Jump to content

jtkrl

Active Members
  • Content Count

    8
  • Joined

  • Last visited

About jtkrl

  • Rank
    Hackling

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. How come DNSMasq Spoof doesn't always work? I have restarted the module and reentered the IP and URLs, but when I type that specific URL in the Victim-PC, I still don't get a redirect. So now I'm cheating by modifying the host file on the victim PC. How do I fix this?
  2. I already have an EvilPortal (fake starbucks wifi). I'm using DNSMasq Spoof to serve a fake banking website (to show impact) and I want to capture credentials entered there. Is there a way without using burpsuite? Btw, I already resolved this issue by using credential harvester from setoolkit. Now I'm facing another issue where DNSMasq Spoof doesn't want to cooperate when I set up my lab again today. I swear it was working last night. >_>
  3. Question, Let's say I have a the following config in dnsmasq spoof... 172.16.42.42 facebook.com (Site cloned using httrack, served via Simple HTTP Server) anyway, once the victim enters their email & password, how will I be able to capture/show the creds entered? I tried DWall and SSLSplit, no luck. I'd appreciate if someone could provide insight. Thanks!
  4. Hi guys, Anyone know how I can get shell access in using any modern browsers (Chrome, IE, Firefox, etc. so that the browser doesn't bitch at me and say I need to upgrade to latest browser version) by browsing to a URL? I tried putting a malicious iframe on my evil portal and using these exploits: auxiliary/server/browser_autopwn, auxiliary/server/browser_autopwn2. I even tried downgrading to IE 8 then using the exploit: exploit/windows/browser/ms10_002_aurora. But so far I got nothing. :( No meterpreter sessions. This is for a presentation, by the way. Any of you gu
  5. I'm new to WiFi Pineapple I set up an Evil Portal however when clients connect to my WiFi Pineapple and browses a page (e.g. google.com), it takes them directly to that web page and not the evil portal without them being on the authorized clients list. How do I fix this?
×
×
  • Create New...