Jump to content

Recommended Posts

a little issue here. when i click on logs and try to view the logs and start scrolling the page jumps back to the bottem. it will not let me see the log. Also when i click download to download the log a blank page comes up and thats it any ideas?

Link to comment
Share on other sites

  • 3 weeks later...
  • Replies 159
  • Created
  • Last Reply

Top Posters In This Topic

Hi guys,

I'm having problems with this:

Pineapple 1.4.1

sslstrip v1.6

I've flashed back to factory a couple of times to try to get this working but I usually only get this:

sslstrip output_1388534526.log [January 01 2014 00:03:42]
2014-01-01 00:03:42,775 POST Data (clients1.google.com):
0I0G0E0C0A0	+jpI#z(~dJhvbZ/c

I've tried multiple ways to install it and the above output is all that I've gotten...

Everything else is working, and my client is able to connect to the internet (sometimes not able to load the page, but rarely).

Rarely I do get the same kinda output that t31mo posted.

Please help!

Link to comment
Share on other sites

Its now working for me at all i get this output from the command line

File "/usr/bin/sslstrip", line 108, in <module>
File "/usr/bin/sslstrip", line 101, in main
reactor.listenTCP(int(listenPort), strippingFactory)
ValueError: invalid literal for int() with base 10: 'l'

Link to comment
Share on other sites

  • 2 weeks later...
  • 2 weeks later...

Hey guys! just started up using my mark V, gosh i love this thing!!!

anyways doing the sslstrip was just a click away, but i noticed that Facebook and Gmail wont show up in logs, but when i go to aol.com wth my device thats connected to the pineapple and type in mango for username and mango for password and hit enter, it records it...then i stop go to history and view the latest log, when i Ctrl+F and type loginid= i see it! mango mango....so my question is whats up with facebook and gmail? is it that they are too secure?

Link to comment
Share on other sites


I haven't checked facebook and others, but my guess is that they are now using HSTS to set the HTTP Strict Transport Security, this tells the browser to ensure that all the links to it are over HTTPS.

I think SSL-SPLIT was created to alleviate some of this, but it would have a warning popup on the browser because of the invalid certificate, regarding SSLSTRIP, I think at Defcon sensepost modified it to work with hsts. We will have to see what those changes are and when they will be available on the pineapple's version of sslstrip.

Link to comment
Share on other sites

My advice is to stop placing so much emphasis on Facebook. Many people use the same creds for most, if not all, of their accounts (i.e. social media, financial, email, etc.). Compromise one of them, and you can often compromise the rest of them.





Microsoft Live


Wells Fargo


Bank of America


Capital One








Link to comment
Share on other sites

My understanding is it is entirely dependent on the browser -- and -- if its apart of the HSTS site list...
Thats why In another forum post I am inquiring to the infusion of SSLSTRIP2 and DNS2Proxy.

SSLStrip as it stands has worked flawlessly against all our targets of interest when using Internet Explorer...
Safari,Chrome,Firefox -- Thats a different story all together..

But remember - just because SSLStrip doesn't work -- you could always just ettercap or wireshark the data and hope they login to something with HTTP (Clear Text)
You'd be surprised how many people use the same email and password for everything -- We're human.

If you're not having much luck with SSLStrip and you're currently working for someone (client) perhaps try SEToolkit... clone the page and e-mail your clients..
You'd be amazed at how many people believe they really did win a free Ipad -- or a cruise to the bahamas.

Link to comment
Share on other sites

Some guys at Sensepost made a new version of sslstrip called sslstrip-HSTS as part of the their new mitm toolset called MANA. it's not a cover all solution but is suspose to work depending on the site. More information and the code can be found here https://github.com/s...r/sslstrip-hsts

Maybe one of the pros here can make an infusion.


I posted about this in my thread -- I hope some of the pros read through it.

It involves DNS Proxy 2 and SSLSTRIP2.

It has a pretty high success rate; but I'm having a hard time contacting the author..

Hopefully someone can expand on this...

Link to comment
Share on other sites

You might have better luck contacting research@sensepost.com also most of the time the creators of script an apps with sensepost will create a Google group to go along with it. I'll dig into it as well. It usually takes a few days for them guys to respond.

Edited by damavox
Link to comment
Share on other sites

dear all,

I m an enthusiastic new owner of pineapple....I updated firmware as is recommenced to 2.0.4 and after i installed the sslstrip *1.8* for pineapple bar.

The issue is that I tried all the kind of setups (internal/sd) but I do not get any capture of ssl connections to MANY different sites (gmail/aol.com/facebook/twitter/cryptocoin sites/forums) and none returned any data to sslstrip to pineapple. I used laptop and android phone.

Do I have to install another infusion or do some parameter adjustments?

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Create New...