Jump to content


Active Members
  • Content Count

  • Joined

  • Last visited

About StampeRnator

  • Rank
    Hak5 Fan
  • Birthday January 24

Profile Information

  • Gender
  • Location

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hi. I Upgraded to Firmware 3.0. My PS was not shown in cloud. Then I tried to downgrade to 2.0 with change of the VERSION File to 1.2 After the Upgrade no LED is lighting up. Pressing the Button 3-7 Secs don't works. The LED ist just flashing fast 2 times green. After this it happens nothing. Manual IP to an connection to not working after 1 minute of waiting.
  2. Same here. No payload and c2 connection working.
  3. @Sebkinne i would really appreciate that feature to Pivot with the PS. Maybe u have an suggestion for this. I looked into the Netmodes and i think that it could be configured there.
  4. Okay. Only with the following on the end of "/etc/config/firewall" works the connection to the Packetsquirrel Network: config forwarding 'vpn' option src 'tun0' option dest 'lan' config forwarding 'vpn' option src 'lan' option dest 'tun0' If the VPN payload is startet everything on the Machine on the Network in on the Squirrel is ok (Internet Connection) But in Arming Mode there is no Internet. DNS looks to work. But to HTTP or similar. Maybe somebody has an suggestion?
  5. If you don't know the IP Subnet of your target Network i have taken a small python script that i used on my RPi (yay the Squirrel likes Python) to EMail me the actual IP address of the device. If you know the IP you can change the routing settings on the server and after the reconnect of the OpenVPN Client you can access the network. If you want this i can put this to github. I put following file to the switch folder "payloads/switch3/mailip.py" (Just GMail works as sender): __author__ = 'Cody Giles' __license__ = "Creative Commons Attribution-ShareAlike 3.0 Unported License" __version__ = "1.0" __maintainer__ = "Cody Giles" __status__ = "Production" import subprocess import smtplib from email.mime.text import MIMEText import datetime def connect_type(word_list): """ This function takes a list of words, then, depeding which key word, returns the corresponding internet connection type as a string. ie) 'ethernet'. """ if 'wlan0' in word_list or 'wlan1' in word_list: con_type = 'wifi' elif 'eth0' in word_list: con_type = 'ethernet' else: con_type = 'current' return con_type # Change to your own account information # Account Information to = 'your@mail.com' # Email to send to. gmail_user = 'yourgmail@gmail.com' # Email to send from. (MUST BE GMAIL) gmail_password = 'mailpassword' # Gmail password. smtpserver = smtplib.SMTP('smtp.gmail.com', 587) # Server to use. smtpserver.ehlo() # Says 'hello' to the server smtpserver.starttls() # Start TLS encryption smtpserver.ehlo() smtpserver.login(gmail_user, gmail_password) # Log in to server today = datetime.date.today() # Get current time/date arg='ip route list' # Linux command to retrieve ip addresses. # Runs 'arg' in a 'hidden terminal'. p=subprocess.Popen(arg,shell=True,stdout=subprocess.PIPE) data = p.communicate() # Get data from 'p terminal'. # Split IP text block into three, and divide the two containing IPs into words. ip_lines = data[0].splitlines() split_line_a = ip_lines[0].split() # con_type variables for the message text. ex) 'ethernet', 'wifi', etc. ip_type_a = connect_type(split_line_a) """Because the text 'src' is always followed by an ip address, we can use the 'index' function to find 'src' and add one to get the index position of our ip. """ ipaddr_a = split_line_a[split_line_a.index('src')+1] # Creates a sentence for each ip address. my_ip_a = 'Your %s ip is %s' % (ip_type_a, ipaddr_a) # Creates the text, subject, 'from', and 'to' of the message. msg = MIMEText(my_ip_a) msg['Subject'] = 'IPs For RaspberryPi on %s' % today.strftime('%b %d %Y') msg['From'] = gmail_user msg['To'] = to # Sends the message smtpserver.sendmail(gmail_user, [to], msg.as_string()) # Closes the smtp server. smtpserver.quit() Don't forget to chmod +x to the mailip.py Then just add following to your payload: # Set iptables for access to entire network iptables -A POSTROUTING -t nat -j MASQUERADE python ${DIR}/mailip.py LED ATTACK And that's it. #doublemicdrop
  6. Now i write down my config for this maybe it can be optimized (i'm only an scriptkiddie :P) :D My VPN Network: My Target Network: First VPN Server Config: Like @Lux Æterna mentioned following config for the non GUI Version and roadwarrior script VPN Server "server.conf": client-config-dir ccd # The ccd only works for me, otherwise "/etc/openvpn/ccd" also works client-to-client push "route" # Your target IP Subnet route # Not sure if needed, i read this is only needed if you want to get access from the VPN Server to the target network push "route" # Your target IP Subnet route # Not sure if needed, i read this is only needed if you want to get access from the VPN Server to the target network push "route" # Your target IP Subnet route # Not sure if needed, i read this is only needed if you want to get access from the VPN Server to the target network management 5555 # optional if you want to use an VPN status page If you want to add some more IP Subnets you have to add the "push" and "route" line for every Subnet. Now the ccd magic. Create a folder "ccd" in /etc/openvpn and cd into it. So now you are in the directory "/etc/openvpn/ccd". When you are in there create a file that is called the same you created the client.ovpn with the roadwarrior script (default is client). Content of the file "/etc/openvpn/ccd/client": ifconfig-push # This always gaves the Squirrel the IP address I use the VPN IP Subnet, default is so in this case it is iroute # Your Target IP Subnet iroute # Your Second Target IP Subnet iroute # Your Third Target IP Subnet Now the Squirrel Config: First add this on the end of "/etc/config/firewall": broken atm...looking for this. Now my payload.sh: #!/bin/bash # OpenVPN payload # Set to 1 to allow clients to use the VPN FOR_CLIENTS=0 DNS_SERVER="" # Cheap hack to set the DNS server function setdns() { while true do [[ ! $(grep -q "$DNS_SERVER" /tmp/resolv.conf) ]] && { echo -e "search lan\nnameserver $DNS_SERVER" > /tmp/res$ } sleep 5 done } function start() { LED SETUP DIR=$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd) # Set NETMODE to BRIDGE and wait 3 seconds # to ensure that things can settle [[ "$FOR_CLIENTS" == "1" ]] && { /usr/bin/NETMODE VPN } || { /usr/bin/NETMODE BRIDGE } sleep 3 # Make OpenVPN use the local configuration uci set openvpn.vpn.config="${DIR}/config.ovpn" uci commit # Start the OpenVPN server in the background /etc/init.d/openvpn start # Start SSH Server /etc/init.d/sshd start & # Set DNS server setdns & # Set iptables for access to entire network (For me only this did the trick). If not for you maybe try to uncomment the optional iptables line iptables -A POSTROUTING -t nat -j MASQUERADE # OPTIONAL uncomment and change to your needs # iptables -t nat -A POSTROUTING -o eth1 -s -j MASQUERADE LED ATTACK } # Start the payload start & Optional VPN Status Page: For this you have added the "management 5555" to your "server.conf". The Script is located here: https://pastebin.com/U9SESPB0 If you have an Webserver on the VPN Server you can show the connected Clients and traffic of the VPN. Just put this into an "vpnstatus.php" on your webserver. If you use PHP 5.x this script is exactly right. If you use PHP 7 replace "split" with "explode". Much thanks to @Lux Æterna, @PoSHMagiC0de and the writer of the VPN status Page AND of course @Darren Kitchen for Developing this awesome Squirrel. Without you i couldn't get it to work. #micdrop
  7. Is this Feature planned for the future? Else i try it until it works :D
  8. For me its not working. In switch2 all the colours are blinking when plugged in. If i want to select (go to switch 1 when plugged in it still keeps blinking in every color). Firmware v1.4
  9. Addition Info: Always using the first VPN mode (FOR_CLIENTS=0). Adding iptables prerouting in payload or /etc/firewall.user dont work. Im still thinking the Server routing etc. is correct.
  10. I didnt need the VPN GUI i think my config is right (If I tracert from my second "pentester" VPN Client the hop goes to the VPN IP of the PS. BUT after that there is no response. I think it's an firewall Problem of the firewall on the PS.
  11. Hmmm...Trying it with the config like Darren mentioned in the LANTurtle Episode 1921. But on the squirrel the /etc/config/network are the settings not persistent. Would be there an solution?
  12. Now if i use the PacketSquirrel as VPN Client i can SSH into it from another Client in this VPN. But is it also possible to put the squirrel to an LAN an get access to the entire local network? Spent 1 hour for VPN Server/Client settings but it's still didn't get it to work.
  13. Is there still an solution? Why cant the USB Storage not be synced to catch new files with a while loop in the payload.txt? Also auto eject doesn't work.
  • Create New...