MrMattSz Posted November 14, 2013 Share Posted November 14, 2013 (edited) Alright, I should start by saying I have little-to-no hacking experience what-so-ever: I've run BT5 in a virtual machine on my Mac and used an Alpha WiFi adapter to test the security of my own wireless networks before, and for the short time I borrowed an Android tablet, I used a few apps like WiFiKill to flood a friends wifi for trying to hack mine, and another app that I forget the name of to hi-jack his facebook session and change his political views on Facebook. I figured I could wait around a bit, have a play with my Mark V and see how far I get, and perhaps even just check the forums here and there to see if anyone else starts asking these questions, but it doesn't seem to be happening, so here it goes. So far I have been using my iPhone and MacBook Pro as test beds, while monitoring the MKV from my desktop PC by connecting to it through my router by cable. I have never used anything like this before, I've managed to get the basic things done, setting up my AP as a source, putting out a public network, everything is up to date (running firmware 1.0.1, updated all tiles), I've installed ettercap, sslstrip, Jammer and urlsnarf, I can access the files and logs over SSH. I was given the impression these are the tiles I should be using to let someone use my wifi, but in return give me access to their facebook session or the like? As well as testing the security of my wireless router and it's WPS function, seeing if it is indeed possible to break my wifi password with a bit more persistence such as what the pineapple offers? If I'm using the wrong tiles, or I should be getting others feel free to tell me? But I can't seem to actually do anything. I understand not all of the infusions have been updated as of yet to work with the MKV, but having a specific list would be nice? I've been trying to find concise specific instructions on how to use these tiles, but have had no luck. I have seen people say there are plenty of forums and places to find this information, without actually linking to them or dropping hints as what to search for (and I guess if you have been doing this kind of thing for a while, it would be obvious what to search for, perhaps I have found the information but not realised it?). All I can find is information for the MarkIV at best and the purpose of the infusions without actually explaining how to accomplish their intended purpose. Guides that involve ICS over ethernet and using WireShark won't work for me either, as I'm using a MacBook running Mavericks 10.9. But hey that's why there's a second network interface right? I shouldn't need to do that anyway, I can just use the pineapple as my AP and blacklist my devices once I get things working can't I? But what then replaces WireShark in that scenario? Any time I try to enable any of the four infusions I mentioned earlier, they seem to be working as far as the web interface in concerned (usually when I refresh they report what they are doing properly), but instantly whatever device I'm testing with loses it's connection to the Internet, and the infusions have nothing to pick up. Which interface should I be running them on? The internal lan? The wireless interface that is sourcing the Internet? The one that is sending it out? I thought the internal lan, but it doesn't seem to be doing the job?I'm not sure if there's a problem with the interface, or it can't capture anything for some other reason, or maybe the infusions are breaking the Internet connection because they haven't been updated to work with the MKV and it's two network interfaces? Any help would be appreciated, Thanks. Edited November 14, 2013 by MrMattSz Quote Link to comment Share on other sites More sharing options...
chriswhat Posted November 14, 2013 Share Posted November 14, 2013 (edited) MrMattSz, For a list of Mk V infusions, check here: https://wifipineapple.com/?infusions "I was given the impression these are the tiles I should be using to let someone use my wifi, but in return give me access to their facebook session or the like?" This depends on what you're trying to accomplish. Jammer will put nearby networks in a suspended state, SSLstrip will redirect your Pineapple clients to http connections and allow you to capture credentials and other data, URLsnarf sniffs URLs from HTTP traffic, and ettercap lets you exploit the address resolution protocol (ARP poisoning) and perform MItM attacks. "Which interface should I be running them on? The internal lan? The wireless interface that is sourcing the Internet? The one that is sending it out?" This depends on what you're trying to accomplish. If a client is connected to your Pineapple, simply run SSLstrip, URLsnarf, or Ettercap. How they are connected to your Pineapple won't matter. For some examples of how you should run Jammer, see my response in the post here https://forums.hak5.org/index.php?/topic/30885-wifi-jammer/ ICS may be an issue with Mac OS X 10.9 but I'm not sure. If you want to share internet through the ethernet cable, you could install Linux on a virtual machine. An easier way is to simply use the client mode feature in the network tile. This lets you connect wlan1 to a wireless network and share the internet connection to your Pineapple clients through wlan0. "All I can find is information for the MarkIV at best and the purpose of the infusions without actually explaining how to accomplish their intended purpose... I'm using a MacBook..." I'm also using a MacBook Pro... but it shouldn't affect your ability to use the Pineapple. As far as finding information about the infusions and common Pineapple issues, you're in the right place. The forum is the best source of information. Myself, as well as some others, are doing our best to produce some beginner-friendly Pineapple tutorials. Here are a couple of video tutorials that you may find useful: Evil Portal (Mark V)- In this tutorial, I explain what a captive portal is and walk you through the entire process of setting it up. I also provide a custom splash and code. "http://www.youtube.com/watch?v=nw4bo4rXGgQ" KARMA (Mark IV)- In this tutorial, I provide a high-level overview of KARMA with illustrations and walk you through its usage. Although I did the tutorial on the Mark IV, it's still relevant to the Mark V. "http://www.youtube.com/watch?v=avJfT9JyiiM" I suggest asking specific questions about specific infusions or specific tasks in relevant forum topics. The Pineapple is community-driven, and people are almost always willing to help. Edited November 14, 2013 by chriswhat Quote Link to comment Share on other sites More sharing options...
h0T_rails Posted November 14, 2013 Share Posted November 14, 2013 Chris....dude you're my f#Cking hero. Real talk,true story. Quote Link to comment Share on other sites More sharing options...
MrMattSz Posted November 14, 2013 Author Share Posted November 14, 2013 Thank you Chris, You have been a tremendous help, that definitely gives me a great start to go on, and definitely helped clarify a few things. I got out my old Alfa AWUS036H adapter which uses the RTL8181L to use as my third network adapter, and I will now give a quick try to see if my Internet dropping issue is fixed. Quote Link to comment Share on other sites More sharing options...
MrMattSz Posted November 15, 2013 Author Share Posted November 15, 2013 Okay, so I got everything started. Internet working, Jammer running off Wlan2, Enabled urlsnarf on br-lan, Enabled SSLStrip on br-lan, and then the Internet instantly stops working again. Any suggestions? Should I be using it on a different port? Am I doing things in the wrong order? Quote Link to comment Share on other sites More sharing options...
chriswhat Posted November 15, 2013 Share Posted November 15, 2013 Could be an sslstrip issue. Start sslstrip and try going to an https url in your web broswer. Can u go to https sites? Quote Link to comment Share on other sites More sharing options...
MrMattSz Posted November 16, 2013 Author Share Posted November 16, 2013 Okay. I started everything up, internet working, first thing I tried was SSLstrip and now it appears to not be kicking in? Internet keeps working when I turn it on, but I keep getting this: Then when I refresh it turns to this: Is there a known issue of SSLstrip not working properly at the moment? Quote Link to comment Share on other sites More sharing options...
Lockon Posted November 16, 2013 Share Posted November 16, 2013 Yes, SSLstrip is very old and all the dependencies are not current. You could manually rebuild them yourself or simply wait for an update. Quote Link to comment Share on other sites More sharing options...
chriswhat Posted November 16, 2013 Share Posted November 16, 2013 MrMattSz Like Lockon said above, SSLstrip and its dependancies haven't been updated. Connect to your Pineapple via SSH and type: opkg install sslstrip Quote Link to comment Share on other sites More sharing options...
Catware Posted November 16, 2013 Share Posted November 16, 2013 (edited) MrMattSz Like Lockon said above, SSLstrip and its dependancies haven't been updated. Connect to your Pineapple via SSH and type: opkg install sslstrip Edit: I only get this problem if I install on the sd, internal I get the same problem everyone seems to have, it works, but if you stop it, then only ssl websites work and you need to restart the pineapple... I'm getting this after reinstalling sslstrip. I'm on 1.0.1, Traceback (most recent call last): File "/sd/usr/bin/sslstrip", line 30, in <module> from sslstrip.StrippingProxy import StrippingProxy ImportError: No module named sslstrip.StrippingProxy Edited November 16, 2013 by Catware Quote Link to comment Share on other sites More sharing options...
thesugarat Posted November 16, 2013 Share Posted November 16, 2013 Try creating the following symlinks. Some of them will probably already exist. There is an entire post on sslstrip in the Infusions section of the forums. ln -s /sd/usr/lib/python2.7/site-packages/twisted/web/ /usr/lib/python2.7/site-packages/twisted/ln -s /sd/usr/lib/python2.7/site-packages/sslstrip /usr/lib/python2.7/site-packages/ln -s /sd/usr/lib/python2.7/site-packages/OpenSSL/ /usr/lib/python2.7/site-packages/ Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.