thesugarat

Update: Testing of bully on my Mk 5 began yesterday thanks to Garland. Sebkinne: if you want the .ipk for the repository I can send you the link. WhistleMaster: if you are the one updating the Reaver Infusion how about a hybrid Reaver/bully infusion like the Jammer? The commands are very similar and I use wash to find WPS enabled APs.

Then it's not your network.... But seriously there are several different ways of potentially getting that key. If it's WPS enabled you could use Reaver or Bully. If it's WEP there's the aircrack-ng suite of tools. If it's WPA or WPA2 things just became harder but the aircrack-ng suite still comes into play. You'll have to deauth a client and record the four way handshake then run the that against a rainbow table of potential passwords and hope it's in there. Or you could always create a phishing page and use your Pineapple to try to gather login info... But, in my opinion these forums are not the place to ask for instructions/tutorials on how to do these things. They already exist in other locations and many Youtube videos.

Create an empty file and copy the string into it. Preferably you do this in Linux so that no extra characters are introduced. Just my advice. Ohh and name it appropriately.

Silver, What are you talking about? What's been removed from this thread? Cillian's post with the script is still on page one.

Why are you using ettercap on wlan0 instead of br-lan?

Yes I'm using the HSB2 from Hawking. I bought one of the cheaper ones originally and fried it within a day. The Hawking is a champ. It's taken everything I've thrown at it. The items I'll post below are what I use but they aren't for a mobile use of the pineapple. Hawking HSB2 http://www.amazon.com/gp/aw/d/B0009MYSHU Backfire Antenna http://www.radiolabs.com/products/antennas/2.4gig/backfire.php

Amylase is right... The Mk5 has SMA connectors and the Mk4, which the 7dbi panel is for, uses RP-SMA (Reverse Polarity-SMA). That amazon link is exactly what I purchased. Interfaces with my other cords, Hawking Amplifier and Backfire Antenna for long distance Pineapple fun. Theoretically I can now hook it to the wlan1 and I can reaver and deauth etc, hook it to wlan0 and I can Karma or give Free WiFi to several blocks.

When you connected without it being WPA protected did you run the updates from the Pineapple bar?

Thanks, that's got it working now. I copied from paste bin and created the .php files then scp'd them over replacing the other files I had edited. There was a 1 byte difference in each file for some reason. Rebooted and there it is.

I tried compiling bully this weekend but got nowhere. The make file with it works under the Kamikaze release of OpenWRT but I couldn't get the VM of it to play nice with the virtual network. I was hoping the .ipk file created there would also work on our version of OpenWRT. Anyone know how to update the Makefile?

Most likely what you are experiencing is the wifi info swap issue after a factory reset. It's covered under several posts. Try the command listed by Sebkinne here. https://forums.hak5.org/index.php?/topic/30787-card-switching/?p=231799 Also, since you did the factory reset you lost the update (if you did it) that provides a fix for the other issue with encryption. After you sort out the swap issue, log on to an open wifi with the Client mode tab, which is always going to use wlan1 as that is all that works on that card, and download the updates from the pineapple bar. Every time you factory reset you're going to need to do this until new firmware is released.

I did it manually. Wasn't sure about those diff commands so I figured it out from what is mentioned and the + symbols that indicated lines added. What you pasted looks exactly what was in the spoiler. I'll check again though. Maybe you could post the 3 files or spoilers of the content....

1337, There is nothing to set. Wlan1 is setup on the wan side while eth0 and wlan0 are on the LAN side. When you connect wlan1 via client mode to your AP with Internet your default gateway updates to the gateway of the wlan1 provided network. So go back to default settings on your pineapple and connect your laptop or tablet to the pineapples wlan0 AP. Via the management page have the pineapples wlan1 connect to your AP. Then just open another tab in your browser and surf.

midnitesnake, Love the idea but after making changes to the two existing files and creating the time.php file all I get in the Configuration Tile: Time tab is an echo of the topmost bar of the Management Page with time uptime and logout. Any idea what I've done wrong?

Could still be the Ethernet port is shut off somehow... Maybe someone who has successfully done a system reset with the dip switches could chime in and tell us what IP address settings you used. Did you use use 192.168.1.2 with 255.255.255.0 and a default gateway blank? Or did you enter a gateway of 192.168.1.1? Also, Darren and Sebkinne on the first Wednesday live cast, after the 5 launched, showed a USB to Ethernet adapter that was Mark 5 compliant. Maybe some details about that devices release date and it's use in this situation would be helpful.

You're doing all that on a pineapple Mk5? The default br-lan doesn't work for whatever MITM you're doing?

If you update your signature block with a link will that propagate to all 1,762 of your posts?

Dude that first manual IP address isn't correct for recovery mode. Set it manually to 192.168.1.2 you have 192.168.137.1 in there.

Glad to hear it's in the works. It's not a bug so I never thought to put it there...

Hmm well that's good news for the power supplies from Hak5 but not good for the few of you experiencing this. I'm out of ideas I'd keep working with Foxtrot.

I thought it might be something like that… But I'll take what I can get! :) Thanks!

I have a suggestion you might have heard before. It could be applied at the next firmware update, or before, if it's easy to do… As to it even being possible I'll leave it to you. I like the 3.0/1.0 Management page look with the small tiles leading to bigger tiles but what I don't like is how long it takes them all to load and how I don't have any control over which ones are displayed. I'd like to be able to install all of the infusions, even the ones I won't use anytime soon, but be able to disable their tile from being displayed on the Management page maybe in a tab in the Configuration Tile. Essentially I'd like to be able to customize the Management page to just the tiles I want to see but not have to uninstall the other Infusions to get there. This would allow me to customize the Management page to show just the tiles I want to see that relate to whatever task I'm focused on. Is this making sense to anyone else?

Variable from 5V to 12V. I believe the stock one that comes with the Mk5 is 9V with 1.5A. But I know that the Mk4 power supply of 12V 1A works.

I've seen this as well…. Try popping out the SD card while the pineapple is running. Plug it back in then reboot. When this happens reformatting is not needed. They will still be on the sd card, or at least mine stayed in place. I'm curious if you guys experiencing this problem are running the stock 2Gig SD cards or bigger ones (32Gig) like I am… I'm not sure if this has anything to do with it or not but I've switched to a different power supply, just waiting to see if the infusion tiles disappear again. If they do, I'll switch back and assume it's in the pineapple.

Awesome… Love having the Rainbow Chicken Man back. I installed and followed your instructions. On my iPad I got a pop up login that said Success and only when you hit the Done button does it leave you on the network you selected also I got black screens when trying to go to websites. On my Macbook in Chrome's browser they mostly work. In Safari though only the Troll loads, it seems to be a Flash plugin related issue. Still testing.