deviney Posted January 24, 2013 Share Posted January 24, 2013 I am trying to use the hak5 fishing files and i have placed them in a folder on my USB and created symbolic links in the pineapples /www/. This is the script i am using (the one in the Hak5 download). <?php $ref = $_SERVER['HTTP_REFERER']; if (strpos($ref, "facebook")) header('Location: facebook.html'); if (strpos($ref, "twitter")) header('Location: twitter.html'); require('peets.html'); ?> the problem is when i type facebook.com the peets.html page shows insteal of the facebook.html page :( I have tried on a blackberry and windows 7 laptop (using IE and Firefox) with the same results. I am using a Pineapple mark IV and version 2.7. Can somebody explain were iv went wrong and a fix if possible. Thank you Quote Link to comment Share on other sites More sharing options...
khaotic57 Posted January 24, 2013 Share Posted January 24, 2013 Try using this on the second line instead of what is there. $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted January 24, 2013 Share Posted January 24, 2013 Yeah, if you look at the MK4 redirect.php file: <?php $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; if (strpos($ref, "example")){ header('Location: example.html'); } require('error.php'); ?> The REQUEST_URI is important. Quote Link to comment Share on other sites More sharing options...
deviney Posted January 24, 2013 Author Share Posted January 24, 2013 (edited) Hi i did what you asked used the code below as my redirect.php <?php $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; if (strpos($ref, "facebook")){ header('Location: facebook.html'); } require('peets.php'); ?> I then noticed that the 'require('peets.php');' was wrong for me and edited it to 'require('peets.html');' and am about to test. Ill be back shortly to tell you the results. EDIT: THIS WORKED PERFECTLY! On a side note, is it possible to check the address that the user is going to and if its not in the redirect.php instead of going to peets.html, it actualy goes to the website the user wanted??? This would just make it look a little more legit and and only attack my target sites ;) Edited January 24, 2013 by deviney Quote Link to comment Share on other sites More sharing options...
haroo Posted February 6, 2013 Share Posted February 6, 2013 Im having the same issue. but changing the " $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; " line in redirect.php does not do the trick. i just updated to 2.7.5 and the stock files in phish-pineapple.zip worked fine in 2.7.0 i can kind og work around this issue like this <?php $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; if (strpos($ref, "facebook")){ require ('facebook.html'); break; } if (strpos($ref, "twitter")){ require ('twitter.html'); break; }?> but thats not how i would like to do this because it still says redirect.php. also before when i was running 2.7.0 the connected client still had internet access when not going to the sites setup on redirect.php now it just sends all sites to site/redirect.php so if i go to google.com it goes to google.com/redirect.php Hope i can get this resolved Thanks Haroo Quote Link to comment Share on other sites More sharing options...
haroo Posted February 6, 2013 Share Posted February 6, 2013 o know i dont need the break; in there i was trying something else before. Quote Link to comment Share on other sites More sharing options...
CrackAlot Posted February 6, 2013 Share Posted February 6, 2013 I am seeing the same issue. I have not tore into it yet, but 2.7.4 was working ok, but 2.7.5 is not. I am not 100% yet on the problem, but figured I would chime in on this. Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted February 6, 2013 Share Posted February 6, 2013 It must be something else - 2.7.4 and 2.7.5 are pretty much the same. Just a few minor tweaks and fixes but nothing to do with anything that would affect this. Quote Link to comment Share on other sites More sharing options...
wrussprince Posted February 8, 2013 Share Posted February 8, 2013 im having a problem getting the phishing zip file to open up in winSCP,so i broke down the file in my desk top, and transferred the files thatway. but if i transfer the twitter files and the facebook filse, ittells me that there isn't enough room to transfer all the files on thepineapple, so i have to abort the operation. i then just transferfacebook file, which went fine. but on the test computer, it just statesthat it can't connect to the server! it is showing "/redirect.php" in the address, but it won't do anything i'm banging my head against the wall here. please help this beginner. wrussprince@yahoo.com tks Quote Link to comment Share on other sites More sharing options...
khaotic57 Posted February 8, 2013 Share Posted February 8, 2013 You need to put it on usb and make sure that the usb is configured properly. The file is too large to fit on the pineapple. Quote Link to comment Share on other sites More sharing options...
Sebkinne Posted February 8, 2013 Share Posted February 8, 2013 The issue is that the header("Location: whatever.php"); is not working properly. We are working on a fix! A quick fix would be to use JS or a meta header to redirect the page. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.