Razzlerock Posted November 19, 2012 Share Posted November 19, 2012 Hey all, I posted about creating VPN tunnels a while back, see post below. http://forums.hak5.org/index.php?/topic/27765-suggestion-vpn-tunnel-module/page__hl__tunnel Note: If there is something out there similar to this and working, do not read ahead. However, I couldn't find something that was working properly. My initial post didn't seem to raise much interest, which really surprised me. The pineapple, as it stands, can attempt to attack/exploit clients using modules that are installed on the pineapple. This is great, and big thanks for all those who have developed these modules. The only issue I see is that attacks are limited to what the pineapple can support. Now, I know there are like 1000s of OPKG packages, BUT some stuff like Metasploit is simply irreplaceable in my opinion. Enter the VPN. The VPN is simply an extension of the pineapple network to your home PC. I configured a VPN between the pineapple (after some messing around) and my BT5 PC at home. Now, the pineapple has a routed VPN tunnel and my BT5 has fully IP reachability to all the wireless pwned clients. Any and all tools supported by BT5 can now be launched :) I successfully tested this just and was able to pwn a client PC via the VPN using Metasploit (pineapple was connected via 3g). I am not saying this is a replacement for modules, but I really do believe this is a game changer for the pineapple - the ability to lauch full on attacks remotely from a BT5 machine. Maybe, this calls for a 'mad props' from the main man Darren Kitchen (and Seb) ?? Razzlerock Quote Link to comment Share on other sites More sharing options...
telot Posted November 20, 2012 Share Posted November 20, 2012 This looks great Razzlerock! Mind posting a quick how-to on it? That way others can experiment and enjoy and perhaps add something to your project. I'm excited to try this out myself! Thanks telot Quote Link to comment Share on other sites More sharing options...
condor Posted November 20, 2012 Share Posted November 20, 2012 Ok, I'll call myself a hacker simply 'cause I do not have any better word to explain how my mind works. But I am NOT able to figure everything out on my own. I'm incredibly self taught. That being said; can you please elaborate? I try to do everything that people say can be done with this thing. This really helps me in my quest for knowledge but also creates alot of confusion for me. I won't bug you if I can't get it @ first. I almost always assume that I am not yet advanced enough and thus wait til I am. But let me try it? I learn some things quite quick. I have been using autossh since the mkiv came out back in march. And I have learned more about linux since then than I have in the past 10 years of computing. This vpn action would be like icing on a cake? I don't like icing, so.... ..more like .... ...this vpn action would be the extra bandwidth on my internet connection. Quote Link to comment Share on other sites More sharing options...
Razzlerock Posted November 20, 2012 Author Share Posted November 20, 2012 Hey guys, sure thing - happy to share the love :-) I will write up a how-to shortly, watch this space! Razzlerock Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted November 20, 2012 Share Posted November 20, 2012 How about a module? ;) Quote Link to comment Share on other sites More sharing options...
saeed662 Posted November 21, 2012 Share Posted November 21, 2012 (edited) awesome, i have setup a linux cloud vps with digitalocean.com and have the pineapple reverse ssh connect to the vps, ontop of that i have a hostname from dyndns.org point to the vps ip address so incase the ip ever changes i would only need to change it on dyndns and not reconfigure pineapple with a new ip address. Edited November 21, 2012 by saeed662 Quote Link to comment Share on other sites More sharing options...
saeed662 Posted November 25, 2012 Share Posted November 25, 2012 (edited) I couldnt wait any longer n decided to try this out my self, i managed to a VPN connection between pineapple and my remote backtrack VM using openVPN. I setup and configured openvpn server on my backtrack machine and the openvpn client on the pineapple and managed to get the two to work n connect. now im thinking if this next step is even possible, but what i want to try and do is have reaver run (which is on the backtrack vpn server) and use the remote pineapple (which will have the alpha card attached to it) try n attack the wps enabled AP. im guessing i would need to bridge mon0 from pineapple to tun/tap ? any experts pls if u could comment on this... Edited November 25, 2012 by saeed662 Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted November 26, 2012 Share Posted November 26, 2012 I was serious when I suggested making a module. This would be a good addition to the pineapple bar. It would allow easily setting up something that can server many purposes. Quote Link to comment Share on other sites More sharing options...
Razzlerock Posted November 26, 2012 Author Share Posted November 26, 2012 Hey guys. Good work saeed662 :-) Seb, I DO plan on doing a module for the VPN. I tried to create an account last week (on the WiFi Wiki) to submit modules, but I don't think it has been approved/created? Razzlerock Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted November 26, 2012 Share Posted November 26, 2012 Hey guys. Good work saeed662 :-) Seb, I DO plan on doing a module for the VPN. I tried to create an account last week (on the WiFi Wiki) to submit modules, but I don't think it has been approved/created? Razzlerock Could you register again and send me a PM with your chosen username? Quote Link to comment Share on other sites More sharing options...
Dr. Q Posted December 5, 2012 Share Posted December 5, 2012 Anyway to set this up to vpn back through tor or i2p? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.