Jump to content
Hak5 Forums


Pineapple Moderators
  • Content count

  • Joined

  • Last visited

  • Days Won



About newbi3

  • Rank
    Hak5 Ninja

Profile Information

  • Gender
  • Location
    The Nebakanezer
  • Interests
    Networking, Programming, Learning, Observing, and Drumming

Recent Profile Visitors

12,508 profile views
  1. [Official] EvilPortal

    I like that idea. I'll see what I can make happen.
  2. [Official] EvilPortal

    That saves me a ton of time! I noticed you are allowing and denying clients based on mac-address. From what I remember when moving away from NoDogSplash this required a kmod to be installed which wasn't compiled for the pineapples architectures at the time. Have you been able to get this to run on the pineapple?
  3. [Official] EvilPortal

    It's been a while since I've updated this thread so I thought I might as well jump in and let everyone know whats going. My schedule has cleared up a bit since its now summer here which means I actually have time to put into Pineapple things with my primary focus being Evil Portal. About 2 weeks ago I picked up working on the next version of Evil Portal and realized how much of a mess the code was. I'm honestly embarrassed to host the current version on github (I guess this is how every developer feels when looking back at their code years later). Because of this, I have decided to start a complete refactor of the application to make the code pretty and most importantly re-usable. I have left the "development" branch up containing all of the work up to where I left of developing the next version, so if you want to check out the next gen features feel free to pull that branch. All of the refactoring is currently happening in the "Nightly" branch so if you want to help test for bugs in my refactoring please pull that. If you do happen to find bugs please submit an issue on the github repo as I am far more likely to see it there and respond. Currently I finished up the Controls, Messages, and Library section of the Web UI in the refactor so if you want to help test, begin there! Here are links to the things: Refactor Branch: https://github.com/frozenjava/EvilPortalNano/tree/nightly Old 2.9 Branch: https://github.com/frozenjava/EvilPortalNano/tree/development Issues: https://github.com/frozenjava/EvilPortalNano/issues
  4. [Official] EvilPortal

    Is it not showing up in the live preview window or not showing up at I'll keep it in mind for a 3.x release. I'm not sure if it will make it in 3.0 since I'm just wanting to get it out the door and adding more features is going to delay it more and its been delayed long enough at this point.
  5. About a year ago I broke the screen on my one plus one and its unresponsive. I found it in my drawer today and decided to get the data off of it and luckily I had debugging mode enabled so I was able to pull my photos and everything with adb. Now, I'm trying to pull a sqlite database from an app but I don't know what the name of the file is and my phone isn't rooted so I don't have permission to ls in the apps directory. Is there a way to exploit CVE-2016-2503, CVE-2016-2504, CVE-2016-2059 and gain root access via the shell on my android phone?
  6. [Official] EvilPortal

    Oh, Android devices don't have the Captive Portal automatically pop up and there is nothing you can do about that. Apple devices do however.
  7. [Official] EvilPortal

    This is something that I indeed need to address and sud0nick has pointed out a partial solution for this, however it involved modifying the nginx config and thats something I'm trying to avoid doing. When I have a free day on my hands this is something I'm going to be researching and implementing. Wether or not it will make it into the 3.0 release I can't say for sure but it will definitely be in a 3.x release.
  8. [Official] EvilPortal

    Is this the beta version or the current version in the pineapple bar?
  9. [Official] EvilPortal

    Okay so I think you have a few misconceptions here that I will address first: The destination is not a destination URL that the client will be sent to after authorizing, but instead it is the destination landing page that EvilPortal will present to them. The default is default.php but you will need to make a new page for whatever your use case is. For example if I have a rule that sends all iphones to an iphone branded landing page the destination would be something like "iphones.php" or whatever you want to call it. Also, I think I addressed this in the readme but I could be wrong. In order for the SSID rules to work you need to be logging associations with PineAP. Finally, you will need to have a route to the network in order for the live preview to load and in order to see the captive portal. Let me know if you have any other issues!
  10. Modules Requests Discussion

    private function abortScan() { // this will write to a file in /tmp called does_it_work.txt // if the abortScan method is getting called then this file will exist file_put_contents("/tmp/does_it_work.txt", "this function got called!"); exec("killall -9 airodump-ng && cp -f /pineapple/api/wardrive-* /pineapple/modules/Wardriver/log/"); // give some sort of response back $this->response = array("aborted" => true); } you can also test by starting airodump and then checking if its still running from the command line after the abortScan method is called ps | grep airodump
  11. Modules Requests Discussion

    Test if your abortScan method is getting called by writing something to a file
  12. Modules Requests Discussion

    It might be working, one thing you arent doing is giving a response back. private function abortScan() { exec("killall -9 airodump-ng && cp -f /pineapple/api/wardrive-* /pineapple/modules/Wardriver/log/"); // give some sort of response back $this->response = array("aborted" => true); } and then handle the response in your JS $scope.abortScan = (function() { $api.request({ module: 'Wardriver', action: 'abortScan' }, function(response){ console.log(response); if (response.aborted) { $scope.scanning = false; } }); });
  13. Modules Requests Discussion

    You module.php file needs to implement the route() method http://wiki.wifipineapple.com/#!./creating_modules.md#module.php this method is what maps an action in the request to a function that gets called public function route() { // create a case for each possible action passed in the request switch($this->request->action) { // what happens when an "abortScan" action is requested case "abortScan": // call the abortScan method $this->abortScan(); // break the case - don't forget to do this otherwise what ever case comes next will also get called break; } }
  14. Modules Requests Discussion

    Hey nrohsakul, You can see JS errors in your browsers developer console https://developer.chrome.com/devtools https://developer.mozilla.org/en-US/docs/Tools/Browser_Console And I recommend showing PHP errors nano /etc/php.ini press crtl + w and search for "display_errors" and set it to "On" display_errors = On then restart nginx /etc/init.d/nginx restart Now your developer environment should be all good to go!
  15. Installing Arch Linux with RD

    Nifty, I don't re-install arch frequently enough for me to justify using it but I dig it.