Jump to content

dre2007

Active Members
  • Content Count

    19
  • Joined

  • Last visited

About dre2007

  • Rank
    Hak5 Fan
  • Birthday 09/27/1989

Profile Information

  • Gender
    Male
  • Location
    Netherlands

Recent Profile Visitors

501 profile views
  1. I really do like your straight forward question. I agree that it isnt that usefull for cracking wpa2, however it is 1 of the options it offers. Nano has other options as you know but hey, interesting how others think about this.
  2. I just simulated your scenario and I do have internet access, slow but I do have access. If you create an open wifi network in the pine ap, could you please check your ip, subnet,gw and dns if you connect with a device to it? Then please try to ping a server, eg. google.nl If this works then the problem lays in DNS. Ps.: You are absolutely right on the future! this would be a great add on and I don't think it should be hard to implement.
  3. Hi all, Just caught up with this post and couldn't find an eta on the modules. I did do some work with the pine app but nothing real fancy yet. Just getting familliar with the gui, ssh, sdcard, mdk3 and the default airmon-ng, aircrack, airplay-ng commands as usual and some routing configuration. Now that I know the basic stuff, I would like to create/write some modules like using sslstrip. I do have experience with sslstrip on Kali linux and I want to introduct it to the nano. Do you have a starting point of how to create a module? For example, if you could tell me for example that I need to write a script in, eg. python, and add the pointing entry to the script to a module file, eg. /etc/modules.conf then that would be cool. I don't have a clue of where to start. I am not asking for a complete write down as that would take to much time but a starting point would be great. So basicly I got questions; has there already been mentioned an eta on the modules availability and I really would like to start with the sslstrip on the nano but I am stuck due to the lack of python-twisted-web. I can't download it via the normal repositories and I don't want to manually change the repos to another destination. When will the python-twisted-web package be available? Or if you have another brief instruction of how to setup sslstrip on the nano that would be great ( I prefer not to wait on the update as seb stated before, so any help would be great ). Thanks in advance again.
  4. Finally I got this thingy setup.. I created a partition with fdisk /dev/sd1 It was mounted all the time, I was just misusing the opkg command and the fstab had to correspond with the device which you can find in dmesg I had to check how it could be used with opkg so I did vi /etc/opkg.conf There I saw that it was dest sd /sd This meant that I should not use opkg install ***.ipk --dest /sd but without the / in front of sd. Thanks for all the tips and heads up :)
  5. Hi Sebkinne, Thanks for comming back to me on this one. However, do you have a good read up of how to achieve in the way I did? i am just curiouse as of what I did wrong. It mounted, but why can't I use it as a destination? Didn't I specify it somewhere where I should have? Thanks again :)
  6. Hello sebkinne, this was indeed the issue and now it is mounted for me aswell, instead of booting I did mount /dev/sda1 /mnt/sda1 Now I can see the following output: root@Pineapple# df -h Filesystem Size Used Available Use% Mounted on rootfs 2.4M 292.0K 2.2M 12% / /dev/root 12.5M 12.5M 0 100% /rom tmpfs 29.9M 88.0K 29.8M 0% /tmp /dev/mtdblock3 2.4M 292.0K 2.2M 12% /overlay overlayfs:/overlay 2.4M 292.0K 2.2M 12% / tmpfs 512.0K 0 512.0K 0% /dev /dev/sda1 28.4G 43.9M 26.9G 0% /mnt/sda1 Now I wonder, how do I specify the mounted partition as the target for installation? I did opkg install xxxx.ipk --dest /dev/sda1 I did opkg install xxxx.ipk --dest /mnt/sda1 but but commands failed. Dmesg shows: [ 291.110000] EXT4-fs (sda1): mounted filesystem with ordered data mode. Opts: (null) Hopefully someone can help me out on this one.
  7. Another post on mounting an SD card. I don't know how to mount the USB drives but I read some other posts so if someone could help me out with the info provide below that would be great: Firmware: 1.0.1 Installation: Clean install df -h shows: Filesystem Size Used Available Use% Mounted on rootfs 2.4M 288.0K 2.2M 12% / /dev/root 12.5M 12.5M 0 100% /rom tmpfs 29.9M 92.0K 29.8M 0% /tmp tmpfs 29.9M 68.0K 29.8M 0% /tmp/root tmpfs 512.0K 0 512.0K 0% /dev /dev/mtdblock3 2.4M 288.0K 2.2M 12% /overlay overlayfs:/overlay 2.4M 288.0K 2.2M 12% / FDISK -l shows (partial result ): Disk /dev/sda: 31.1 GB, 31104958464 bytes 255 heads, 63 sectors/track, 3781 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sda1 1 3782 30371840 c Win95 FAT32 (LBA) I did: mkdir /mnt/sda1 mount -a <-- nothing happend as I can't browse the /mnt/sda1 dir mount /dev/sda1 /mnt/sda1 <-- nothing happend again Also did: mount -t ntfs /dev/sda1 /mnt/sda1 mount: mounting /dev/sda1 on /mnt/sda1 failed: No such device <-- this is the result PS: I also did what Heavenbreaker stated and copied and paste it in and removed the M after 1024 in the file. Still no luck after reboot... What am I missing?
  8. Hi Korang, Your answer is simple but very interesting. I am often overthinking the use of a pineapple but you made a valid point as to prove the MITM attack in organizations, I think I will setup a case like this :) If anyone else has some good experience please share :)
  9. Hello Dez, I have some experience with this on Kali. For cracking WPA2 you will need to have some good CPU or GPU power... Let me explain a litle bit about hacking WPA2 as far as my experience reaches. First you need to set your WLAN card to promiscious mode ( airmon-ng command ) Then you will need to capture the handshake ( airodump-ng command) This could take some time, to capture it faster you could disassociate current clients so they reassociated and you capture their handshake ( aireplay-ng command) Once captured, you can crack it with a bruteforce or dictionary ( aircrack-ng command ). However, the pineapple has to less power to do this, I would recommend to create a custom dictionary on a kali machine and import the airodump file to the kali machine and run a dictionary attack. If that won't work you could try a brute force, however, as the minimum password length for WPA2 is 8 chars, it could take at least a couple of days. If you try to crack a 9 char password and they use special chars or numbers, forget it, this will take to long. My advice is to first install kali on a laptop, do the above commands, once you master it, use the nano to capture a handshake and crack it on the laptop, server. If you need any additional info, please let me know :)
  10. Hello everyone I recently purchased the pineapple nano because I think it can be good for a pentester. In August 2015 I became CEH certified and I did a lot of research of what a good pentester would be. However, just as with everything else, a community always has other intresting thoughts so for this reason I reach out to you. My question to you all is, what is your ultimate goal with the pineapple? Is it hacking wifi, deassociate wifi clients, etc.. I am really curiouse of your goals and interests. Please post your interests, thanks :)
  11. So, I have had a couple of days of from work and I created a sketch of what I am trying to achieve. Everything is going well but... there are some speedbumps on the road. I can't use MDK3 and also timeout is a command that isn't installed. Let me clarrify why I want to use it: MDK3: This is a better tool to kick off all asocaited clients then aireplay, aireplay doesn't work very good for all clients, only individual, at least this is the result of my lab tests. So, will MDK3 be available as an install ( opkg install MDK3 )? Timeout: Where does the timeout come into the playing field? Well, if I use an SSH app on my android phone and ssh into the box I can use the command airodump-ng. However, I can't stop it as I can't use the CTRL + C on my android. So a workaround would be to run it for a couple of seconds, hence the timeout command, just enough to find the SSID. I got my reasons for this ;-) Question specific: 1- Is it possible to use MDK3 in the future and if not would you please recommend an alternative other the aireplay which I don't really like due to some issues kicking everyone from a network. If there is not an alternative, would you please add it to the wishlist? 2- Is it possible to use timeout or an equivalent command to achieve the goal I described? Thanks for replying :-)
  12. Thanks for the reply, hopefully someone is able to confirm you. Furthermore, if someone could help me out on the other 2 questions, that would be great :-)
  13. There are several ways to achieve this. I will explain 3: 1.: Don't allow any of the IP addresses in 172.16.42.x to access the internet ( pineapple nano also won't be able ). - Delete the default routing rule aka gateway. - Dissalow it via IPtables 2.: Allow the pineapple to access the internet but don't allow the clients - Create an iptables rule that dissalows the clients 172.16.42.2-254 3.: Change the scope options so that clients don't get a default gateway Of all 3 the last is the worst secured ( anyone can add a default gateway after reading its scope and doing an IP scan.. ) The 2nd is pretty secure, however, your own wifi device connected to it also won't be able to access the internet, you can work around it but this is out of the scope for this question The 1st option is the most secure, if anyone has other suggestions, please feel free to join in as I am curiouse with what you guys come up with.
  14. I also had this issue, I discovered it had to do with the routing tables. Let me explain, the USB connection on the laptop will be seen as a network interface, some laptops like mine, are changing there default route to the Pineapple which is incorrect. If you are connected to the wireless network with your laptop and you plugin a LAN kabel ( in this case the nano is seen as LAN ) the LAN will always be seen as the default route by design as LAN always wins from WLAN by design. In almost all situations this is desirable because LAN is faster then WLAN.. To resolve your issue that you don't have internet access when you connect your nano to your laptop you should first run the following command your laptop ( I assume you have a Linux distro ): route -n This will probably show that the default route is going to 172.16.42.1 ( AKA the NANO ) ( you will see something like: Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 172.16.42.1 0.0.0.0 UG 0 0 0 eth1 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 wlan0 The first line begining with 0.0.0.0 means that everything it can't find on it's own LAN network will goto the 172.16.42.1 network which, once again, is the NANO. This should be changed to your WLAN gateway. For example if your WLAN has a network of 192.168.1.0 and you gateway is 192.168.1.254 then you should run the following command, again on your laptop: route add default gw 192.168.1.254 wlan0 <-- assuming wlan0 is your wifi interface card Then delete the wrong route: route del default gw 172.16.42.1 eth1 <-- assuming your network to your nano is eth1 ( look this up with ifconfig and find out which interface uses 172.16.42.x address and change it accordingly, probably eth1 but just check it as the eth0 is your onboard LAN adapter ). Now, ping the internet again from your laptop (ping 8.8.8.8 ) and look if it is working, then ping a website to see if DNS works.
  15. Hello everyone; When I SSH into the NANO and do an opkg update, it gives me the following error. * opkg_download: Failed to download https://www.wifipineapple.com/nano/packages/Packages.gz, wget returned 1 When I iceweasel to it, it indeed doesn't exists. So, I thought, why doesn't this URL exist and messed a litle with the url and changed the nano subdirectory in markv, this packages.gz does exist. I don't change it in the repositories because it is a way different build as I read earlier on some forums but I wanted to point out that this link doesn't work, is it because this is also the download link for the modules which are not yet available and you want to introduce later? Why am I doing an opkg update? Because opkg install python-twisted-web gives me an error and I need that one for the sslstrip to work ( it states unknown package ). The installation instructions that I created for myself after some digging around: opkg update opkg install python opkg install python-twisted-web <-- this gives me the error mentioned wget http://www.NotShowingUrlButThisIsTheSoftwareSite/software/sslstrip/sslstrip-0.9.tar.gz<-- I'm not sure if I am allowed to point to other sites so thats why I removed the URL tar -zxvf sslstrip-0.9.tar.gz cd sslstrip-0.9 python ./setup.py install If I run sslstrip never the less, I get the following error with this command "sslstrip -p -l 4444": Traceback (most recent call last): File "/usr/bin/sslstrip", line 27, in <module> from twisted.web import http ImportError: No module named twisted.web Questions: 1- Why is the URL incorrect 2- Where do I obtain python-twisted-web 3- Is the reason of my ssltrip error the lack of having python-twisted-web PS.: Darren, you were right on the udhcpc command ;) Thanks in advance, Andre
×
×
  • Create New...