Hi All,
Proud new owner of a Pineapple mk V here but fairly new user.
I'm trying to test a network which is 'Open' and redirects any connected users to a captive portal (requiring AD logins).
I'm wondering if it would be possible to perform an attack that does the following:
wlan0 broadcasts 'TARGET_SSID' as Open with the same spoofed MAC address/ESSID etc
Wlan1 connects to the 'legitimate' 'TARGET_SSID' and connects to the captive portal page
When a user connects to the fake TARGET_SSID on wlan0 they should see a SSL-stripped version of the captive portal.
Ideally, Once they login, the login should pass through WLAN1 to get internet/network access.
If that's occurred successfully, the user should be allowed to browse as per usual while having a SSL-stripping attack performed.
I'm not sure how to tie all these attacks together, from what i've been able to read so far, each of these attacks can happen but all happen individually.
Could anyone point me in the direction of any guides etc that will help me do this or have any pointers?
Many thanks,
