austin.rose Posted July 26, 2012 Share Posted July 26, 2012 Morning all, I'm not particularly knowledgeable about how the wifi pineapple works, or how networking in general works for that matter. So I'm hoping this question makes sense. Is it possible to use the wifi pine apple to log like the username/password someone enters online? I'm imagining a scenario like this: - I set up my pineapple, and it's successfully middle-maning some computer near me. - That computer navigates to gmail.com or something, and logs in. I understand that it's easy to monitor the websites a connected computer visits, but I wonder if some sort of encryption prevents login info from being sent in the clear. If anyone's concerned, I assure I have no malicious intent. The goal is to learn what I can about network security and whatnot by playing around with my home network :) . Thanks! Quote Link to comment Share on other sites More sharing options...
Neworld Posted July 26, 2012 Share Posted July 26, 2012 use the dns spoofing tool... you can replace the facebook.com website with a html that looks identical then log the information from there. There are a few videos online on how to do this. Quote Link to comment Share on other sites More sharing options...
inTheDMZ Posted July 26, 2012 Share Posted July 26, 2012 (edited) SSL encryption is used by gmail to prevent users login information from passing in cleartext. You can use sslstrip to try and prevent the ssl encryption from taking place. if you are using the pineapple connected to a laptop/computer and ICS'ing you can use sslstrip on the computer and capture the login (possibly) if you wanted to use sslstrip on the pineapple you can search the forums, and will need to: -install a USB with swap space and storage space on the pineapple -install sslstrip (i would install to the usb stick) -run sslstrip and dump the logs to the usb stick I would research into ssl encryption to understand how you are performing this attack if i was you - its ok to know how to perform the attack but to learn how it works and understanding how sslstrip works is better for you. Edited July 26, 2012 by inTheDMZ Quote Link to comment Share on other sites More sharing options...
austin.rose Posted July 26, 2012 Author Share Posted July 26, 2012 Thanks for the info! Is this to say that if someone being monitored by the pineapple connects to a website via http, rather than https, then login information entered could be stripped easily? Quote Link to comment Share on other sites More sharing options...
unixmito Posted July 26, 2012 Share Posted July 26, 2012 In an additional note, certain websites will hash the password before sending by using javascript. I believe that at one point Yahoo used this method of protecting a cleart-text password appearing on the site. To circumvent this, I remember using ettercap to load a filter and remove references to the onsubmit="" javascript event handler. Quote Link to comment Share on other sites More sharing options...
Malachai Posted August 17, 2012 Share Posted August 17, 2012 SSL encryption is used by gmail to prevent users login information from passing in cleartext. You can use sslstrip to try and prevent the ssl encryption from taking place. if you are using the pineapple connected to a laptop/computer and ICS'ing you can use sslstrip on the computer and capture the login (possibly) if you wanted to use sslstrip on the pineapple you can search the forums, and will need to: -install a USB with swap space and storage space on the pineapple -install sslstrip (i would install to the usb stick) -run sslstrip and dump the logs to the usb stick I would research into ssl encryption to understand how you are performing this attack if i was you - its ok to know how to perform the attack but to learn how it works and understanding how sslstrip works is better for you. This is good steps on how to install sslstrip... I tried looking on the forum before posting or I'm searching for the wrong phrase but how do you create the swap on the usb, and install the sslstrip software on the usb? Sorry i'm new to the whole pineapple stuff. Starting to learn from scratch... Quote Link to comment Share on other sites More sharing options...
Whistle Master Posted August 17, 2012 Share Posted August 17, 2012 Don't forget the modules which will help you to install sslstrip for example ;) Quote Link to comment Share on other sites More sharing options...
dustbyter Posted August 17, 2012 Share Posted August 17, 2012 As the others have said above there are many ways to perform the password interception. However keep in mind that each method employed may have certain clues on the client machine that allows them to detect something MAY be going wrong. Concider the pros and cons from each before you actually perform a particular attack. Quote Link to comment Share on other sites More sharing options...
Malachai Posted August 17, 2012 Share Posted August 17, 2012 As the others have said above there are many ways to perform the password interception. However keep in mind that each method employed may have certain clues on the client machine that allows them to detect something MAY be going wrong. Concider the pros and cons from each before you actually perform a particular attack. Well that's a good idea, but I'm still trying to figure out where I could download those modules , and how to install them... Once I figure out where to read about them, and see which one I like then iw ill have to figure out how to install them and run them. Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted August 17, 2012 Share Posted August 17, 2012 Well that's a good idea, but I'm still trying to figure out where I could download those modules , and how to install them... Once I figure out where to read about them, and see which one I like then iw ill have to figure out how to install them and run them. I replied to your thread. You can find them in the pineappleUI under pineapple bar. Best Regards, Sebkinne Quote Link to comment Share on other sites More sharing options...
Malachai Posted August 17, 2012 Share Posted August 17, 2012 I replied to your thread. You can find them in the pineappleUI under pineapple bar. Best Regards, Sebkinne Thank you I will look once again, right now I'm just creating other VM on ubuntu .. Once that is done I will set it up and check. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.