AlexSka
-
Posts
9 -
Joined
-
Last visited
Posts posted by AlexSka
-
-
You can always use it :
root@bt:~# mkfifo /tmp/pineapple-rx
root@bt:~# ssh pineapple_ip “tcpdump –s 0 –U –n –w - -i br-sniff” > /tmp/pineapple-rx
[/CODE][CODE]
root@bt:~# wireshark –k –i /tmp/pineapple-rx
[/CODE]for remote capturing
where br-sniff = bridged(eth0 + eth1)
br-lan = wlan0 for ssh connection
-
Im interested in capturing traffic by this scheme without arp-spoofing attack :
Normal Internet sharing by ISP
1. Internet <-p.A-> Local ISP[172.16.22.1] <-p.B-> [wan: 172.16.22.2] WiFi Gateway [lan: 192.168.1.1]<-p.C-> Client [192.168.1.2]Fake Internet sharing with Pineapple injecting into network
2. Internet <-p.A-> Local ISP[172.16.22.1] <-fake.p.B-> [wan: 172.16.22.2] WiFi Pineapple Mark IV [lan: 172.16.22.1] <-p.B-> [wan: 172.16.22.2] WiFi Gateway [lan: 192.168.1.1]<-p.C-> Client [192.168.1.2]or
Internet <-p.A-> Local ISP[172.16.22.1] <-fake.p.B-> [br-lan:eth0] WiFi Pineapple Mark IV [br-lan:eth1] <-p.B-> [wan: 172.16.22.2] WiFi Gateway [lan: 192.168.1.1]<-p.C-> Client [192.168.1.2]Im interested to inject Wifi Pineapple Mark IV between Local ISP & WiFi Gateway to forward all traffic
I know I can create bridge & capture all traffic by this scheme :
root@Pineapple:~# vi /etc/config/network
config 'interface' 'lan'
option 'ifname' 'eth0 eth1'
option 'type' 'bridge'
option 'proto' 'none'
option 'auto' '1'
[/CODE]root@Pineapple:~# [b]/etc/init.d/network restart[/b]
root@Pineapple:~# [b]tcpdump -i br-lan -w /usb/capture.cap[/b]
But i want to transit this traffic over sslstrip transparently
Can anyone help to solve this ?
-
Well in your first picture you can just install sslstrip from the pineapple bar and use the WiFi on the pineapple as the AP and you are away laughing.
For your second would be something more like what I have written in my setup but just replace burp with sslstrip. The trick will be get the downstream to use you as the gateway which is DHCP setup and the Pineapple will just do that with the wp4.sh script.
Its must be transparent without using dhcp & routing. Because i cant route from 192.168.1.0 to 192.168.1.0
-
Also sslstrip will only strip HTTPS links and redirects out of HTTP it won't actually decode HTTPS traffic. SSLStrip requires the user to first navigate to an HTTP url for that site
you're a very smart man. I am wondering how to wrap traffic to sslstrip in created bridge .
-
-
You can do it :
* create bridge [eth0 + eth1]
* switch lan interface to wlan0
* install tcpdump
* capture all traffic with saving on flash drive or remotely with wireshark
nano /etc/condfig/network[/CODE]
change line :
[CODE]
config interface lan
option ifname eth0
[/CODE]to
[CODE]
config interface lan
option ifname wlan0
[/CODE]for connection via WiFi
delete another configs & add
[CODE]
config 'interface' 'sniff'
option 'type' 'bridge'
option 'proto' 'none'
option 'ifname' 'eth0 eth1'
option 'auto' '1'
[/CODE]restart network services
[CODE]
/etc/init.d/network restart
[/CODE]now you can run :
[CODE]
tcpdump -vv -i br-sniff -w /usb/capture.cap
[/CODE]you can read this: http://wiki.openwrt.org/doc/uci/network
-
i wrote it ...
----
Problem solved : need to change in
/etc/config/network[/CODE]
[CODE]
config interface lan
option ifname eth0
[/CODE]to
[CODE]
config interface lan
option ifname wlan0
[/CODE] -
Hello! Can anyone help me to solve problem with multiple interfaces sniffing on wifi pineapple m4 ?
I want cut in into ethernet cable to sniff RX/TX data over eth0 & eth1 interfaces & write it to dump on flashdrive but when i run :
tcpdump -vv -i eth0 -i eth1 -w /usb/dump.cap
[/CODE]I've only capture eth0 or eth1 interface
when i conected via wireless interface & run :
[CODE]
brctl addbr sniff
brctl delif sniff eth0
brctl addif sniff eth0
brctl addif sniff eth1
tcpdump -vv -i sniff -w /usb/dump.cap
[/CODE]I've capture data from bottom interfaces but cannot connect to ssh or webgui via br-lan (wireess interfaces)
sorry for my english
OpenWRT Microtik rb951series
in Questions
Posted · Edited by AlexSka
Hello. In the links that you have gave are ROM images of openwrt-ar71xx-nand-vmlinux-initramfs.elf :
http://openwrt.ayufan.eu/rb951g/attitude_adjustment-r35508/
http://openwrt.ayufan.eu/rb951g/trunk-r35489/
As your success in flashing the RB951Ui-2Hnd with OpenWRT ?
Because after flashing with openwrt-r35489-13.0alpha1-mipsbe.npk my router begins reboot in loop and with openwrt-ar71xx-nand-vmlinux-initramfs.elf would not running.