Thecolorchanges
-
Posts
39 -
Joined
-
Last visited
Posts posted by Thecolorchanges
-
-
-
Would be cool if they offered the larger one, was able to find this for $14:
https://hakshop.com/collections/quoteable/products/hak5-small-organizer
-
https://hakshop.com/products/hackrf
*1 MHz to 6 GHz*
-
Not exactly a live map, but I setup Kibana+Logstash+ElasticSearch for a pfsense box for a client. Has a country heat map, adjusting the filters to match on the .pcap should be trivial.
(Not my website, just googled and found this pretty close match to what I did.) -
Check out: https://hakshop.com/pages/policy#post
It takes 1-3 days from order (assuming you ordered on the weekend) then add in your shipping time (3 day/overnight/etc).
-
As for the Hardware, I have the Nano and the Tetra. Nano is great to throw in my bag and move about stealthy. Tetra I usually do dev and use at work w/ desktop.
For what your trying to do with it, I can’t really help ya there. There are community modules such as dnsmasq and some iptables trickery you could do. I suggest reading through the wiki and the forums a bit, there’s a ton of great info and users here.
Cheers!
-
WifiPineapple would fit the bill nicely for this project.
-
Grabbed a 2.5" screen off adafruit pretty cheaply, used this to get menus working. Touch and pwn
-
Almost impossible to find now, a few years ago maybe.. easier to just https://hakshop.com/collections/usb-rubber-ducky/products/usb-rubber-ducky-deluxe
-
On the turtle, can you ssh to the host without typing in a password?
On the host that the turtle is sshing into, "netstat -nap | more" look and see if port 8888 is open. -
On 6/14/2017 at 3:39 AM, Miko said:
Hi Sebkinne,
So what would you recommend to view/edit a .bin file ?
When I did a Google search, it recommended the above program wxhexedit.
So, what you're doing here with with wxhexedit is essentially peering into a zip file. The .bin file is flashable code containing a modified version of OpenWRT. Essentially when you use a hexedit, you're seeing padding/etc. .bin's can be extracted.. it's alot of work but can be done if you nose around. Seb has said there are a few minor issues, I've had my nano for quite a while and while it does have a few minor, minor quirks the code is pretty solid.
-
1
-
-
This technically can be done, but you need a very specific USB with Phison 2251-03 controller. A few years ago, you may have been able to find one.. almost impossible now. Buy the rubber ducky from HakShop, being able to hit a button and replay the payload is worth the $40 and time/frustration saved in buying a bunch of different USB sticks and trying.. probably cheaper too..
-
in either reaver or wash there is a command to change the wps attack type, there is about 12 or so options. I iterated through the attacks until I found one that worked against the old test router I was trying it on. Good luck dood!
-
11 hours ago, RickyHax20 said:
Never mind about it... I was connecting to the management AP at the time. When I mean "time after time" I meant that when I enter the password (that is the correct one) it tries to connect and asks me for the password again.
Are you running pineap with rebroadcast + allow (basically everything checked) this will happen, the pineapple treats your phone no different than the devices tested against, you'll have to whitelist/blacklist to avoid.
-
Reaver needs WPS on the router, do you have this enabled on your test ap?
http://tools.kali.org/wireless-attacks/reaver
^ good starting point, WPS attacks do work in the wild however firmware updates and vendor implementations have made this attack vector very rare.
-
Yep! It just hides the window :)
-
This is awesome! excellent work!
-
On OSX: disable all active network connections (onboard LAN/Wifi) and then plug in a Cat5 cable from your router/switch to the lanturtle. Plug lan turtle into mac, open a terminal and type: ifconfig
you should have an ip address of 172.16.84.x from there just ssh root@172.16.84.1
From there you should be set! -
Wiki is the best source. Check https://github.com/hak5/lanturtle-wiki/tree/gh-pages/modules
Click the individual modules and you can read about what they do/require.
-
@Mr. #
Do you happen to have Responder/QuickCreds enabled? If so, try disabling them/reboot the turtle and let us know the results. -
nano /etc/turtle/modules/autossh
somewhere around line 15-20 you should see your host, just tack on a -p and specify the port.
[Info] Tools
in Bash Bunny
Posted
Was wondering what the official method to update metasploit is? for now I've installed git to clone the repo, then gem install bundle, chown -R the new folder to 1004:1004 and rename it the metasploit-framework and delete the old one. Working well so far, and can run msfupdate. Any thoughts on this being a bad idea to get the latest version?