Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

Everything posted by b70k3n

  1. when looking for the updated infusion list u am checking the page found here: http://wiki.wifipineapple.com/index.php/Infusions as i could see there's no keylogging infusion.
  2. Hi, as i understood the keylogger infusion found here: https://forums.hak5.org/index.php?/topic/26025-keylogger/ is not released yet for pineapple mark5 and there's no estimation when it will be ready (i think its a killer feature). can i create instead of the infusion a JS keylogger and redirect my device to a webpage with keylogging ability using the pineapple (DNS manipulation)? for example there're few examples of JS keylogger on the net i could find: https://github.com/wopot/jsgifkeylogger https://github.com/carlos8f/keylogger https://github.com/miku/jquery-retype can an HTML page be created that will log keys and send it to the pineapple instead of the infusion mentioned? did someone was able to run a working example of such HTML page? and in particular running on mobile devices?
  3. i want to test and demo pwning of mobile devices such as Android and iOS. i googled a lot and found a recent example: https://www.youtube.com/watch?v=TbyQoWyaw2g can i achieve the same thing using Pineapple only? right now i am trying to get Kali machine + beef + metasploit working with that module without success (that specific vulnerability). i found in the forum there's something named JasagerPwn that contains beef: https://forums.hak5.org/index.php?showtopic=30588 but don't know if this is an updated infusion or if it was replaced with other infusion. bottom line - is there an infusion or setup with Pineapple that can operate beef against browsers of mobile devices and let me run exploits and to be specific the UXSS demo shown in the movie? will be happy to get your inputs and redirection what is the needed setup i need to focus on? more general questions - what else do you think i can demo on mobile phones/browsers? keylogger? i am looking for something with an affect - visual or sound that can be an action i decide what is the timing (not redirecting to a page that will play wav file). thank you very much! pineapple is so cool - can't wait to understand how deep i can use it
  4. hi all, finally got my PAmarkV yesterday.. started to play and looking for the right and simple way for my tests. how can I inject a javascript code /html to a current page requested by a mac address for specific web page. for example I want that only my android device will be infected by JavaScript code when it request a specific web page. for example is mac address XXX requested cnn.com than pineapple will return it the cnn.com webpage plus the evil java script code. the only seem to be related infusion is the split-n-inject but could not see how can I achieve that with it. I want all the other ppl that using this wifi connection will not get infected and only my personal device will get the malicious cnn.com webpage. thanks for you help!
  • Create New...