phpsystems
-
Posts
132 -
Joined
-
Last visited
-
Days Won
4
Posts posted by phpsystems
-
-
Hi,
Yes it does, and It took around 3 weeks for a delievery for me just before Christmas. Also, checking out the european reseller might be a good idea too (although it does look like they are out of Pineapples at the moment).
-
First off, what country are you in? Secondly, I'm not a lawyer and this shouldn't be taken as gospel.
In general, sniffing is usually legal, but local laws may apply.
When you start probing or send packets, depending on country, you may have committed an offence.
4 depends on what you do with the pineapple.
6 probably depending on country, but to be honest, most people won't notice / care / do anything.
-
Have you tried tweeting @domaindotcom ?
-
It sounds like you want to upgrade the firmware. The instructions for that are here: https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Flashing-ducky
-
By Actual Address, I meant the IP that your 3G provider assigned to you. By remote IP, I meant the address you see when you go to something like whatismyip.com. Nat is the translation from one to the other.
Port forwarding via ssh is straight forward, You just need the -R option eg, if you vpn is on 2.2.2.2 and you want the listener on port 2345, you could it up via:
ssh -R 127.1.1.1:2345:2.2.2.2:2345 user@2.2.2.2
Then metasploit would be listening on 127.1.1.1 (LHOST) port 2345 (LPORT), and the payload would be talking to 2.2.2.2 port 2345
This might help:
https://www.youtube.com/watch?v=PQY8eTzMiHM -
Sounds like you could do with SipP (http://sipp.sourceforge.net/). There currently isn't a module, but the package is definitely available for the Pineapple (so assuming that it will be for the turtle too).
You would need to spend a bit of time figuring out the correct call flow for your application, but it will work. Your audio will also have to be pre-recorded, and you will need a username / password combo for the service (if required).
-
The first thing you should know, is that 3G networks are usually natted. This does mean that running services from behind the nat is going to be difficult.
Can you determine your actual IP on the 3G network and your remote IP? Are they different?
You might be best off with a VPS or VPN to provide a static IP / Port that you run the listener on, or at least port forward (eg, via SSH).
Tim
-
Nice. Considered doing one for the Yardstick One?
-
The drive on the Ducky (Ie, the SD Card) doesn't appear to be labelled as "DUCKY". Inserting the SD Card by itself and labelling it "DUCKY" should correct the issue.
-
By the way, I've just looked on my pineapple, and seen that IPtables has lots of rules. Rule ordering may be your issue.
-
Are you definitely forwarding the packets? Not proxying them at all?
Either way, you could try:
iptables -A OUTPUT -s 172.16.42.1/32 -d 192.168.1.1/24 -j ACCEPT iptables -A OUTPUT -s 172.16.42.1/24 -d 192.168.1.1/24 -j DROP
Assuming the pineapple is still on 172.16.42.1
Sorry about the capitalization before, I was on my mobile, and capitalization is a bit of a PITA.
-
There is a simpler way on the pineapple:
Using iptables:
iptables -A forward-s 172.16.42.1/24 -d 192.168.1.1/24 -j drop
-
Have a look here: https:/vulnhub.com/
Mostly linux vms, but interesting range of challenges.
-
Yes. You need the twin duck firmware and a binary that will run on your target.
-
[ ! ] no wireless interfaces were found.
[ ! ] you need to plug in a wifi device or install drivers.
What wifi driver are you trying to use? Does it show up when you type "lsusb"? Have you tried re-plugging it?
-
No, it doesn't support key triggers. This is due to the limited space in the firmware.
I believe it does support changing vid/pid, and you only have 1. The ducky doesn't act as a hub, so you can't change sub-type.
-
For those of us who want to explore a little more with SDR and own a hackrf or rtlsdr, but not a yardstick one (yet):
https://funoverip.net/2014/07/gnu-radio-cc1111-packets-encoderdecoder-blocks/
The decoder module may also help with working out what those bits should be as well.
-
It did look a bit like a WiFi adapter (this might just be the angle though). Maybe the missing link between the pineapple and the turtle?
-
On windows 8, you might want to try:
CONTROL ESCAPE
Instead of
GUI r
-
Sounds a bit like this: https://github.com/sensepost/snoopy-ng
-
The actual patching of the source code can be done (or rather not patching), just by removing patch "./target/linux/generic/patches-3.3/640-bridge_no_eap_forward.patch" and rebuilding.
The scripts are also available in Mubix's Github repo here: https://github.com/mubix/8021xbridge
-
There are cases for the pineapple in the hakshop (https://hakshop.myshopify.com/collections/wifi-pineapple-kits/products/ominous-box-for-wifi-pineapple). But, they haven't been built specifically for an expanded pineapple.
You have to remember, that cases tend to be specific for application, so that's probably why you haven't seen much. Having said that, don't let it put you off and have a go. I for one would be interested in the results. I may even buy one!
-
And here is the link: https://penturalabs.wordpress.com/2013/10/27/naked-wifi-pineapple-mark-v/
Would have posted before but pasting on my android phone seems to be an issue.
How were you thinking of making your case for your slice?
-
Admittedly, it does cover housing.
There is also a getting started page on the wiki.
That should have been "doesn't". D'oh. In the forums as well is another post that someone had a look on the expansion port.
There is also the Mk5 teardown by Pentura Labs as well. The gpio pins are labelled on the board.
wp6.sh replacement (with GUI, and in python)
in Applications & Coding
Posted
Hi,
As a starter project for messing around with TK, I made a replacement for the wp6.sh script with a GUI. It's a bit basic to say the least, but it should be functional. I'm aware that I should really be using classes to build my application, but this is just an excuse to code something. Hopefully, someone might ind this useful.
Anyway, the code (such as it is) is located here: https://github.com/phpsystems/PineappleSetupGui
Phpsystems.