thesugarat Posted February 8, 2014 Share Posted February 8, 2014 How do u do that? Opening only sorters ports? DNS spoofing? Or phishing ? That is DNSspoofing with a redirect to a phishing page... But the problem with spoofing all traffic to the pineapple (172.16.42.1 *) is that a lot of those apps use https. Wouldn't those still get through? Quote Link to comment Share on other sites More sharing options...
NullNull Posted February 8, 2014 Share Posted February 8, 2014 That is DNSspoofing with a redirect to a phishing page... But the problem with spoofing all traffic to the pineapple (172.16.42.1 *) is that a lot of those apps use https. Wouldn't those still get through? Yes, you are correct! Many apps (eg Facebook app) are using https. I never use this method with my pineapple connected to the internet and none of the traffic pases through those apps so i forgot this detail. Quote Link to comment Share on other sites More sharing options...
cptprice Posted February 8, 2014 Share Posted February 8, 2014 @JackChitt Could you please share your Androrat setup with everyone? Quote Link to comment Share on other sites More sharing options...
tom564 Posted February 8, 2014 Share Posted February 8, 2014 That is DNSspoofing with a redirect to a phishing page... But the problem with spoofing all traffic to the pineapple (172.16.42.1 *) is that a lot of those apps use https. Wouldn't those still get through? The DNS querys are still done unencrypted with HTTPS so i think DNSspoof should still work. the problem i think you would have is the browser moaning about the cert not matching etc. Quote Link to comment Share on other sites More sharing options...
NullNull Posted February 8, 2014 Share Posted February 8, 2014 The DNS querys are still done unencrypted with HTTPS so i think DNSspoof should still work. the problem i think you would have is the browser moaning about the cert not matching etc. The app will get a successful connection and nothing will change. Just tested!! Quote Link to comment Share on other sites More sharing options...
tom564 Posted February 9, 2014 Share Posted February 9, 2014 The app will get a successful connection and nothing will change. Just tested!! Maybe hardcoded IP's into the app? or cached DNS? Quote Link to comment Share on other sites More sharing options...
lunokhod Posted February 12, 2014 Share Posted February 12, 2014 Does HSTS affect the use of dns spoofing? Quote Link to comment Share on other sites More sharing options...
JackChitt Posted February 13, 2014 Author Share Posted February 13, 2014 @JackChitt Could you please share your Androrat setup with everyone? I will make a short video tutorial when I get my replacement Pineapple in the mail. Seeing as how I will have to set it up again myself. And as far as your antenna question goes, I see no reason why it shouldn't work as long as you have the correct adapters to connect it to your pineapple. Quote Link to comment Share on other sites More sharing options...
cptprice Posted February 13, 2014 Share Posted February 13, 2014 I will make a short video tutorial when I get my replacement Pineapple in the mail. Seeing as how I will have to set it up again myself. And as far as your antenna question goes, I see no reason why it shouldn't work as long as you have the correct adapters to connect it to your pineapple. Thanx, i will be waiting for your video tutorial. Also have you ever tried Yagi Antenna with alfa AWUS036H? I think that alfa supports max of 9dbi antenna, will yagi work being 16-18dbi? Quote Link to comment Share on other sites More sharing options...
thesugarat Posted February 13, 2014 Share Posted February 13, 2014 I've got a 36H and several different yagi's... They work just fine. Quote Link to comment Share on other sites More sharing options...
ElfDevDK Posted February 14, 2014 Share Posted February 14, 2014 Correct me if I'm wrong but isn't it just a matter of finding out how the app and the server speeches to each other like using wireshark to spy on your phones mac and then first try to logout after doing that I think you will need to decrypt the username and password by first entering the whole alphabet both as username and password then check in wireshark what's going on and after that enter A 8 times in both fields read from wireshark what's going on then B, C, D and so on last do the same thing with numbers when your done you should be able to send the logout request to the server and when the user tries to logon you can read and decrypt it again this is just an idea and I haven't tested it before I'm not responsible for what you do please check your local laws before doing this PS please share the decryption table Peace Quote Link to comment Share on other sites More sharing options...
tom564 Posted February 14, 2014 Share Posted February 14, 2014 Correct me if I'm wrong but isn't it just a matter of finding out how the app and the server speeches to each other like using wireshark to spy on your phones mac and then first try to logout after doing that I think you will need to decrypt the username and password by first entering the whole alphabet both as username and password then check in wireshark what's going on and after that enter A 8 times in both fields read from wireshark what's going on then B, C, D and so on last do the same thing with numbers when your done you should be able to send the logout request to the server and when the user tries to logon you can read and decrypt it again this is just an idea and I haven't tested it before I'm not responsible for what you do please check your local laws before doing this PS please share the decryption table Peace HTTPS is not that simple to decrypt, you can't just share a decryption table as a new symmetric key is derived for each session AFAIK. You need to either attack an application that does not check the validity of the SSL cert and use one that you sign or somehow obtain a trusted certificate signed by a CA for the site you wish to impersonate. Quote Link to comment Share on other sites More sharing options...
JackChitt Posted February 15, 2014 Author Share Posted February 15, 2014 Thanx, i will be waiting for your video tutorial. Also have you ever tried Yagi Antenna with alfa AWUS036H? I think that alfa supports max of 9dbi antenna, will yagi work being 16-18dbi? Umm.. Who told you there was a limitation? Your yagi will work fine. I had one myself for a while. A yagi in an unidirectional antenna. It will pick up a wide spread of signals. The 24dbi grid I have is a directional antenna. It is used to holm in on an exact location from a distance. I have the 036H and 036NHA alfas and there is no limit on the antenna you connect it to as long as its a 2.4 band. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.