Jump to content
Hak5 Forums

Archived

This topic is now archived and is closed to further replies.

ExigentCircumstance

[Support] SSLstrip

Recommended Posts

figured out that I can only run sslstrip once then have to reboot to get back to passing http traffic. I have tried flushing iptables but still have to do a reboot to get back to normal.

Share this post


Link to post
Share on other sites

ExigentCircumstance, I'm not sure if you know how forums work, but you totally posted in the wrong section. Please review all the threads to post in the correct spot.

I think what leg3nd said may be true with module developers using /usb instead of /sd. A quick test would be plug in a properly formatted USB flash drive and try installing to that.

What are the parameters for a properly formatted usb using Linux.

Share this post


Link to post
Share on other sites

WORKING! :D

#1 Install Sslstrip in pineapple bar

#2 SSH into the pineapple and do opkg remove sslstrip

#3 Then do opkg install sslstrip --dest sd

#4 Then do opkg install sslstrip --dest sd again to see if its installed and all done :)
A good test site is http://www.mpgh.net/ login and see if you get info in sslstrip

Also like my post if this worked for you please and thanks :)

291cbaq.jpg

Share this post


Link to post
Share on other sites
Traceback (most recent call last):

File "/sd/usr/bin/sslstrip", line 27, in <module>

from twisted.web import http

ImportError: No module named web


Thats what i get after the update... :-(



OK I had to remove and install twisted-web again.

Now its running like it should!

Thanx Wistlemaster and midnitesnake

Share this post


Link to post
Share on other sites

Would the best way to get the logging for this infusion onto the SD card to use a Symbolic link to the logs directory?

Share this post


Link to post
Share on other sites

Are you talking about replacing the current log destination directory with a symlink to a similarly named log directory on the sd card. So that when sslstrip believe it's writing to the original log location it's actually writing to the sd card... I'm guessing you installed sslstrip to internal not to the SD card? That might work. Or a maybe a cron job?

Share this post


Link to post
Share on other sites

Yes. I installed it internal and when I tried to remove and re-install it went back to internal. I noticed if you do verbose they get big quick. And I have this space over on the SD card I would prefer to use. SO if I used a SYMLink then as it writes it would actually be writing to the SD card verses internal.

Share this post


Link to post
Share on other sites

In 1.0.1 I'm just going to have to wait for the cleanup script Seb is working on. I've messed with it enough that I can get it to start (and collect info) but I can't get it to stop and it only allows traffic through to https sites. All common issues before the firmware update.. but none of the fixes used before has worked so far. A reboot sets everything back to normal routing.

Share this post


Link to post
Share on other sites

There's an entire thread about sslstrip. I can get it to work but not to stop without a reboot. Sebkinne said he's working on a cleanup script...

Share this post


Link to post
Share on other sites

Is there a reason that sslstrip version 0.6 is installed instead of version 0.9? Did anyone try to update this?

Already found out myself. Version 0.9 can be used:

opkg update
opkg install pyopenssl
wget http://www.thoughtcrime.org/software/sslstrip/sslstrip-0.9.tar.gz -O /sd/sslstrip-0.9.tar.gz
cd /sd
tar zxvf sslstrip-0.9.tar.gz
cd sslstrip-0.9
python ./setup.py install

Install the sslstrip infusion (1.4) after this. Sslstrip will then run with version 0.9 instead of 0.6 from the Web UI.

Share this post


Link to post
Share on other sites

when given a variety of data from different clients! would not it be great to be able to email the file when it has reached a certain size!!

I thought as a possible proposal for an addition!

Share this post


Link to post
Share on other sites

One of my friends thought about this a while ago. It could be easily implemented... Ill talk to him and see what we can come up with.

Share this post


Link to post
Share on other sites

would be much appreciated!

Share this post


Link to post
Share on other sites

First off the infusion is working great, but... It only strips traffic connected to the pineapple. When I connect the pineapple to a wireless network on wlan1 and run the infusion nothing shows up in the logs. I'm guessing the infusion doesn't use ettercap or arpsoof to redirect the traffic? Or is it sslstrip running on the wrong interface? I know I can ssh into the pineapple and do it manually, but I'd really like be able to use the infusion to ssl strip another network. Any help in achieving this would be greatly appreciated.

Share this post


Link to post
Share on other sites

IIRC, sslstrip runs on wlan0 (the AP) whereas wlan1 is the client which connects to the internet-serving AP so you shouldn't be stripping any traffic via wlan1.

Share this post


Link to post
Share on other sites

First of all why are you trying to get it to run in wlan1 instead of wlan0? What exactly are you try to do?

Share this post


Link to post
Share on other sites

I'm testing to see if I can get the pineapple to SSL Strip traffing going through my own network, rather than just the traffing going through the pineapple.

Share this post


Link to post
Share on other sites

Having issues with sslstrip....

I've been trying for 2 weeks to get this working, but just being ignorant!

As soon as I start sslstrip, the webpages don't show on first attempt - I have to refresh the page for the page to show... Even this doesn't always work!. sslstrip also sometimes crashes (see capture) I get a line of:

0Q0O0M0K0I0 +

I'm then forced to reboot the pineapple. I find this always happens on twitter.com, and randomly when it feels like it. I also find that when I reinstall the sslstrip infusion, it KIND OF works to begin with, as I have had it work on a couple of ssl sites but then goes all crappy after 5-10 minutes of usage.

Hmmmmm......

post-46072-0-41134900-1389018015_thumb.p

Share this post


Link to post
Share on other sites

I'm on version 1.0.5. As soon as I start the sslstrip if I try to surf the web, gives "Network Error", weird. Pineapple little slow, but after as couple seconds, it works well.

Great Infusion :)

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×