ukzerosniper Posted October 24, 2013 Posted October 24, 2013 Hi guys, Is it possible to do the following. Configure the Pineappble as a "Yes Man". Set it up as an AP which simply reply's yes to all beacons and gets people to connect. Once people connect, can it then ask them to provide the authentication for the network the think they are connecting to (WEP, WPA, WPA2 pass phrase). Once they have provided the authentication can it note that in a text file with the following details for each connection. MAC of clientSSID client connected to Authentication provided to connect The pineapple doesn't care what authentication they provide, once they give any response it should let them join. If this works, you would have just collected all the info to connect to said Wireless AP. Thanks guys Quote
aibohphobia Posted October 24, 2013 Posted October 24, 2013 Once they have provided the authentication can it note that in a text file with the following details for each connection. Nope, sorry, can't be done. Although technically not 100 percent correct, think of it as a challenge response: the Access Point is sending a challenge, and the client a response, where the pass phrase is used as a shared secret. Technically correct would be to say that the actual authentication is never send in clear text and therefor can't be extracted from the data stream. Quote
soap Posted October 25, 2013 Posted October 25, 2013 You can however force deauths with a deauth attack and capture the wpa handshake. But even then Its encrypted. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.