Jump to content

MAC Jaeger

Active Members
  • Content Count

    22
  • Joined

  • Last visited

About MAC Jaeger

  • Rank
    Hak5 Fan

Profile Information

  • Gender
    Male
  • Location
    Dallas-Ft Worth, Texas - US
  • Interests
    Law-abiding interests only... Nothing to see here.

Recent Profile Visitors

181 profile views
  1. On the Hak5 web page that shows API authentication, it gives an example of : { "system": "notifications", "action": "addNotification", "message": "Hello World!", "apiToken": "7365626b696e6e652063616e7420636f6465202724ef6b5d7ac0b800cc83d474e8e007" } What other options are there for system and action? I'm authenticating OK with a status of 200. I'm trying to access a GUI module that I wrote so I was wondering if there were other options here that I might need to load that module page? Also is "System" the same as "module" and I assume "action" is the same as action in the module.js scripts? I'm trying to write a php script using cURL to open the module page I created. Any help would be greatly appreciated. Thanks.
  2. Yes, I've had this same problem with vs 5.x and 6.x. How did you resolve? My fix was to not add SSIDs to pool. What did you do?
  3. Is anyone else having problems with the PineAP SSID Pool? I tried to manually add an AP and it either gave me an error: "Must be between 1 and 32 characters" (or something similar), or it said added successfully but the SSID Pool list stayed blank. Then the unit rebooted. Turned on Add SSID to Pool option and that triggered a series of successive reboots. Has anyone else seen this with the recent patch? I configured everything else and the reboot only triggered with this issue. This regards upgrading from 2.6.x to version 2.7.0 on the Pineapple Tetra. Any suggestions?
  4. In the Tetra, there are two radios, with two antennae per radio. Do they both transmit/receive, or does one transmit and the other receive per radio? Also are the pairs front (left/right), back (left/right) or left (front/back) and right (front/back)? I was wondering, if I put directional antennas on one radio, do they have to point in the same direction to both TX and RX the same areas?
  5. I want to collect data from a street that does a 90 deg turn. I want to place the pineapple tetra at the corner and direct an antenna down each street, but I don't want to collect data from the houses off the street. So, I was thinking of replacing the omni antenna with panel antennas so I can get a long range but narrow width signal in two directions. Can I focus one panel down one street, and the other panel aimed at the other street? Or do both panels need to aim in the same direction? From this forum, I've learned that the antennas on the right side of the Tetra are the ones used to transmit and receive traffic for capture, and the left side is for management. Why are there two antennas per side? How are they used? On the right side, are the antennas used differently like one transmit, and the other receive? Or do they both do the same but two are used for better coverage? I think a little more info about how each antenna works would be helpful. I'm looking for more details than just right side client traffic, left side management. I want to know what each antenna does. Also through linux commands, can I decrease the transmit power? Thanks for your help.
  6. I've noticed a few corrupt SSID names sneaking into my PineAP SSID Pool causing my SSID Pool to not load in the web GUI PineAP page, and in the Logs page the PineAP log is blank. Once I remove the bad characters the SSID pool reloads. Looks like it's finding a weirdly named SSID name and incorrectly displaying the ASCII symbols. Actually it dumps a lot of ASCII characters in the name. This causes the list to fail. Has anyone else run across this? This happened in vs 5.x and 6.x of firmware. Anyone have a validation script? Forgot to mention, I have a Tetra running latest 6.x firmware running only PineAP. No other modules installed.
  7. Does the Pineapple heavily tax a phone's WiFi beyond normal activity thereby shortening battery life or performing something like a DoS for that device by having it associate with a lot of dead end access points? In other words, do temporary associations with fake SSIDs cause the WiFi to look harder for known networks than it normally would? Would it be excessive enough to noticeably deplete the battery of the associating device faster? Would it make the phone give up and not associate with a SSID normally in range that it would have associated with had the Pineapple not been there, creating some sort of "soft" DoS? I'm wanting to place the pineapple in an insulated box outside and let it run continuously. Just PineAP, no other modules. Just trying to get MAC addresses from devices associating with the Pineapple. I wanted to make sure I wasn't going to drain batteries or block WiFi service unintentionally. Since this will be the first time its outdoors, the range will be much greater than in my test lab since it isn't transmitting through walls. Just wanted to make sure I wasn't going to unleash Hades in the HOA and sacrifice innocent devices in the name of science. Also, does anyone know how it sorts the known network list choosing which SSIDs get requested first or is there even any logic to the search?
  8. Initially, I had the same problem on my Mac. It was an issue with my USB connection config on the Mac end. Had to delete the USB connector on the Mac, hook up the pineapple and let the mac see it and configure it automatically as a new connection. Using the default USB connector that existed in the Mac OSX config didn't work correctly with the pineapple. Once reconfigured, you should not have a problem again.
  9. I also had a problem with PineAP's captured SSID pool becoming corrupt and not adding new SSIDs even after purging the list and starting over. I downgraded to 2.5.4 and haven't been able to recreate the problem. UPDATE Jan 2, 2020 Nevermind. Found that the SSID pool in 2.5.4 also became corrupt with bad SSID names. The log also suffers. When a SSID name creates bad characters, both the Logs and SSID Pool fail to load. However you can download to see the garbage that got mixed in. Think it craps out on commas and such. Guessing some SSID devices are more lenient on naming conventions than others. Wish Hak5 could create a sanitation filter to prevent those problematic AP names from corrupting the system logs and SSID pool. I also found that 2.5.4 sometimes slowed to a crawl forcing a non-gentle reboot to get it to respond. Wondering if that could be related to the corruption or just because I leave PineAP running 24/7
  10. I too had some issues related to PineAP that required downgrading to vs 2.5.4. I found this method to be the easiest method, especially if the Pineapple's default IP address is not available on your network. https://docs.hak5.org/hc/en-us/articles/360025819673-Manual-Firmware-Installation When I first bought my pineapple, I updated it to the newest (2.6.x) and had all sorts of issues and it locking up, and corrupted data being written to PineAP's captured SSID list. Downgrading to 2.5.4 solved those problems. A few months later, after all the modules were updated, I tried to update the system again. Had issues so I'm staying at 2.5.4 for at least the next 6 months.
  11. I'm also having the same issue. I would also like to have the Pineapple use the DHCP provided DNS server too. That would help with portability and connecting it to new networks.
  12. Why not attach a magnet to it and place it UNDER the table with the antennas laying parallel to the box. Starbucks has metal tables so it would attach nicely underneath and with the antennas flat against the table, it's low profile. Or better yet, since it's connected to your notebook, put a big sticker on it that reads "WIFI Hotspot Booster". Heck, you might even get people WANTING to connect to it.
  13. OK, I've made some progress. In my previous post, I forgot to mention that I was running the latest version of the firmware (2.6.1). Once I did a firmware recovery and went back to vs 2.4.1 things started working. I was able to send emails, but it still squawks about not having an SD card. I'm still having trouble getting reports to generate in /root. They do come to me by email though. But when I check the save copy in /root option, and SSH into root, the reports aren't there. Is there another root directory it could be storing these? Can it both send by mail and store or one or the other? Or is it either or? What am I missing here? Also, I'm noticing that it can't find my mail server by name, only IP address. If it's hooked up to eth0 WAN via RJ45 and getting a DHCP address, wouldn't it also pull the DNS info too and use my nameserver? Or, do I just need to enter it in the /etc/hosts file? Thanks for your help.
  14. Is this a site you host in-house or on a hosting service somewhere? If it's in-house, I'd upgrade to a better firewall that handles this sort of thing and other types of attacks. There are many out there at various price points that handle intrusion protection. If its a hosting service, then the DOS should be affecting more than your site if those server resources are shared. I'd either get them involved to find out where the DDoS is coming from and block it, or find another hosting provider. To answer your question specifically, I'd go with an all-in-one firewall appliance that physically sits between you and your network.
  15. I recently bought a WiFi Pineapple Tetra and started playing with it. I'm having a few issues that I need a bit of guidance in. I set it up. It scans, it's also connected to my LAN via ethernet. It receives the news bulletins and I can ssh into it so I know it's connected. I can update patches and it pulls data from wifi scans, load modules and dependencies. However... The reporting log shows multiple repeats of these two errors: 2019-09-10-19:00: Failed to save to SD card - no SD card found 2019-09-10-19:19: Failed to send email to email@address.com (this isn't the real address) The second error is result of my trying to send a test email to my mail server on same subnet as eth interface. Default route set and DNS reloaded. 1. Keeps claiming it can't write to SD card. Is there an SD card? There's no access to it in the web interface and it's not mounted in /mnt and there doesn't appear to be a dev/sd* device either. FAQs don't show an SD card installed or even optional so I'm a bit confused. 2. May be related to 1 but I can't generate any reports. There are no reports in /root which it claims is the default directory it writes to. 3. Can't email reports. When I configure test, it doesn't seem to work. Can't find log of email in syslog or mail.log and can't find the MTA logs on Tetra. Also neither my firewall or MTA can see the email being received or rejected in their logs. Which interface does it use for mail output? Default route? I have the default route setup on my internal network via ethernet. I can get updates and news from Hak5 on Dashboard and I can SSH into the box so I know I'm connected. Am I just generating reports wrong and that prevents the email from being sent, even with test, or is it trying to write to SD card, or something else? I've tried the email server config with mailserver name and IP using ports 25 and 587. Any push in the right direction would be appreciated. Thanks!
×
×
  • Create New...