Hi All
I recently purchased a pineapple to use in some upcoming red team assessments and have spent the day setting up and exploring. I have ICS working with OS X and the latest firmware but i'm a little confused about a few things. Its probably best I start by explaining what exactly I would like to do!
Aim: to demonstrate to clients that they shouldn't enable wifi on devices as its easy to impersonate a legitimate access point and start intercepting even SSL traffic
I believe to impersonate a legitimate access point I would use PineAP + Karma + Harvester.
Question 1: is the above correct and if so, will the client devices not complain that the AP they are connecting to are unprotected instead of WPA2?
Assuming they are now connected to my AP...
Question 2: How can I understand who is connected? I see a client count in the web interface top right corner but don't see how I can find out anymore info?
Also, I have found that after installing and enabling SSLStrip, I am not getting any output at all. It seems to be started but not stripping anything
Question 3: Why after turning on SSLStrip and visiting a https page on my laptop connected to the fake AP am I not being stripped and nothing is showing in the logs?
I think I once read about an infusion that would actually show you a list of the access points and the clients connected to each of these access points. I can't seem to find this again, the closest I have found is Site Survey
Question 4: How can I find a list of which clients are connected to which AP's
Finally, i notice that there is also a WLAN 1, which isn't started.
Question 5: What is that typically used for? ICS without using the ethernet cable?
Thanks in advance
Mike