--nick-- Posted September 19, 2012 Share Posted September 19, 2012 Hello i have been trying to make the dns spoofing and phishnet work on my my pineapple v2 mark3 firmware. The following link helped me the most http://cloud.wifipin...ednsspoofing . I did manage to redirect the traffic and spoof url sucessfull. However, the part i am stuck is that i still cannot manage to see any logs in /www/pineapple/phish.log so the fishnet in the mark 3 (mark iii) is not displaying anything to me. here is what i have done with no success in capturing logs in the phishnet: http://pastebin.com/bypN7MSh like i said i can redirect the dns and spoof the url fine but i just dont see logs in www/pineapple/phish.log. when i type a login and pass on the spoofed url and ip i see the error.php flash on the url bar for a quick second. can somebody please shed some light on this one? Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted September 19, 2012 Share Posted September 19, 2012 Well, from just having a quick look it seems everything works correctly on the redirection side and on the getting to the error.php site. What you need to know is that error.php looks for a $_POST[name]. Facebook doesn't send that, it sends a $_POST. You would have to modify the facebook.html file. What I would also like to point out is that the pineapple should not be used in an environment where you have not gotten permission from the clients. In other words, do not use it for illegal actions. Best Regards, Sebkinne Quote Link to comment Share on other sites More sharing options...
loozr Posted September 19, 2012 Share Posted September 19, 2012 Off topic and I guess I really shouldn't say anything since Seb didn't but I think it's enough to ask a question once, in one thread.. If you haven't been answered in a couple of days then you might bump your question, but please don't nag. Sorry for my butt in :P Quote Link to comment Share on other sites More sharing options...
--nick-- Posted September 19, 2012 Author Share Posted September 19, 2012 (edited) Well, from just having a quick look it seems everything works correctly on the redirection side and on the getting to the error.php site. What you need to know is that error.php looks for a $_POST[name]. Facebook doesn't send that, it sends a $_POST. You would have to modify the facebook.html file. What I would also like to point out is that the pineapple should not be used in an environment where you have not gotten permission from the clients. In other words, do not use it for illegal actions. That being said , facebook also sends as a post phone number too or something Best Regards, Sebkinne I agree ,do not use this for illegal purposes. I am way out in the country and I only use it against my own AP's. anyways this thread cleared me up and i was able to see the phishing logs. Edited September 19, 2012 by --nick-- Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.