0phoi5

Neither traceroute nor tracert appear to be recognised, I might not have traceroute installed; root@RPi:~# traceroute kali.org -bash: traceroute: command not found root@RPi:~# tracert kali.org -bash: tracert: command not found Amending the last line in /etc/resolv.conf from nameserver 192.168.1.254 to 8.8.8.8 and rebooting the RPi results in the following when running apt-get update; root@RPi:~# apt-get update Err:1 http://http.kali.org/kali kali-rolling InRelease Temporary failure resolving 'http.kali.org' Reading package lists... Done W: Failed to fetch http://http.kali.org/kali/dists/kali-rolling/InRelease Temporary failure resolving 'http.kali.org' W: Some index files failed to download. They have been ignored, or old ones used instead.

Hi all, I have created a Wi-Fi bridge using these instructions, using an RPi3's internal Wi-Fi (wlan0) and bridging to ethernet (eth0). It works a treat, I can connect to my RPi hotspot and use the internet fine. I can ping all websites fine. However, I cannot use apt-get update or install on the RPi being used as a bridge any more. It states; root@RPi:~# apt-get update Ign:1 http://http.kali.org/kali kali-rolling InRelease Err:2 http://http.kali.org/kali kali-rolling Release Unable to connect to http.kali.org:http: Reading package lists... Done E: The repository 'http://http.kali.org/kali kali-rolling Release' does no longer have a Release file. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. sources.list contents are; deb http://http.kali.org/kali kali-rolling main non-free contrib deb-src http://http.kali.org/kali kali-rolling main non-free contrib I also cannot ping http.kali.org, it fails. Pinging yahoo, google or facebook from the RPi bridge works fine. How can I continue to use apt-get update and install on this RPi, whilst keeping it as a bridged Wi-Fi hotspot? Thank you.

When you say 'evil portal', do you mean a nearby WiFi Rogue Access Point with the DNS settings amended and/or ARP poisoning taking place? Or something else? If the Rogue AP is the case, this pretty much gives you all you will need.

You can create a clone of a website template using HTTrack, rather than having to make your own from scratch.

A quick search on Google yielded loads of results. The first result gives you everything you need.

Very little distance. Ideally the Wi-Fi antenna needs to be connected directly to the board itself for no loss in power at all. Even a short distance will affect signal strength. I would advise using a USB extension cable and an external Wi-Fi card with the antenna connected directly to it, like an Alfa card.

Sorry, not sure entirely what you mean here. Different 'settings' within Windows will have entirely different ways of amending them. Some will require registry changes and a reboot, some will simply be one-liners from CMD or PowerShell, some won't be possible with CMD or PowerShell at all. You'll need to advise exactly what settings it is that you are trying to amend. Also, Google is your friend. I'm sure that if you type "PowerShell [name of setting]", something will come up for you.

Change internal IP: http://www.howtogeek.com/118337/stupid-geek-tricks-change-your-ip-address-from-the-command-line-in-linux/ Change MAC: https://en.wikibooks.org/wiki/Changing_Your_MAC_Address/Linux Deauth(enticate) AP: https://www.aircrack-ng.org/doku.php?id=deauthentication Increase Signal Strength of your WiFi; https://forums.kali.org/showthread.php?4129-Increase-Wi-Fi-TX-Power-Signal-Strength You'll want the internal IP and MAC the same as the AP you're trying to disguise as.

If you create the access point with the same IP, MAC and security, and either deauth the real AP or make your signal stronger than the real AP, it should connect to yours instead. I suspect you haven't quite made them look like the same thing; either the MAC, IP or security settings are not the same.

Nice script, but what if the WiFi network with the most active traffic changes in the moment between getting the channel number and getting the ESSID? Would it not be possible to set the $channel and $network variables in the same line of code? Just incase

First thing I would do is set all of the delays to DELAY 5000 and let it run through. Then you can be sure it's not a delay being too short (the PC can't keep up).

I would advise to wait just a little longer. Unfortunately, the holidays mean that on the one hand the Hak5 shop is inundated with orders, and on the other hand they are not in as much as they are also taking their holiday. This generally causes a delay over the holiday period. I've never known them to purposely ignore customers or orders, they are more-than-likely very busy and getting a lot of emails. Hopefully someone will reply soon.

Really good answer and detail, thank you. Much appreciated :)

Not quite the same reach in all directions, unfortunately. You make a 360 degree antenna, you lose some distance. As an example, this is the reason radar isn't omni directional - it uses a rotating dish instead, meaning it can still cover 360 degrees, but it also covers maximum distance instead of losing some of that power. Of course, firstly, it would be recommended to go back to the drawing board and figure out exactly why one needs a non-directional antenna in the first place. If the scenario is that one has to have 360 degree coverage and also has to have the maximum range possible, it's better to use a rotating directional than an omni. Simple set up would be to find out the beam-width of the directional antenna, spit 360 degrees by that number and then rotate the antenna this many times, capturing traffic in each direction in one capture file. You could rig up a simple turntable that automatically rotates the beam-width say every minute, captures traffic on a certain channel, then maybe switches channel after each 360 degrees and keeps going, capturing to one file. Run this for half an hour and you'll have a long-range, good capture of all traffic within the area. The directional won't capture close-by stuff, but then you can use a simple, low power omni for this. Pretty sure you could build the above with a RPi and a motor (or this one).

7

Why not just use TOR and refresh the session? You get a new IP each time anyway.

:DoTheThing netsh interface ipv4 set address name="Wi-Fi" static 192.168.3.8 255.255.255.0 192.168.3.1 start http://www.helloworld.co.uk GOTO DoTheThing http://www.howtogeek.com/103190/change-your-ip-address-from-the-command-prompt/

Hi guys, Sorry, I have further questions regarding my original post. Please see the diagram below. When I request my external IP address from anywhere, such as nslookup or going to ipchicken etc., from which point in this diagram does the IP get calculated? Which device gives it's IP? Because it's certainly not 'Your Computer' or 'Modem', so I assume it's something after this? Thank you.

Have a good one all.

Nice bit of artwork, thank you.

Sounds alright to be honest. Might have to look at that one. Thanks.

A search for this shows it's £100 / $130. Is that correct? If so, I can't imagine it's very good nowadays, surely?

Amen to that. Glorified phones with keyboards. Useless for any real work.

Sorry HH1, this is not that kind of forum. You might want to TOR in to somewhere a bit blacker for that, we wear white hats around here.

Shorting out 2 points on a circuit board basically means connecting them together with something conductive so that electricity passes between the 2. In this case, find the solder points on the bottom of the Ducky that attach the replay button on. Link them together with something metal. *edit* If you are unsure what you are doing, don't try this. Shorting out points on a circuit board can sometimes lead to bricking, if you touch the wrong ones.