Jump to content

Aaron Outhier

Active Members
  • Content Count

    73
  • Joined

  • Last visited

  • Days Won

    3

About Aaron Outhier

  • Rank
    Hak5 Fan ++

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. I even went so far as to modify the script that runs when I push the button underneath my Nano, to shutdown the device instead of rebooting it. The button is much more useful to me that way.
  2. Yes. Your mileage may vary, but I have had less issues with my pineapple when I do it that way. You can also type “poweroff” from an ssh or serial prompt, or from a C2 remote shell.
  3. Update: It’s not scan_ssid. I was remembering incorrectly. The term is ap_scan. Thus, it should be: ap_scan 1
  4. Personally, I have had similar issues if the Pineapple wasn’t shutdown properly before disconnecting the power. The file system on the device and/or on the MicroSD card gets corrupted otherwise.
  5. Great work-around, but not very practical if I ever need to do an actual pen test where I need to leave the pineapple at a site for a few days on end, and need to issue a remote reboot command via C2. I have yet to do my first pen test, so time will tell if this will be an issue.
  6. Ahh. I see. I posted the fix that worked for me. Perhaps an explanation is in order. The “-d sd” at the end instructs opkg to install the library to my SD card. If you didn’t install the nmap assets to the SD card, then this isn’t going to work for you. Simply omit the -d sd part if nmap assets are stored on internal storage.
  7. Somehow, my Wlan1 and Wlan2 devices are being somehow switched! When I plug in a NetGear USB Wifi device using the rtl8192cu chipset, everything works great for a while. After that my Nano starts to be unable to put wlan1 into monitor mode. When I check, Wlan 1 has the MAC address of my NetGear device, while Wlan2 has a MAC address of 00:C0:CA:91:XX:XX. I'm no expert on this, but something seems a bit off here... Also, when I unplug my USB WiFi adapter, Wlan1 disappears. @Darren Kitchen: What on earth is going on?? After a factory reset, it goes back to normal for a few days. I have not figured out yet what triggers the reversal of the network IFs as of yet. br-lan Link encap:Ethernet HWaddr 00:C0:CA:91:36:B7 inet addr:172.16.42.1 Bcast:172.16.42.255 Mask:255.255.255.0 inet6 addr: fe80::2c0:caff:fe91:36b7/64 Scope:Link inet6 addr: fde3:7467:10a7::1/60 Scope:Global UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:861 errors:0 dropped:0 overruns:0 frame:0 TX packets:768 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:186885 (182.5 KiB) TX bytes:598534 (584.5 KiB) eth0 Link encap:Ethernet HWaddr 00:C0:CA:91:36:B7 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:861 errors:0 dropped:0 overruns:0 frame:0 TX packets:768 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:198939 (194.2 KiB) TX bytes:598534 (584.5 KiB) Interrupt:4 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:65536 Metric:1 RX packets:220 errors:0 dropped:0 overruns:0 frame:0 TX packets:220 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:25802 (25.1 KiB) TX bytes:25802 (25.1 KiB) wlan0 Link encap:Ethernet HWaddr 00:C0:CA:91:07:1A inet6 addr: fe80::2c0:caff:fe91:71a/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:79 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 (0.0 B) TX bytes:14922 (14.5 KiB) wlan0-1 Link encap:Ethernet HWaddr 02:C0:CA:91:07:1A inet6 addr: fe80::c0:caff:fe91:71a/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:77 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 (0.0 B) TX bytes:14502 (14.1 KiB) wlan1 Link encap:Ethernet HWaddr 00:E0:4C:81:92:B2 UP BROADCAST MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 (0.0 B) TX bytes:0 (0.0 B) wlan2 Link encap:Ethernet HWaddr 02:C0:CA:91:1A:34 inet addr:XXX.XXX.XXX.XXX Bcast:XXX.XXX.XXX.255 Mask:255.255.255.0 inet6 addr: fe80::c0:caff:fe91:1a34/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:1143 errors:0 dropped:0 overruns:0 frame:0 TX packets:1106 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:701250 (684.8 KiB) TX bytes:251759 (245.8 KiB)
  8. Hello, Has anyone else noticed that the KeyCroc can’t connect to open or hidden networks? I was hoping to test my implants using my nearby Pineapple connected to my own Internet uplink, so that I don’t have to know the targets WiFi key - I could setup my own WiFi and sit in an unmarked vehicle, etc. Unfortunately, in my testing, this doesn’t work. WiFi Pineapples don’t currently support configuring encryption, and it would seem that KeyCrocs don’t support connecting to unencrypted networks. I checked the documentation for wpa_supplicant.conf (amount others), and discovered that when trying to connect to an open network, there needs to be a line that says key_mgmt NONE In addition, in order to connect to a hidden network, the line scan_ssid 1 Needs to be present. I have contacted support twice now, but have received no response. Not sure if @Darren Kitchen and crew are just busy, ignoring me, or if one of us isn’t getting the other’s emails. Hopefully, they’re just too busy working on Hak5 stuff and haven’t had a chance to get back to me yet. BTW, the issue appears to affect the ScreenCrab and SignalOwl also, but I was only able to test the fix on the KeyCroc.
  9. Ok, so let me elaborate a bit: The underlying Linux operating system fully supports what you want to do. The fine folks at Hak5 haven’t implemented this yet in their web configuration interface for the Pineapple. The short answer is: you could set that up, but it won’t be easy for a beginner. You would have to go to a command prompt (ie. Ssh terminal), and turn off the web server, and probably other things too. Then you would need to configure things by hand. No point and click here. In the future, the developers of the Pineapple plan to add support for setting-up password protected access points. For now, it isn’t officially supported, and you’ll be on your own for that. Also, regarding impersonating an existing router, you would have to either physically turn off the existing router, or somehow exploit & crash it. I’ve said it before elsewhere, and I’ll say it again here: if it’s not your network, and you don’t have permission to be messing with it, and you start messing with it, you’re liable to get a one-way trip to federal prison! Do yourself a big favor: set yourself up with a test network, and play around with that!
  10. Turtle Pics I have highlighted the two set of solder points on the top and bottom sides. I hope that helps. Unfortunately, I have zero soldering skills, so removing the top board to peek at what is underneath is not an option for me. Note, I purposely took the first photo at a sight angle, because otherwise, it was difficult to see where the daughter board started. Ie. It all looked like one flat board if I took the photo straight down from above.
  11. Unlike the Nano, the Tetras have built-in storage, but no SD slot. The Tetras just have a bunch of internal storage to make up for the lack of SD storage. They both have a USB port, so a flash drive could be used if needed.
  12. Please check my comments on the thread about adding the SD module to the original LAN Turtle. https://forums.hak5.org/topic/52468-adding-sd-slot-to-none-sd-model/
  13. For what it’s worth, I purchased a a LAN Turtle this past Saturday, and I expect it to arrive tomorrow. If you want, I can probably take a few photos. Hopefully the SD module doesn’t block/cover the view of the wiring. Here’s to hoping...
  14. @Whistle Master On a freshly restored Pineapple Nano and freshly erased (with a zero fill) and reformatted SD card, I installed the map module onto the SD card, and then pressed the button to install dependancies onto SD card. Upon launching from the Web UI, nothing seems to happen. From within an SSH terminal, I tried running nmap --help but was given an error about missing library libpcap.so.0.8 . I then issued opkg install libpcap -d sd Everything worked fine after that. Can anyone else confirm this issue and/or fix?
  15. @Darren Kitchen: How can I get my Owl to recognize my Nano over the built-in USB-Ethernet connection? I don't trust my WiFi here.
×
×
  • Create New...