mykrowyre
-
Posts
8 -
Joined
-
Last visited
Posts posted by mykrowyre
-
-
nobody else having this issue?
-
Hi, I'm having constant problems with sslstrip on my MKV. I did notice that the stop action did not remove the rules from iptables.. not sure why, I don't see anything wrong with the the script. I added a line to remove them as mentioned above and that fixed it.
However, I'm still having issues. When it's running, all traffic from port 80 is redirected, but any traffic which is forwarded to the SSL page and stripped by sslstrip, is not forwarded correctly. Instead the browser hangs until timeout.
Here is what I see in the log.. using facebook as the example, but this happens on all websites forwarding to the ssl version. I've cleared the cache and cookies as well.
2014-10-20 18:20:52,297 Resolving host: www.facebook.com2014-10-20 18:20:52,299 Host cached.2014-10-20 18:20:52,303 Resolved host successfully: www.facebook.com -> 31.13.73.1452014-10-20 18:20:52,306 Sending request via SSL...2014-10-20 18:20:52,340 HTTP connection made.2014-10-20 18:20:52,343 Sending Request: GET /2014-10-20 18:20:52,346 Sending header: accept-language : en-us2014-10-20 18:20:52,349 Sending header: host : www.facebook.com2014-10-20 18:20:52,352 Sending header: accept : text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.82014-10-20 18:20:52,355 Sending header: user-agent : Mozilla/5.0 (iPhone; CPU iPhone OS 7_1_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D201 Safari/9537.532014-10-20 18:20:52,359 Sending header: dnt : 12014-10-20 18:20:52,362 Sending header: connection : keep-alive(times out here)Hitting CTRL-C immediately serves a blank page to the browser... so I know it's SSL strip waiting for a response.Also, after running for awhile, I see a massive amount of virtual memory used by sslstrip. See screenshot.
-
Yes!! I did a very similar test, and got very similar results. The difference is that I did more extensive testing and found that the speed issues went away when either of the connections from/to the pineapple was via ethernet instead of wifi.
Also noticed the same. I would have thought extensive testing would have found this.
-
Nope didn't work.
I've been fighting with this thing since day1, many issues not just sslstrip. Constant reboots, etc. Iptables and sslstrip are easy to use, but sllstrip absolutely refuses to work on my pineapple. I'm ready to toss it in my junk box and move on.
-
I had the same issuse and did enabled SSLStrip first and then enabled ICS.
Maybe the order is important ?!
Thanks. Man I've tried everything. I've flashed and reset it hundreds of times. Tried using ethernet as the gateway, tried running sslstrip from shell, I just can't get sslstrip to work. It *has* worked in the past, occasionally, for one attempt, and then would stop working again.
I'll try starting sslstrip before ICS. Thanks
-
Duh realized I forgot to delete the prerouting forwarding rule which is why I was having to restart the firewall.
Guess I should move this to an ssnstrip specific thread.
-
When I connect to the pineapple's access point (wlan0) from a simulated victim computer, and access the internet through wlan1 (which is in client mode), is there any reason sslstrip should not work correctly? When I enable sslstrip, the connection fails and the only way to restore it is to disable sslstrip and then drop to shell and restart the firewall. The routing table is correct, and forwarding is enabled.
My gut feeling is that it is going into a recursive routing loop, but I am not see anything the firewall config which could cause that, and it's been freshly reset, re-flashed, and only sslstrip infusion installed.
Out of curiosity I typed:
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000
sslstrip -l 10000
And got the same result.
What am I doing wrong here?
Thanks
[Support] SSLstrip
in Mark V Infusions
Posted
The ip tables del does not work in the stop script, not sure why, the command is correct. Once I added my own iptables delete it fixed the problem with the internet not working after sslstrip is stopped, but sslstrip still overloads the pineapple.