Jump to content

Complete Novice questions.


MrMattSz

Recommended Posts

Alright,

I should start by saying I have little-to-no hacking experience what-so-ever:

I've run BT5 in a virtual machine on my Mac and used an Alpha WiFi adapter to test the security of my own wireless networks before, and for the short time I borrowed an Android tablet, I used a few apps like WiFiKill to flood a friends wifi for trying to hack mine, and another app that I forget the name of to hi-jack his facebook session and change his political views on Facebook.

I figured I could wait around a bit, have a play with my Mark V and see how far I get, and perhaps even just check the forums here and there to see if anyone else starts asking these questions, but it doesn't seem to be happening, so here it goes.

So far I have been using my iPhone and MacBook Pro as test beds, while monitoring the MKV from my desktop PC by connecting to it through my router by cable.

I have never used anything like this before, I've managed to get the basic things done, setting up my AP as a source, putting out a public network, everything is up to date (running firmware 1.0.1, updated all tiles), I've installed ettercap, sslstrip, Jammer and urlsnarf, I can access the files and logs over SSH.

I was given the impression these are the tiles I should be using to let someone use my wifi, but in return give me access to their facebook session or the like? As well as testing the security of my wireless router and it's WPS function, seeing if it is indeed possible to break my wifi password with a bit more persistence such as what the pineapple offers?

If I'm using the wrong tiles, or I should be getting others feel free to tell me?

But I can't seem to actually do anything. I understand not all of the infusions have been updated as of yet to work with the MKV, but having a specific list would be nice?

I've been trying to find concise specific instructions on how to use these tiles, but have had no luck. I have seen people say there are plenty of forums and places to find this information, without actually linking to them or dropping hints as what to search for (and I guess if you have been doing this kind of thing for a while, it would be obvious what to search for, perhaps I have found the information but not realised it?). All I can find is information for the MarkIV at best and the purpose of the infusions without actually explaining how to accomplish their intended purpose. Guides that involve ICS over ethernet and using WireShark won't work for me either, as I'm using a MacBook running Mavericks 10.9. But hey that's why there's a second network interface right? I shouldn't need to do that anyway, I can just use the pineapple as my AP and blacklist my devices once I get things working can't I? But what then replaces WireShark in that scenario?

Any time I try to enable any of the four infusions I mentioned earlier, they seem to be working as far as the web interface in concerned (usually when I refresh they report what they are doing properly), but instantly whatever device I'm testing with loses it's connection to the Internet, and the infusions have nothing to pick up.

Which interface should I be running them on? The internal lan? The wireless interface that is sourcing the Internet? The one that is sending it out?

I thought the internal lan, but it doesn't seem to be doing the job?

I'm not sure if there's a problem with the interface, or it can't capture anything for some other reason, or maybe the infusions are breaking the Internet connection because they haven't been updated to work with the MKV and it's two network interfaces?

Any help would be appreciated,

Thanks.

Edited by MrMattSz
Link to comment
Share on other sites

MrMattSz,

For a list of Mk V infusions, check here: https://wifipineapple.com/?infusions

"I was given the impression these are the tiles I should be using to let someone use my wifi, but in return give me access to their facebook session or the like?"

This depends on what you're trying to accomplish. Jammer will put nearby networks in a suspended state, SSLstrip will redirect your Pineapple clients to http connections and allow you to capture credentials and other data, URLsnarf sniffs URLs from HTTP traffic, and ettercap lets you exploit the address resolution protocol (ARP poisoning) and perform MItM attacks.

"Which interface should I be running them on? The internal lan? The wireless interface that is sourcing the Internet? The one that is sending it out?"

This depends on what you're trying to accomplish. If a client is connected to your Pineapple, simply run SSLstrip, URLsnarf, or Ettercap. How they are connected to your Pineapple won't matter. For some examples of how you should run Jammer, see my response in the post here https://forums.hak5.org/index.php?/topic/30885-wifi-jammer/

ICS may be an issue with Mac OS X 10.9 but I'm not sure. If you want to share internet through the ethernet cable, you could install Linux on a virtual machine. An easier way is to simply use the client mode feature in the network tile. This lets you connect wlan1 to a wireless network and share the internet connection to your Pineapple clients through wlan0.

"All I can find is information for the MarkIV at best and the purpose of the infusions without actually explaining how to accomplish their intended purpose... I'm using a MacBook..."

I'm also using a MacBook Pro... but it shouldn't affect your ability to use the Pineapple. As far as finding information about the infusions and common Pineapple issues, you're in the right place. The forum is the best source of information. Myself, as well as some others, are doing our best to produce some beginner-friendly Pineapple tutorials. Here are a couple of video tutorials that you may find useful:

Evil Portal (Mark V)- In this tutorial, I explain what a captive portal is and walk you through the entire process of setting it up. I also provide a custom splash and code. "http://www.youtube.com/watch?v=nw4bo4rXGgQ"

KARMA (Mark IV)- In this tutorial, I provide a high-level overview of KARMA with illustrations and walk you through its usage. Although I did the tutorial on the Mark IV, it's still relevant to the Mark V. "http://www.youtube.com/watch?v=avJfT9JyiiM"

I suggest asking specific questions about specific infusions or specific tasks in relevant forum topics. The Pineapple is community-driven, and people are almost always willing to help.

Edited by chriswhat
Link to comment
Share on other sites

Thank you Chris,

You have been a tremendous help, that definitely gives me a great start to go on, and definitely helped clarify a few things.

I got out my old Alfa AWUS036H adapter which uses the RTL8181L to use as my third network adapter, and I will now give a quick try to see if my Internet dropping issue is fixed.

Link to comment
Share on other sites

Okay, so I got everything started.

Internet working, Jammer running off Wlan2,

Enabled urlsnarf on br-lan, Enabled SSLStrip on br-lan, and then the Internet instantly stops working again.

Any suggestions? Should I be using it on a different port? Am I doing things in the wrong order?

Link to comment
Share on other sites

Okay.

I started everything up, internet working, first thing I tried was SSLstrip and now it appears to not be kicking in?

Internet keeps working when I turn it on, but I keep getting this:

cc61.png

Then when I refresh it turns to this:

up38.png

Is there a known issue of SSLstrip not working properly at the moment?

Link to comment
Share on other sites

MrMattSz

Like Lockon said above, SSLstrip and its dependancies haven't been updated. Connect to your Pineapple via SSH and type:

opkg install sslstrip 
Link to comment
Share on other sites

MrMattSz

Like Lockon said above, SSLstrip and its dependancies haven't been updated. Connect to your Pineapple via SSH and type:

opkg install sslstrip 

Edit: I only get this problem if I install on the sd, internal I get the same problem everyone seems to have, it works, but if you stop it, then only ssl websites work and you need to restart the pineapple...

I'm getting this after reinstalling sslstrip. I'm on 1.0.1,

Traceback (most recent call last):
  File "/sd/usr/bin/sslstrip", line 30, in <module>
    from sslstrip.StrippingProxy import StrippingProxy
ImportError: No module named sslstrip.StrippingProxy
Edited by Catware
Link to comment
Share on other sites

Try creating the following symlinks. Some of them will probably already exist. There is an entire post on sslstrip in the Infusions section of the forums.

ln -s /sd/usr/lib/python2.7/site-packages/twisted/web/ /usr/lib/python2.7/site-packages/twisted/
ln -s /sd/usr/lib/python2.7/site-packages/sslstrip /usr/lib/python2.7/site-packages/
ln -s /sd/usr/lib/python2.7/site-packages/OpenSSL/ /usr/lib/python2.7/site-packages/

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...