Jump to content

Forkish

Active Members
  • Posts

    421
  • Joined

  • Days Won

    18

Everything posted by Forkish

  1. I mostly use an iPhone 6s to manage my pineapples. In the module manager, the unbroken description for Responder is: LLMNR, NBT-NS and MDNS poisoner with built-in HTTP, SMB, MSSQL, FTP and LDAP rogue authentication server using Responder The next longest module description is DWall and it’s description ends between the words MSSQL & FTP. Is there anyway that the we could be served that information with break in the text at that point? It would allow for the entire page to be slimmed down horizontally and could get to the columns right of the description. If breaking the Responder description in half is possible, it would be a slight improvement to life (that phrase sounds pompous to me but that’s the best I could think of at the moment).
  2. I feel the answer to that exact question is something bing.com or duckduckgo.com could answer for you.
  3. *twangy voice* shiiiiiittt, this stuff is all open source. You can do anything you want withh it. It just takes knowledge and energy. The hak5 teem made it easy for people like me who panic trying to set up SSH keys on more than one device. If you’ve got the know_how to create your own droplet server forwarded to your own server via vpn/ssh/forward-ported/tech-lingo then you can do it. Roll your own FW for the hak5 stuff; tweak it; break it; fix it ans break it again. That’s the beauty to this open sourced/hak5 stuff. Now if the complaint is that they don’t make it easy for you. Lacking the features to click a few buttons and bam, you’ve got a folder served to the web behind proxies and double encryption encapsulated tunnels.. Well, as my Pappy used to say, ‘Git good’.
  4. Forkish

    Messages

    I want to give you a better snwer but your previous post pollutes this post with ill intention. So the answer for you is: You can’t, the messages are gone for good.
  5. They’re probably smarter than you for using an old flip phone. This is one of those ‘If you have to ask, the answer is no.’ type questions. edit: Shit, they’re probably smarter rhan all of us for using a flip phone.
  6. If I were to trust any one in this thread, it would be this guy.
  7. I can understand the point of view. I don’t use most cloud services because I don’t want my stuff used for their own business purposes. Hak5 though touts itself as a purveyor of white hat products. With that in mind, in theory, none of the information is yours to begin with. It’s all your clients. leading to the fact that they will have signed paperwork explaining your (your pen testing business’) privacy policy and data retention policy which would (should) cover those issues. If I were to ever use these products on anything other than myself (wife still gets angry I break the wifi at least twice a week), I’d be happy as a clam keeping other peoples stuff on the cloud to make my job easier. I believe that’s the angle anyways.
  8. I’m not affiliated in anyway to this guy but I wish he was someone I hung out with; I’msure it would make me a smarter person. I love this guy’s apps. They’re informative, useful and to the point. He’s one of three app developers where I’ve sent extra money to support his work. His Electronic Toolbox Pro and RF-Toolbox Pro are way over my head. His Network Toolbox app is something I keep on my static iphone dock. Man is It’s useful. Check out his stuff I think most of the serious people on this forum would appriciate his work. https://itunes.apple.com/us/developer/marcus-roskosch/id334053438 https://roskosch.de
  9. I sort of like these terrible questions because the answers are often ‘old person sits young person down on milk crate across from them and explains it how it is’. Yes, I know they won’t listen now but those words will stick and make sense later. Cudos old peoples of the forum.
  10. Back in my Counter Strike days, Beside client-side walling, I would put a nice small dot, center screen with a dry erase marker. Bam, scopeless headshots.
  11. Have you had a storm of e-mails lately? maybe try contact@noaa.gov As for the python bit. No idea. hd
  12. What about a pineapple yagi cactus?? ~/s
  13. Yeah, No. I’d like to piddle with it. Keep it simple stupid is where I should stay. I assume without searching that the official duck fm is over on the official site.
  14. I’ve had a rubber ducky for a few years but never did anything with it. I’d like to give it another go but I see things like twinduck and the like. What’s the usually suggested first few actions to do? Is twinduck a seperate firmware from the stock firmware?
  15. @_0nity/ Look at you Pikachu. I like your direction. Side note: How do you mention someones user name like you did? Which tools would you suggest? kismet?
  16. For those with a synology device. Just saw this on news.ycombinator this morning: https://www.synology.com/en-global/security/advisory/Synology_SA_18_64
  17. Amazon has 400GB sd cards for $88. I want to get one, that way I can hold all my recons & logs FOR-EV-VER!!
  18. If I want raid, am I limited by my motherboard as to whether it’s supported or not?
  19. Note to self: Avoid QNAP. I posted this question as I’m building a PC and need/want to consolidate my external drives. I’m trying to figure out the best NAS/DAS for my needs. I do a lot of photography and was thinking something with ZFS like unraid. I also have an old comercial dell tower with windows 7. Maybe set that up as a server with ubuntu or Freenas?
  20. They also make ittle 1db & 2db nubby antennas and tweak the two signal stats to keep it close and strong. That way you could walk down a halway and be effective ~20ft/6m on either side of you. You could widdle down the extra variables by using directional antennas and keep t level so it just side sweeps.
  21. What’s your preferred NAS or DAS setup?
  22. This is the device in question: https://www.gl-inet.com/products/gl-mt300a/ I’ve also got these: https://www.gl-inet.com/ar300m/ https://www.gl-inet.com/products/gl-mt300n/ fun little routers, but right off the bat, lack of https login has me paranoid
  23. I have the black, blue and yellow-v1 routers my gl.init and with their stock fw, there is data sent in plain text after connecting to a nordvpn server through it’s supplied openvpn module. I’ll pull the logs/pcaps off and post ‘em. I havn’t put a router (in my case, probably a stock wrt1900 or ddr-wrt wrt120) in-between the glinit router and the pineapple to see how far the ttl is but it’s slightly worrisome; which is one notch above my mean worry par. I never use them to check banking or the like but only for a chromebook in guest mode. My plan is to learn luci/openwrt better and re-flash the firmware to barebones openwrt and use the openwrt openvpn module and test that but it’s ‘spare time’ stuff.
  24. I have one of those and if you use tcpdump on the pineapple connected. The built in openvpn module repeatedly sends the server and ip address in clear text. I’ve stopped using it until I figure out why and how to block that being sent.
×
×
  • Create New...