mykrowyre

The ip tables del does not work in the stop script, not sure why, the command is correct. Once I added my own iptables delete it fixed the problem with the internet not working after sslstrip is stopped, but sslstrip still overloads the pineapple.

nobody else having this issue?

Hi, I'm having constant problems with sslstrip on my MKV. I did notice that the stop action did not remove the rules from iptables.. not sure why, I don't see anything wrong with the the script. I added a line to remove them as mentioned above and that fixed it. However, I'm still having issues. When it's running, all traffic from port 80 is redirected, but any traffic which is forwarded to the SSL page and stripped by sslstrip, is not forwarded correctly. Instead the browser hangs until timeout. Here is what I see in the log.. using facebook as the example, but this happens on all websites forwarding to the ssl version. I've cleared the cache and cookies as well. 2014-10-20 18:20:52,297 Resolving host: www.facebook.com 2014-10-20 18:20:52,299 Host cached. 2014-10-20 18:20:52,303 Resolved host successfully: www.facebook.com -> 31.13.73.145 2014-10-20 18:20:52,306 Sending request via SSL... 2014-10-20 18:20:52,340 HTTP connection made. 2014-10-20 18:20:52,343 Sending Request: GET / 2014-10-20 18:20:52,346 Sending header: accept-language : en-us 2014-10-20 18:20:52,349 Sending header: host : www.facebook.com 2014-10-20 18:20:52,352 Sending header: accept : text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 2014-10-20 18:20:52,355 Sending header: user-agent : Mozilla/5.0 (iPhone; CPU iPhone OS 7_1_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D201 Safari/9537.53 2014-10-20 18:20:52,359 Sending header: dnt : 1 2014-10-20 18:20:52,362 Sending header: connection : keep-alive (times out here) Hitting CTRL-C immediately serves a blank page to the browser... so I know it's SSL strip waiting for a response. Also, after running for awhile, I see a massive amount of virtual memory used by sslstrip. See screenshot.

Also noticed the same. I would have thought extensive testing would have found this.

Nope didn't work. I've been fighting with this thing since day1, many issues not just sslstrip. Constant reboots, etc. Iptables and sslstrip are easy to use, but sllstrip absolutely refuses to work on my pineapple. I'm ready to toss it in my junk box and move on.

Thanks. Man I've tried everything. I've flashed and reset it hundreds of times. Tried using ethernet as the gateway, tried running sslstrip from shell, I just can't get sslstrip to work. It *has* worked in the past, occasionally, for one attempt, and then would stop working again. I'll try starting sslstrip before ICS. Thanks

Duh realized I forgot to delete the prerouting forwarding rule which is why I was having to restart the firewall. Guess I should move this to an ssnstrip specific thread.

When I connect to the pineapple's access point (wlan0) from a simulated victim computer, and access the internet through wlan1 (which is in client mode), is there any reason sslstrip should not work correctly? When I enable sslstrip, the connection fails and the only way to restore it is to disable sslstrip and then drop to shell and restart the firewall. The routing table is correct, and forwarding is enabled. My gut feeling is that it is going into a recursive routing loop, but I am not see anything the firewall config which could cause that, and it's been freshly reset, re-flashed, and only sslstrip infusion installed. Out of curiosity I typed: iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000 sslstrip -l 10000 And got the same result. What am I doing wrong here? Thanks