cheeto

I'm a bit lost. Whistle Master mentioned: "Not at all. It works with default interfaces, no needs for additional wifi radio. Please try the steps described above." This does not mean that I need to use a network cable. This means that I could use my wlan0 and wlan1, right? Am I the only one having problems here? Again, THANKS A MILLION TO WHISTLE MASTER. cheeto

@Korniza, It's my understanding that you can't sslstrip too much anymore because of HSTS. Therefore, gmail, yahoo mail, hotmail etc.... are not possible. (as far as i know). Please correct me if im wrong. cheers,

@Whistle Master: I'm having a problem in step 4. 1. Reboot your pineapple. 2. Start the WPS infusion. 3. Start a monitor interface on wlan0 4. Disable wlan0 interface. 5. Select wlan1, mon0, a scan duration (e.g. 30 sec) and hit the refresh APs link. If I disable my wlan0 then I lose my connection to the MK5. This is why I asked if an additional radio is needed. My MK5 is running on the newest firmware (2.0.4) and it's wifi radio connects to the mk5's wlan0. So disabling it will drop the connection. Any suggestions? Many tanks. cheeto

Many thanks Whistle Master for your hard work on this particular infusion. Unfortunately it doesn't work for me. If i understand correctly this will not work unless I use a LAN connection or an additional wifi radio? Many thanks!! cheeto

THIS IS GREAT NEWS!!!!!!!!!

The best tutorials: https://www.youtube.com/user/sunstudiophotography

Chris, Your tutorials are simply amazing! I think I've seen all of them by now. I highly recommend anyone to see his tutorials. He makes the complicated look so easy! Looking forward to your next tutorial. Cheers!!

Many thanks King_Hrothgar, Looks like i have to do some reading. Cheers!! cheeto

Hats off to you Whistle Master on not just for giving us sslsplit but also for updating the other infusions making them compatible with the current firmware. Regarding SSLsplit, Are there any instructions for this. Seems to be strait forward, but when I press the start button and go to gmail, hotmail, etc.. I get this message: Is there a workaround to this? As always, MANY MANY thanks!

Just wondering, Will this be a solution to HSTS? Cheers

Thx Whistle Master. i heard good things about this. It could be a game changer if it works. Cheers!!

@ Mr-Protocol HAHAHAHAHAAHA sorry I thought it funny!!

Hi, I was in the same boat and gave up. If I were you, I would wait until the upcoming update that seems to be really promising. Just my two cents

SEB, this is very encouraging news!!! I've tried this on my mkv: aireplay-ng -0 'number of deauth packages' -a 'access point bssid' -c 'victim machine bssid' 'interface' But it didn't work. It, of course, works fine on Kali. Having an effective deauth plays major role in Evil Portal & Karma (perhaps other infusions as well). Because If we can't deauth a pc how can we expect a victim pc to log onto the mkv? This upcoming update could be a true milestone for the MKV. Thanks for your dedication!!! Cheers

@CMW, YOU are right, Windows does not respond to a general deauth attack. (I learned it the hard way) Congrats to Micro$oft. You can however deauth specific any client from an AP (windows or no windows) As far as i know, you need Kali for that. Do know if the MKV can do that? cheers

Thanks daniboy92, I will probably do it this weekend. It gets frustsatring when trying to figure something out for hours and it simply won't work. There is obvouisly a problem with this infusion. It looked so simple when watching the video.... I thought heck, that's easy. wrong i was..... Let's cross our fingers that the infusion gets updated. I really appreciate your help daniboy92!! Cheers

Thanks for getting back to me daniboy92, I do have the dns spoof infusion installed. In analyzing nginx.conf file I couldn't find the exact command: server { # php/fastcgi listen 8080; but i did find the 8080 and changed it to 80. Anyway after editing the file i rebooted the mkv and tested it but it simply doesn't work. I think im going to give up on the infusion and hope for a working update. This is just giving me grey hair. I really appreciate everyone's help, it's what makes this forum worth visiting. Cheers, #configured #configured #configured #configured #configured user root root; worker_processes 1; #error_log logs/error.log; #error_log logs/error.log notice; #error_log logs/error.log info; events { worker_connections 1024; } http { include mime.types; index index.php index.html index.htm; default_type text/html; sendfile on; keepalive_timeout 65; gzip on; gzip_min_length 1k; gzip_buffers 4 16k; gzip_http_version 1.0; gzip_comp_level 2; gzip_types text/plain application/x-javascript text/css application/xml; gzip_vary on; server { listen 80; # Port, make sure it is not in conflict with another http daemon. server_name www; # Change this, reference -> http://nginx.org/en/docs/http/server_names.html error_page 404 =200 /index.php; fastcgi_connect_timeout 300; fastcgi_send_timeout 300; fastcgi_read_timeout 300; fastcgi_buffer_size 32k; fastcgi_buffers 4 32k; fastcgi_busy_buffers_size 32k; fastcgi_temp_file_write_size 32k; client_body_timeout 10; client_header_timeout 10; send_timeout 60; # 60 sec should be enough, if experiencing alof of timeouts, increase this. output_buffers 1 32k; postpone_output 1460; root /www/; # Your document root, where all public material is. location ~ \.php$ { fastcgi_index index.php; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; if (-f $request_filename) { # Only throw it at PHP-FPM if the file exists (prevents some PHP exploits) fastcgi_pass unix:/var/run/php5-fcgi.sock; # The upstream determined above } } error_page 404 =200 /index.php; } server { listen 1471; # Port, make sure it is not in conflict with another http daemon. server_name pineapple; # Change this, reference -> http://nginx.org/en/docs/http/server_names.html error_page 404 =200 /index.php; fastcgi_connect_timeout 300; fastcgi_send_timeout 300; fastcgi_read_timeout 300; fastcgi_buffer_size 32k; fastcgi_buffers 4 32k; fastcgi_busy_buffers_size 32k; fastcgi_temp_file_write_size 32k; client_body_timeout 10; client_header_timeout 10; send_timeout 60; # 60 sec should be enough, if experiencing alof of timeouts, increase this. output_buffers 1 32k; postpone_output 1460; root /pineapple/; # Your document root, where all public material is. location ~ \.php$ { fastcgi_index index.php; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; if (-f $request_filename) { # Only throw it at PHP-FPM if the file exists (prevents some PHP exploits) fastcgi_pass unix:/var/run/php5-fcgi.sock; # The upstream determined above } } } }

never had that happen. Are you using the original sd card that came with your mkv? The one that come with the MKV is not know to be really good. It is advised to buy a class 10 sd card instead.

Hey raz0r, Same thing here. It takes around 7 min or so to start showing something in the log. If I want to suspend a session and resume it later. How would I go about doing that with Bully? Cheers, cheeto

here are some things that i learned (the hard way) * Make sure you have good signal strength I suggest: Quality level 70% or more * If you decide to change you mon0 mac address make sure it matches your wlan1. To avoid confusion and need to change the mac, simply change the wlan1 mac while mon0 is off. * reset wireless configuration. * make sure your target (victim AP) is using wps. As far as i know, you cannot know if the target is wps enabled with your mkv. I suggest verifying with Kali and a simple -wash script. good luck!!

Ok guys I followed the instructions and still can't get it to go. Please check out my video. https://mega.co.nz/#!2ddFHQSS!-v-LFs3GfZ2u-7CpbvuYhKFp_XC2t1UBnsoip9aJZoA Thanks again!!!, cheeto

Thanks for the update Whistlemaster. So with this update bully can now save bigger files? Cheers,

How about making several DNSspoofs. Can't you run them all at the same time? Have Dnsspoof redirect itself to a fake page. (like gmail, hotmail etc...). This way sslstrip wouln't be really necessary. just an idea i guess

I'm using the latest firmware 1.4.1 Sometimes it helps to reset your wifi configuration (this is found in the network infusion. cheers

Hey raz0r long time no hear. I've been messing around with 2 amazing scripts for wifislax: LINSET and Ghost Phisher. Easier is impossible... I'll PM you with more details. cheers! cheeo.