sud0nick

This is why I've completed a ton of personal projects. I'm always working on things so I can stay sharp and learn more. It makes me tired but at least I'm well versed in many areas.

Watch the videos I posted in your other thread. I don't have a Parrot ARDrone so I can't test this but it looks like he is just connecting via SSH. I think he said it's running BusyBox and it broadcasts an SSID. You can connect to the AP, SSH into it, and view the files that way.

I think I found the reason why Cheeto couldn't clone some portals recently. I looked into the Python scripts that do the cloning and authentication and found that I had left some test URLs in there that lead to a page that no longer exists. I have fixed this issue and uploaded a new build to my site. Please give it a shot and let me know if there are any issues.

Sweet, thanks. I don't know why I didn't see that before. Edit: Although, they aren't selling the cool new bag on there yet...

I know the HakShop doesn't sell the every day carry (EDC) bags apart from the Pineapple bundles but has there been any thought on doing so? I bought the tactical bundle a few months back but I really like the new EDC bag that Darren had on the last episode. I would buy a new bundle as I can justify having an additional Pineapple but with my luck you guys will release the MKVI right after I get the new bundle, lol.

It probably wants the wireless interface you are going to use to send the kill signal. Most likely wlan1 since wlan0 is your AP.

I Googled this a little but I'm not exactly sure how one would implement it. Would you make your own vulnerable site as a captive portal? How would you get their keystrokes when they navigate to other sites?

I believe your question is answered in the first video. Darren shows you how to use ardronepwn. It's a command line infusion so you need to type pineapple infusion ardronepwn plus any parameters required in one of the DIP fields.

I can't believe how many of these posts Cooper is liking. He's like Oprah, "You get a like, and you get a like. Everyone gets a like!".

I went through this same thought process a couple years back. I'm still working on my degree, and will finish it this summer, but I have a lot of certifications and experience that got me the current job I have. I've found a degree to be more of a check in the box rather than proof of knowledge. However, I see the importance of it and I plan on starting a Master's program at the end of this year or beginning of next year to further my education even more. Plus the pay raise that you can negotiate after you have a degree is quite nice.

We'll have to continue this particular discussion in messages but I looked at the source you sent me and there was no reference to any JS files. If there is no reference in the HTML it won't be copied. It's strange that the HTML didn't copy so there is definitely a missing variable here. Maybe there was a type of redirect that has not been accounted for yet?

Watch these two videos:

If Portal Auth is copying the files then why not just add this code to InjectJS? That's why a lot of the options are editable because not every situation is going to be the same. I put quite a bit of effort into the infusion so that you guys have the power to make it work for you not just in the way I designed it. Take control of it, play with the Inject/Strip options and modify those Inject files. Remember, if you screw them up you can just click the restore link to get the original back.

Usually people only create two version of their website if they can't reasonably fit things into a mobile resolution. I think if you continue to use fixed width and height you are eventually going to run into problems. If the captive portal has a mobile version then it won't be cloned because the regular version will be displayed first. There might be a way to trick it into cloning the mobile version by manipulating some headers but I will have to do some research.

Yes. No. Portal Auth copies the source code that is delivered when requesting a page. Typically for mobile devices, the CSS simply detects whether the resolution is at a certain width or height before enabling style classes for that resolution. Two separate files are not required and don't make a design appear fluid. For example, I have these two blocks that detect screen resolution and apply the changes when the window is resized. @media screen and (min-width: 610px) { #msgBox,#macStealerBox{ top: 50%; left: 50%; width: 600px; height: auto; max-height: 430px; margin-top: -175px; ; z-index: 10; display: none; } } @media screen and (max-width: 609px) { #msgBox,#macStealerBox{ top: 50%; left: 0px; width: 100%; height: auto; max-height: 430px; margin-left: 0px; margin-top: -175px; z-index: 10; display: none; } } Keeping your width set to a fixed number of pixels is not a good idea when trying to make something look the same regardless of window size. It works perfectly on your devices but it most likely won't on other devices.

Portal Auth will clone the site as it is. If that site supports mobile devices, great. If not, then it will not add additional CSS to account for different screen resolutions. That would require parsing the available CSS, duplicating the classes, and modifying them for different resolutions. Needless to say it would probably not work out very well. I also don't like the idea of making two copies of every portal cus that will cause problems in itself.

You could use one of these from the HakShop (SMA Male Jack to RP-SMA Female Adapter). As far as scanning with Wlan2 instead of Wlan1 you would have to modify the infusion if it doesn't let you choose.

Did you break the mount too? If not just get a new antenna. I'm not sure if the HakShop has them, since I can't get to their site from work, but you can find SMA antennas all over the internet. EDIT: Actually I can get there from work but it seems they don't have the Pineapple SMA antennas for sale.

In the future please just post in the thread you find so others don't go off topic. Just like the best answer states in the thread you found it will not hurt your Pineapple at all. Most of the time I send a halt command before I unplug mine but that's because I'm overly cautious at times. I've pulled the plug many times and never had a problem.

Final test version is up before I submit 2.2 to the Pineapple Bar. Cheeto brought an issue to my attention about the cloner window not looking right on mobile devices so I've fixed that. Along with it I have added the ability to pull all of the MAC addresses from other clients on the network so you can spoof them to gain access if a portal requires credentials. I tried making it automatically spoof each MAC but the problem is the interface must go down to change the MAC address and when it's brought back up it doesn't automatically associate with an AP again. So that may be included in a future release (but maybe not because it would also take FOREVER to spoof each one and check for a portal every time). Also, Seb requested that I add a confirmation before installing depends so that everyone knows they are coming from my server and not Hak5's so you'll see that. He also mentioned it would be a good idea to verify the checksum of each dependency so that has been included as well. You won't see any messages about the verification unless it fails at which point the process will stop and the file will automatically be deleted. I'm gonna wait a day or two before submitting v2.2 to the Pineapple Bar to see if there is anything else that needs to be changed. EDIT: One last thing, I recommend a clean install before you move to the next version. Open up the large tile and, under the Config tab, click Uninstall Dependencies. Then download the new version.

Nice find, I didn't know that existed. However, it is exactly what I've been talking about. The only way it will work is by essentially using a captive portal but at that point these is no need to log keys because they will be giving you credentials anyway.

My apologies. You asked if the MKV could function as a key logger so it sounded like you were looking for a solution to send the keystroke over the network as it was being typed without first setting anything up on the victim machine. Of course the Pineapple could log data but again the victim is going to have to install a keylogger first.

I don't think you understand how a keylogger works. Since it captures keystrokes from the keyboard it's local to the machine. Every time you press a key on a web page the data isn't sent over the network. It's done locally and then the form is sent over the network. You won't be able to capture keystrokes from the Pineapple unless if you build something like this: http://www.networkworld.com/article/2868663/microsoft-subnet/hacker-builds-wireless-microsoft-keyboard-keylogger-disguised-as-usb-wall-charger.html.

When cloning do you not see the progress bar at the top of the clone window? If not, what browser are you using and what version is it?

You can trick the victim into downloading and installing a keylogger but good luck on that actually working.