newbi3

Awesome! I merged your changes

If you're like me you just got your turtle and you can't wait to start doing some development. Only downside is you need internet access on your turtle and you don't want to be plugged into a cable. So to get around this instead of your computer getting internet access over the turtle your turtle should get internet access over your laptop just like you would with the Wifi Pineapple. In Fact its the same script just with modified default values and banner. Before you run the script you need to add a default gateway of 172.16.84.42 and a dns server (8.8.8.8) to your turtle. I wrote a simple tutorial on the github project about how to do this. Some cool updates - thanks to Foxtrot the script now automagically configures your turtle for you so you no longer have to manually configure those settings. There are also some other quality of life updates so go ahead on do a git pull to get the most recent version or copy and paste it from below. Check it out on github if you are interested: https://github.com/frozenjava/TetherATurtle #!/bin/bash # Your lanturtle is now automatically configured for you by this script, but if you want to configure it manully here is how: # This is just a modifed version of wp5.sh for the pineapple with the turtle network address and bannder # You will need to manully cofigure the default gw on your turtle to 172.16.84.42 # To do that run this command on your turtle: route add default gw 172.16.84.42 # You will also need to set your DNS settings, add the following line to /etc/resolv.conf on your turtle # nameserver: 8.8.8.8 # # I hope this makes development for turtle modules less of a pain... who wants to be tethered to a cable anymore? # - Newbi3 # # Credit goes to whoever wrote the wp5.sh script for the wifi pineapple as well as foxtrot for adding the automatic lan turtle configuration. # echo "$(tput setaf 2)" echo " LAN TURTLE" echo " by Hak5" echo " .-./*) (*\.-." echo " _/___\/ \/___\_" echo " U U U U" echo "Turtle ICS: v1.2" echo "$(tput sgr0)" echo -n "Turtle Netmask [255.255.255.0]: " read turtlenetmask if [[ $turtlenetmask == '' ]]; then turtlenetmask=255.255.255.0 #Default netmask for /24 network fi echo -n "Turtle Network [172.16.84.0/24]: " read turtlenet if [[ $turtlenet == '' ]]; then turtlenet=172.16.84.0/24 # Turtle network. Default is 172.16.84.0/24 fi echo -n "Interface between PC and Turtle [eth1]: " read turtlelan if [[ $turtlelan == '' ]]; then turtlelan=eth1 # Interface of ethernet cable directly connected to Turtle fi echo -n "Interface between PC and Internet [wlan0]: " read turtlewan if [[ $turtlewan == '' ]]; then turtlewan=wlan0 #i.e. wlan0 for wifi, ppp0 for 3g modem/dialup, eth0 for lan fi tempturtlegw=`netstat -nr | awk 'BEGIN {while ($3!="0.0.0.0") getline; print $2}'` #Usually correct by default echo -n "Internet Gateway [$tempturtlegw]: " read turtlegw if [[ $turtlegw == '' ]]; then turtlegw=`netstat -nr | awk 'BEGIN {while ($3!="0.0.0.0") getline; print $2}'` #Usually correct by default fi echo -n "IP Address of Host PC [172.16.84.42]: " read turtlehostip if [[ $turtlehostip == '' ]]; then turtlehostip=172.16.84.42 #IP Address of host computer fi echo -n "IP Address of Turtle [172.16.84.1]: " read turtleip if [[ $turtleip == '' ]]; then turtleip=172.16.84.1 #Thanks Douglas Adams fi echo -n "Prefered DNS Server [8.8.8.8]: " read turtledns if [[ $turtledns == '' ]]; then turtledns=8.8.8.8 # Default DNS server fi echo "" echo "$(tput setaf 6) _ . $(tput sgr0) $(tput setaf 7)___$(tput sgr0) $(tput setaf 2) .-./*) $(tput sgr0) Internet: $turtlegw - $turtlewan" echo "$(tput setaf 6) ( _ )_ $(tput sgr0) $(tput setaf 5)<-->$(tput sgr0) $(tput setaf 7)[___]$(tput sgr0) $(tput setaf 5)<-->$(tput sgr0) $(tput setaf 2) _/___\/ $(tput sgr0) Computer: $turtlehostip" echo "$(tput setaf 6) (_ _(_ ,)$(tput sgr0) $(tput setaf 7)\___\\$(tput sgr0) $(tput setaf 2) U U $(tput sgr0) Turtle: $turtlenet - $turtlelan" #Bring up Ethernet Interface directly connected to Turtle ifconfig $turtlelan $turtlehostip netmask $turtlenetmask up # Enable IP Forwarding echo '1' > /proc/sys/net/ipv4/ip_forward #echo -n "IP Forwarding enabled. /proc/sys/net/ipv4/ip_forward set to " #cat /proc/sys/net/ipv4/ip_forward #clear chains and rules iptables -X iptables -F #echo iptables chains and rules cleared #setup IP forwarding iptables -A FORWARD -i $turtlewan -o $turtlelan -s $turtlenet -m state --state NEW -j ACCEPT iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A POSTROUTING -t nat -j MASQUERADE #echo IP Forwarding Enabled #remove default route route del default #echo Default route removed #add default gateway route add default gw $turtlegw $turtlewan #echo Turtle Default Gateway Configured # Change dns server to prefered DNS server #sed -i 's/$turtleip/$turtledns/g' /etc/resolv.conf sed -i s/$turtleip/$turtledns/g /etc/resolv.conf #automatically try to configure LAN Turtle #special thanks to Foxtrot for this part ping -i 1 -c1 $turtleip if [ $? -eq 0 ]; then echo "ICS configuration successful." echo "Configuring LAN Turtle." echo "Enter password if prompted" ssh root@$turtleip "echo \"nameserver $turtledns\" >> /etc/resolv.conf && route add default gw $turtlehostip" else echo "Could not connect to the LAN Turtle!" fi #fix routing on host machine #the turtle likes to become your default gateway and thats annoying in this case so we just set it back and fix the dns settings #route del default gw lan.turtle #route add default gw $turtlegw echo "" echo "Happy Shelling :)" echo ""

Yep, update those pineapples.

I was wondering the same thing 0.o I hope we dont find out next week that this whole episode was just a dream like episode 4 or whatever one that was...

No, that is not possible. If you find a way to do it I'd report it to google's bug bounty program right away and collect lots of money. It would be a huge security risk.

Spoiler Alert:

Unplug the router Unplug the modem Turn off the power in the house Cancel internet subscription DDoS attacks have no legitimate usage so I question your intent.

NoDogSplash does not support PHP no but you can do it in JS. Also please read the the red bold text on the first page of this thread "THIS SUPPORT THREAD IS FOR INFUSION SUPPORT ONLY! YOUR NOT WORKING PORTALS ARE NOT A PART OF THIS INFUSION AND SHOULD NOT BE POSTED HERE ASKING FOR HELP. THERE IS NOTHING WRONG WITH EVIL PORTAL IF YOUR PORTAL CODE (OR MY OLD PORTAL CODE) DOES NOT WORK! IT IS A SEPERATE ISSUE ENTIERLY AND SHOULD BE POSTED IN THE PROPER PLACE WHICH IS APPLICATIONS & CODING NOT HERE. I DO NOT HAVE THE TIME TO HELP EVERYONE FIX HTML AND I WOULD GREATLY APPRECIATE IT IF WE CAN STAY ON TOPIC!"

Make sure your pineapple has an internet connection or you are spoofing *.* to 172.16.42.1

Evil Portal is just a front end for NoDogSplash which is the captive portal software which is essentially just a web server and some ip tables foo. So if android (or any software creator) wanted to they could try and detect what the specific webserver serving the web page that you are visiting and then deciding if they want you to see it or not but any means of detecting what the webserver is could be spoofed by the webserver to make the detecting software think its something else. Also NoDogSplash is a legitimate captive portal software that is probably used on a wide variety of public APs so by filtering out these APs thinking they are bad you would get a lot of false positives and it would be pointless because the user just has to open their web browser and they are there. How iOS and OSX (ive never had android automatically open a captive portal for me and I would be pretty pissed if it did) determine if there is a captive portal is by trying to hit apple.com, if apple.com resolves to an IP address that is none-routable then they open the captive portal (which is the IP address that apple.com was resolved to),if they cant resolve apple.com to anything they assume there is no internet connection and if it resolves to something the expect then it means you have an internet connection. The specific Android ROM you are running on your phone (unless its a nexus or you flashed it yourself onto your phone) is NOT stock android. Phone manufactures modify the Android ROM to fit what they think your experience with android should be like on their phone. I would be shocked if only certain captive portals automatically open on your phone. I can tell you that my phone, a oneplus one, running the latest build of cyanogen mod for it does not open captive portals automatically ever. Also it never has even on android 4.x.x. It is the software on your phone.

No, the green led is not controlled by software. Sebkinne might correct me but I am 99% sure.

The pilot episode was great but after that I'm not sure what happened, maybe they fired their writers? Maybe they stopped consulting actual professionals in the industry thinking that they "got this"? Whatever it the case its only going down hill but I spent $20 to watch this damn show so I'm going to watch the rest of it.

This is definitely the reason. NoDogSplash can't force your device to open the splash page as soon as you connect, your OS has to have the logic to do that.

Android doesn't auto open captive portals (at least my devices don't running cyanogen mod). After you connect to the pineapple open your browser and try to go to example.com you should be greeted with your captive portal.

Fixing issues with the Xfinity portal code is off topic from what this thread is about so if you are looking for help with that please post it somewhere else. To touch on the second part of your question; the portal is opened when someone tries to use the internet after connecting to you pineapple. Before they can get on the internet they first have to go through the captive portal. If you're pineapple doesn't have an internet connection you will need to spoof *.* to 172.16.42.1 What do you mean splash screen? Is your pineapple connected to the internet?

In the latest episode (1.5) Eliot was hacking into a prison and ftped a file to 184.51.150.177 which is a valid IP address and that shocked me. If you nmap that host you get this: newbi3 ~ --> sudo nmap -O 184.51.150.177 Password: Starting Nmap 6.47 ( http://nmap.org ) at 2015-08-01 00:28 EDT Nmap scan report for a184-51-150-177.deploy.static.akamaitechnologies.com (184.51.150.177) Host is up (0.028s latency). Not shown: 997 filtered ports PORT STATE SERVICE 80/tcp open http 443/tcp open https 8000/tcp closed http-alt Aggressive OS guesses: Linux 2.6.32 - 3.10 (96%), Linux 2.6.39 (93%), Linux 2.6.9 - 2.6.27 (93%), Linux 2.6.20 (93%), Linux 2.6.20 (Ubuntu, x86_64) (93%), Linux 2.6.32 - 3.5 (92%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (92%), Asus RT-AC66U router (Linux 2.6) (92%), Asus RT-N16 WAP (Linux 2.6) (92%), Asus RT-N66U WAP (Linux 2.6) (92%) No exact OS matches for host (test conditions non-ideal). OS detection performed. Please report any incorrect results at http://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 9.68 seconds This host has open ports on it and judging by the fact that they haven't showed a valid IP on the show before makes me think that MAYBE they did this on purpose to see what kind of fan base they have or to build some type of hype for the show. I went ahead and ran a -sV on port 80 to see what service it was running and got this: newbi3 ~ --> nmap -sV -p 80 184.51.150.177 Starting Nmap 6.47 ( http://nmap.org ) at 2015-07-31 23:47 EDT Nmap scan report for a184-51-150-177.deploy.static.akamaitechnologies.com (184.51.150.177) Host is up (0.026s latency). PORT STATE SERVICE VERSION 80/tcp open http AkamaiGHost (Akamai's HTTP Acceleration/Mirror service) If you make a request to that server you just get a 400 bad request returned. I googled AkamiaGHost and it seems to be some sort of load balancer for large websites. I assume that they didn't plan on doing this and that that machine just happens to have services running on it. Or I am missing something.

$authtarget is a variable that represents the url that the user will be sent to after completing whatever the task is in the captive portal. Here is what their documentation says: $authtarget A URL which encodes a unique token and the URL of the user's original web request. If nodogsplash receives a request at this URL, it completes the authentication process for the client and replies to the request with a "302 Found" to the encoded originally requested URL. (Alternatively, you can use a GET-method HTML form to send this information to the nodogsplash server; see below.) As a simple example: <a href="$authtarget">Enter</a> The reason why you can't use nodogsplash without an internet connection or dns spoof running is because it can't resolve the url that $authtarget is saying to take you too. This is just my assumption based upon how the authentication process is documented to work, I haven't read over the code for nodogsplash. Definitely check out the documentation for NoDogSplash on github: https://github.com/nodogsplash/nodogsplash/blob/master/README.md

Episode 1 was really good and I couldn't complain about e <= 3 but what happened in episode 4? I was disappointed with it a little bit honestly.

Totally possible, its just a matter of removed the js or html (or both) from the page but if the site uses ssl then you can't, from the pineapple, edit the page. It would have to be used with ssl strip or something. I'd rather just have a captive portal that told people to install adblock plus if I ever needed a reason to block adds.

Python isn't a compiled program so it can't be stand alone. There are projects like py2exe and pyinstaller that create stand alone executables from your python script by including all of the libs in the binary. It works pretty well.

Good suggestion, I'll make a note to add this in the next release

I highly recommend against bringing your pineapple to school...

Also I recommend against linking everything in /sd to that the images folder. You should make a folder in /sd and link only that folder. ln -s /sd/sd_images /etc/nodogsplash/htdocs/images

"ln" is a command that creates links. The "-s" switch says this is a symbolic link and not a hard link which is what we want in this case. "/sd/myimage.jpg" would be the image or folder containing images or whatever other file you are going to create a link for. "/etc/nodogsplash/htdocs/images/" is the path to create the link in. So the syntax is this: ln -s <source_file> <destination> You would run this from the command line

Totally possible! You can create a symbolic link to you images on to that folder so: ln -s /sd/myimage.jpg /etc/nodogsplash/htdocs/images/ I think there is also a way to change the value of $imagesdir in the nodogsplash configuration which you can access through the configuration tab or in /etc/nodogsplash/nodogsplash.conf