Jump to content

Idk_Man

Active Members
  • Content Count

    39
  • Joined

About Idk_Man

  • Rank
    Hak5 Fan +

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. On it. Thank you for the guidance @digininja
  2. Host OS: Windows 10 Pineapple Nano v. 2.7.0 VirtualBox v. 6.1.6 Kali Linux v. 2020.2 **Forward: I've been doing all this on my own private router, WiFi signal, computer, etc. Nothing illegal. Just trying to learn a new skill.** So I've been able to successfully capture a 4-way handshake (Both .CAP and.PCAP) using either the Pineapple Nano or Kali Linux> Successfully cracked the password of the WiFi AP using www.GPUHASH.me> And I can log into the "client" AP. I just don't know where to go from here and feel pretty dumb. How do I actually exploit the target from here? Over the last week I've been trying to learn Metasploit in Kali, thinking that this was the next logical step in the attack process. (I've also tried Armitage, but it seems like it's outdated and doesn't support Windows 10?) I understand the workflow of Metasploit: 1. Recon the target with various nmap scans: nmap -v -T4 -PA -sV --version-all --osscan-guess -A -sS -Pn 1-65535 <Target IP address> 2. Note the open port numbers/software & version numbers, etc. 3. (THIS IS WHERE I GET LOST) Search Exploit-Database.com for vulnerabilities on the open ports or services being run (See attached picture) 4. Load the Exploit> Set options> Run. I keep getting confused as to how to actually find known vulnerabilities given the data from the nmap scans. Has anyone else been in my position or am I just failing to understand something simple here? Thank you very much for any feedback guys!
  3. Thanks for the reply Cap_Sig. That was helpful. Gave me a little bit more insight. Anyone else in the future coming across this post, look at learning Metasploit - Kali Linux.
  4. Just curious... Everyone seems to want to crack a clients WiFi password, but to what end? What can be done once you find an access-points WiFi password? I understand that you can use the client WiFi to surf the web anonymously, but what else can be done??
  5. It's a fairly easy process to flash the Nano's firmware. Only takes bout 10 minuets. https://docs.hak5.org/hc/en-us/articles/360010471774-Firmware-Recovery
  6. Have you already tried changing out your SD card for a different one? If that doesn't help, have you tried doing a reset of your Nano? Wait until your Nano's LED is solid blue> press and hold the reset button on the bottom for 7 seconds> let go> wait about 1-2 min for your Nano to reset. If that doesn't work, perhaps look into trying to revert your firmware back to 2.6.2 - the SD card functionality seemed to be stable in that release. https://www.wifipineapple.com/downloads
  7. OS: Win 10 Nano v. 2.7.0 I have a list of saved SSID's from previous recon scans in the area that I downloaded locally. Had to do a reset of the Nano (No SSID pool anymore) Now I'm trying to load the saved SSID list back into the Nano's SSID pool and having issues doing so. What I've tried: - Using the "Cabinets" module I went into /etc/pineapple/ssid_file and pasted in my saved SSID list and pressed save. Nothing populated in the Nano's SSID pool. - Tried using the "SSID Manager" module, but no buttons are clickable besides "Clear Editor".
  8. When on your client device (your phone) which Nano access point are you trying to connect to? Under the "Access Point" section in the Network page, there's two access points that you created when you did the initial setup for the Nano. One is under "Management SSID" and the other is "Open SSID". Make sure your client device (phone) is trying to connect to the "Open SSID" one. Furthermore, looking at the pic you provided, it looks like your Nano doesn't have internet access. To see if I'm right or not, go to the "Dashboard" page and click on "Load Bulletins" button. Do you get an error message or do you see a bunch of text load? Essentially, if your Nano doesn't have internet access, neither will the access points you're client device is trying to connect too.
  9. Can you post a screenshot of your Pineapples "Networking" tab? Omit any personal data.
  10. If anyone's looking for a step-by-step guide on how to install and get the EvilPortal working, here you go 🙂 How To Install EvilPortal.txt How to Delete Traces of EvilPortal to Re-Install.txt
  11. Looking at your "WiFi Client Mode" section, I'm guessing that you don't have an external WiFi adapter plugged into your NANO? Here is a 100% compatible (and pretty affordable - $5 + shipping) choice. The WiFi adapter lets you connect your NANO to your local WiFi signal. https://shop.hak5.org/products/ralink-usb-wifi-rt5370
  12. @Madan Bimali Can you take a screenshot of your NANO's website portal (Networking tab)
  13. @Foxtrot I ran into this issue as well with v 2.7.0 What caused it for me was shutting down the NANO via the web portal icon (Log off, Reboot, Shutdown) When I went to power the NANO back up later, the SD card was empty/unmounted.
  14. Hey guys, Dumb question. Are you both using the USB WiFi dongle in conjunction with the NANO? https://shop.hak5.org/products/ralink-usb-wifi-rt5370
  15. @Syntheic02 (Referring to the above screenshot you posted) Look where it says "WiFi Client Mode". Perform a scan and look for the WiFi signal that you normally use everyday. Connect to it and enter in it's password. From there, you should be good to ssh into your NANO 🙂 Additionally, if you're having issues with Putty and you're running Windows 10, you can go to the Windows store and download the "Ubuntu" app (free). Short version, it allows you to use your Windows 10 CMD line with the same commands as a Linux machine - ssh capabilities. Lastly @Syntheic02 do you have a USB WiFi dongle plugged into your NANO? https://shop.hak5.org/products/ralink-usb-wifi-rt5370
×
×
  • Create New...