skimpniff Posted June 26, 2012 Share Posted June 26, 2012 (edited) Pineapple Hardware Version: Mark IV Pineapple Software Version (ex: Shmoocon Beta, 1.0, etc.):2.3.1 OS used to connect to the pineapple:Backtrack 5 R2 Network layout of how your setup is connected (including IP information):default ICS via ethernet All the tools/options that are running on the pineapple when the issue happened: DNSspoof Is the problem repeatable (Yes/No):Yes Anything else that was attempted to 'fix' the problem: Greetings, I have searched message boards galore and not found a satisfactory answer yet. I am trying to resolve the DNSspoof "loop" issue faced when using it to connect to SET. I am specifically trying to resolve this using the Wifi Pinapple Mk4. Obviously if the *example.com command is used, the redirection from SET to the legitimate page will be captured in the DNSspoof parameters thereby catching the victim in a loop and reducing the "ninja" factor of the attack. Do you have a suggestion or perhaps know of a discussion that already exists that addresses this issue successfully? I have tried using the IP address in lieu of example.com (in the DNSspoof parameters), but that does not seem to work. I have also thought about replacing the redirect address for SET to the IP vs the URL, but have not had the opportunity to try it yet. Is this idea something that would need to be attempted from a template, or is it possible to modify the cloned site created when using the "clone site" option in SET. The setups I have used so far are: Initiate standard SET setup for credential harvester in BT5R2, using site cloner. IP = 192.168.1.8:80 The following DNSspoof commands in Pineapple: 192.168.1.8 *example.com (credential harvest success, redirect failure) 192.168.1.8 IP Address for example.com (failure to connect to SET) EDIT: I realize now this wouldn't work because nobody types in the IP to navigate anywhere. (Duh). Edited June 29, 2012 by skimpniff Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.