Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

Everything posted by Thecolorchanges

  1. Was wondering what the official method to update metasploit is? for now I've installed git to clone the repo, then gem install bundle, chown -R the new folder to 1004:1004 and rename it the metasploit-framework and delete the old one. Working well so far, and can run msfupdate. Any thoughts on this being a bad idea to get the latest version?
  2. Have you tried a factory reset and update to the latest version? For clients not connecting to PineAP make sure your filters are both set to “Deny”
  3. https://hakshop.com/collections/quoteable/products/elite-hak5-gear-organizer
  4. Would be cool if they offered the larger one, was able to find this for $14: https://hakshop.com/collections/quoteable/products/hak5-small-organizer
  5. https://hakshop.com/products/hackrf *1 MHz to 6 GHz*
  6. I pulled out one of my older turtles running v2 earlier after @Sebkinne corrected a server side issue and noticed I couldn’t pull the update to v3 either. Got a quick look at wget attempting to pull the .bin and failing due to SSL. Was able to scp the file up and update as wiki/ @mekvii detailed. Though I cannot repeat the moduleManager issue, pulled down 5-6 all at once. Working ok here ?
  7. Not exactly a live map, but I setup Kibana+Logstash+ElasticSearch for a pfsense box for a client. Has a country heat map, adjusting the filters to match on the .pcap should be trivial. (Not my website, just googled and found this pretty close match to what I did.) http://pfelk.3ilson.com/
  8. When SSH’d into the turtle can you ping/resolve say www.google.com? Just want to verify network connectivity.
  9. Pop usb thumdrive out of you have in. Plug usb (known good) into a pc USB for power. try various switches. Report back, we want to see flashing green.
  10. You’re also giving it power via microUSB correct?
  11. Check out the Hak5 video #1921 it's for the LanTurtle but the core concepts are the same. Note that the Packet Squirrel uses SSHTunnel, so you'll have to adjust a bit there.
  12. ssh in via computer it’s plugged into, check out: /usr/bin; /usr/sbin;/usr/local/bin;/usr/local/sbin got mine paired to the bashbunny via the new ecm_ethernet support. Lots of fun to be had!
  13. Check out: https://hakshop.com/pages/policy#post It takes 1-3 days from order (assuming you ordered on the weekend) then add in your shipping time (3 day/overnight/etc).
  14. started sifting through /usr/bin and decided to chmod +x meterpreter-https ./meterpreter-https awseome.vps.com 443 Sessions opens on vps. It doest quite work when I interact with it but there is some neat stuff in store ?
  15. As for the Hardware, I have the Nano and the Tetra. Nano is great to throw in my bag and move about stealthy. Tetra I usually do dev and use at work w/ desktop. For what your trying to do with it, I can’t really help ya there. There are community modules such as dnsmasq and some iptables trickery you could do. I suggest reading through the wiki and the forums a bit, there’s a ton of great info and users here. Cheers!
  16. Wow! Had no idea 3g shields were this pricey!
  17. WifiPineapple would fit the bill nicely for this project.
  18. I think the 3g LanTurtle boils down to this: Stealth. As a Sysadmin if I were to see one of these, I'd never give them a second glance. You hang an old Nexus 5X off one of my racks, well I'll pick that up immediately and know something is up. I've been on pentests where the network was so restricted that SSH and even https was restricted. This would have let me leave the site and still stay connected. Worth the $250 if I can go home and finish the job on my couch :)
  19. Someone correct me if I'm wrong but isn't the LanTurtle 3G GSM based, verizon is CDMA. I do not think you can use them as a carrier, Tmobile has prepaid though and they're GSM.
  20. Grabbed a 2.5" screen off adafruit pretty cheaply, used this to get menus working. Touch and pwn https://whitedome.com.au/re4son/sticky-fingers-kali-pi/
  21. Almost impossible to find now, a few years ago maybe.. easier to just https://hakshop.com/collections/usb-rubber-ducky/products/usb-rubber-ducky-deluxe
  22. On the turtle, can you ssh to the host without typing in a password? On the host that the turtle is sshing into, "netstat -nap | more" look and see if port 8888 is open.
  23. So, what you're doing here with with wxhexedit is essentially peering into a zip file. The .bin file is flashable code containing a modified version of OpenWRT. Essentially when you use a hexedit, you're seeing padding/etc. .bin's can be extracted.. it's alot of work but can be done if you nose around. Seb has said there are a few minor issues, I've had my nano for quite a while and while it does have a few minor, minor quirks the code is pretty solid.
  24. This technically can be done, but you need a very specific USB with Phison 2251-03 controller. A few years ago, you may have been able to find one.. almost impossible now. Buy the rubber ducky from HakShop, being able to hit a button and replay the payload is worth the $40 and time/frustration saved in buying a bunch of different USB sticks and trying.. probably cheaper too..
  • Create New...