. Info : The selected transport took over low-level target control. The results might differ compared to plain JTAG/SWD stm32f0x.cfg:37: Error: target requires -dap parameter instead of -chain-position, see http://visualgdb.com/support/chainposition in procedure 'script' at file "embedded:startup.tcl", line 26 at file "stm32f0x.cfg", line 37 C:\temp\OpenOCD-20190828-0.10.0\bin>
  3. I think I found the problem. My cheap St-link v2 turned out to be a CH340 ttl serial adapter. I'll let you know how it goes when I get a working one. I was about 75% done making my own USB Rubber ducky, but abandoned it due to time constraints, and finding another project that did some of what I wanted. I was going to use a hardware MicroSD reader for speed, and was looking into a serial port to allow some feedback on the running script. Also, I was going to have the ability to run multiple scripts, as well as have one script call another. I really like your OS fingerprinting idea. I'm looking forward to playing with that.
  4. Thanks for sharing this! I'm almost done, but I fail at uploading the firmware to the device, getting a 'Error: session's transport is not selected.' Any ideas?
  5. I'm making one. I'm waiting for the regulator to arrive, but all the other parts are placed. Eager to see how it works.
  6. That might fix the SD card issue, but it breaks the 'I want three radios' issue.
  7. Maybe I just don't understand the problem, but considering one could run their own DNS server, I see absolutely no reason for the limitation, which is one of the main reasons my Pineapple collects dust. Even a $3 ESP8266 can do an Evil Portal without Internet, which is where I put my interest nowadays.
  8. The firmware was updated to 4? Any idea where there might be a changelog?
  9. I've got a Lan Turtle on v2 firmware. I am unable to add modules (Same error message as others have posted), so I'm trying to upgrade to V3. Problem is, no matter what I do, after the upgrade it doesn't work, and the USB end keeps disconnecting every 25 seconds. I have tried holding the button, and uploading V3 Factory firmware. I've also tried SCP the firmware to /tmp, and running the update command. The results are always the same.
  10. The problem with software password managers, is they will always be vulnerable to malicious software. The easiest and most secure hardware password manager is the Mooltipass. Open source, debugged over the past few years, plugins for Chrome and Firefox, emulates a keyboard for compatible with all USB-equipped devices, and can work standalone with it's internal display. I have no idea how to hack this remotely.
  11. I'm looking for a way to gather a list of all nearby clients, including MAC addresses. In Linux, I do this: airodump-ng wlan0 -a --manufacturer --output-format CSV --write Open- However, I wanted to add Deauth to see if that would speed up things. Not wanting to add a 2nd Wifi adapter, I decided to dust off my Nano and see what it could do. Looking around, I don't see a clear way to do this. I can do a recon, but results are iffy, and I don't see a way to save the output. Ditto for the Site Survey module. Forgetting deauth for a moment, is the anything on the Nano that will save a list of nearby clients? Is my best option to just run the above line? Is there a quick and easy way to make that a module?
  12. Any updates? After my Pineapple collecting a few months of dust, I decided to fire it up today. I'm running the non-beta available in the package manager. For whatever reason, Ep couldn't see any of my portals. Not sure if the Symlink disappeared. Anyway, was going to just uninstall, and reinstall. What should I reinstall? Is the beta running OK? Any ETA on 3.0?
  13. I'm guessing, just like the Raspberry Pi, it all depends on which card. The one with the best specs or the largest capacity is not always the most reliable.
  14. From a theoretical point of view, you should definitely use a powered hub. From a practical perspective, it depends. If you use a hub that uses very little power on it's own, and plug in only 2 devices that themselves draw little current, and you give the nano 2 amps or more, you might manage it without problems.
  15. If it was mine, I'd resolder it, and use a very fine strand as a jumper over the trace. If needed, a small xacto knife will remove the coating from the remaining trace. As long as the mounting pads (The ones that will suffer the most stress) are strong, and you don't make too much of a mess on the lifted pad, things could be fixed 100%. I'd also use some IPA to remove any flux around the repair. Flux, and especially impurities it might attract, can affect RF. The tricky parts will be to get it straight, and to solder it well, but quickly. High heat has a way of lifting pads. After the repair, I'd carefully drill out the hole in the plastic so that the antenna doesn't stop at the plastic. That was one of the first mods I made, and have been very happy with it.
  16. When writing scripts, it's sometimes very handy to see what the output would be without actually happening. Does anyone know of a program that would interpret all keystrokes (Including Shift, CTRL, ALT, F1, F2, etc.) and simply display them in a window?
  17. How are you powering the Nano? Can you try powering it from another source?
  18. Is there a way to get Site Survey to reveal hidden SSIDs?
  19. Have you tried another '2.1A' power supply? From my experience, it's extremely common for USB Power packs, and wall chargers to put out MUCH less than what they claim, especially if it's an off-brand.
  20. Love the changes. I'm anxious to try this out as well! Also, as a feature request, it would be great if EP could control other plugins and Nano configs (Change network, SSID, start PineAP, DNSSpoof, etc). That way we could make a single package that we just need to enable.
  21. Silly question, but can DNSSpoof be run from command line? I wanted to make an Evil Portal that would automatically activate DSNSpoof, hoping I can do it from PHP. Thanks!
  22. As it's obviously not a good idea to just remove power from the Nano, I'm curious if there was made an accommodation at a hardware level to shut down the Nano? Perhaps hitting the reset button? Maybe some unmarked solder pads that could be used to initiate a shutdown? Could the reset button be programmed so a quick push will initiate a shutdown?
  23. Thanks for the help. I've got another issue. If I connect to the EP, and try to go to aol.com, the portal shows up fine. However, if I go to a more complicated page, such as what Windows tries to go to when it detects a portal (go.microsoft.com/fwlink/?LinkID=246412&clid=0x412), I get the page minus any graphics. When I try to view any of the images, it just shows the webpage again, minus the graphics.
  24. You're right, PHP error. I modified php.ini and easily saw and corrected the errors. Another quick question... Are the files for the portal critical? For instance, I have my own php file that handles form input. Do I have to use myportal.php? Best I can tell, the only important thing is the portalname.ep file.
  25. I've got an odd issue. I've got a HTML page that I renamed to index.php. It works fine in XAMPP, but not in EP (Just get blank screen). If I rename the index.php back to index.htm, and make sure there is no index.php in the directory, EP seems to pick up the index.htm, and everything works fine. Will this workaround be OK? Will future versions of EP force only using index.php?
  • Create New...