Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

  • Days Won


Contact Methods

  • Website URL

Profile Information

  • Gender
    Not Telling

Recent Profile Visitors

1,320 profile views

IMcPwn's Achievements


Newbie (1/14)


Community Answers

  1. The problem is needing to escape the QUACK string because it includes a bash variable. This pull request fixes it: https://github.com/hak5/bashbunny-payloads/pull/17 The correct line is: QUACK STRING powershell ".((gwmi win32_volume -f 'label=''BashBunny''').Name+'payloads\\$SWITCH_POSITION\d.cmd')"
  2. Thanks for fixing my bug @rastating! I didn't realize you needed to escape QUACK commands... Github issue reference: https://github.com/hak5/bashbunny-payloads/issues/13
  3. Hey guys. After having fun with the LAN Turtle and WiFi Pineapple Nano I took a break and started working on my own project. It's called BrowserBackdoor. It's an Electron application that includes a JavaScript WebSocket backdoor that connects to my Ruby listener. The Electron application runs in the background with no user interface and is basically Chromium so it hasn't been flagged by any Anti Viruses I've tested it against. The Ruby listener can send commands or modules to the Electron application for it to execute and send the results back. Here are the modules I've created so far: enableStartup, screenshot, downloadFile, beep, execCommand, readClipboard, moveToTrash, readDir, openURL, createFile, writeClipboard The up to date list is here: https://github.com/IMcPwn/browser-backdoor/tree/master/server/modules I've also taken some screenshots of what the console looks like: https://github.com/IMcPwn/browser-backdoor/wiki/Screenshots If anyone is interested in suggesting anything I should add or working on the project with me let me know! Github link: https://github.com/IMcPwn/browser-backdoor I'm also trying out Discord for live text/voice chat: https://discord.gg/013wk2VPnnuw9iLmU
  4. Aww. Thanks anyway Darren. I guess I'll try running access server and community edition at the same time :/
  5. Thanks Darren! I tried forwarding LAN to WAN in /etc/config/firewall but it made no difference. I want to do what you're doing in the video but using OpenVPN community edition instead of access server but there is absolutely no information on how add a client as a gateway anywhere I can find, do you know how?
  6. Hey guys, I got an OpenVPN client working on the Nano super easily. The command is opkg update && opkg install openvpn-openssl --dest sd Anyway once I have it connected I cannot ping (or connect in any other way) the nano from my computer (the OpenVPN server) but I can do the reverse. I have temporarily disabled ALL iptables rules and set the chain defaults to ACCEPT and still nothing. I'd like to say I'm decent at figuring out iptables but I can't work with the zone_wan_input and zone_lan_input, etc chains but I'm assuming that's not the problem because I deleted all of them (temporarily). This is also an issue on the Turtle for me. I have not tried setting the Nano or Turtle as default gateways on my server because I'm not using openvpn-as (access server), just plain old openvpn command line community edition so I'm not sure how to do that and can't find anything on google on how to do that. Here are my current iptables rules on the openvpn server: ip=`curl -sS -4 http://icanhazip.com` iptables -A FORWARD -s -d -j ACCEPT iptables -t nat -A POSTROUTING -s -o eth0 -j SNAT --to $ip It'd be great if anybody had some insight on a solution, thanks in advance!
  7. The Pineapple can only do 2.4ghz, so that's what the dongle is for. Adding 5ghz support.
  8. Couldn't find those drivers precompiled for Openwrt, and I couldn't compile them myself. Any other ideas anyone?
  9. I'm looking for a nano-compatible 5GHz usb wireless dongle (small form factor). The drivers don't have to be preinstalled, they just need to exist for the nano. It would also be nice if it had monitor mode capabilities. Injection support would be a bonus. There doesn't seem to be anything like this on the Hakshop. I've been doing some looking on Amazon and this seems promising: http://www.amazon.com/StarTech-com-Wireless-AC-Network-Adapter-USB433WACDB/dp/B00NJF21EQ/ I believe it uses AC600. Some people say it has monitor mode but driver issues. There's also this which I couldn't find any information on: http://www.amazon.com/Edimax-EW-7811UTC-Dual-Band-Connectivity-Exceeding/dp/B00FW6T36Y Thanks for any help!
  10. First I'd try executing mount /dev/DEVICE_NAME /mnt If that works and you can access the flash drive at /mnt I'd add config 'mount' option target '/sd' option device '/dev/DEVICE_NAME' option fstype 'auto' option options 'rw,sync' option enabled '1' to fstab.
  11. wlan0-1 is because you're running an open AP and a management AP. If you disable the management AP wlan0-1 disappears. On a side note it'd be nice to know if you can disable the open AP as well. I was just thinking it might help use less power when in recon mode.
  12. I think you have what I'm saying confused. They are not on my physical machine. They are merely connected to the Pineapple's open AP from their laptop.
  13. @Darren I'm not concerned with regular users. This is for the sysadmins or people who would look up WiFi Pineapple to find out what it is or people who already own one being able to find out information about yours. Ex: they could find out if you have Cabinet or any other module installed by going to without needing to log on. @audibleblink's CSS solves the issue of someone looking up WiFi Pineapple and going to your site and to find out information unless they know you can disable that CSS on the right side of Chrome's Developer Tools which makes it look exactly how it did before.
  14. Glad you all agree and I'm liking the ideas! Specifically I'll be trying editing the CSS. Hopefully we'll see what Seb or Darren have to say for a more permanent solution.
  • Create New...