1N3 Posted January 9, 2015 Share Posted January 9, 2015 I'm trying to get Burpsuite integrated with PineAP on a PineappleV... is it possible? Here is my setup: - Wireless router at (192.168.1.1) for connection to the internet - PineappleV running PineAP (172.16.24.1/eth0 + 192.168.1.108/wlan1) - From the same wifi router, I have a Kali Linux machine at (192.168.1.132) listening on port 8080/tcp running Burpsuite My goal is to accept wifi clients connected from PineAP and route any web requests (HTTP/HTTPS) to 192.168.1.32:8080 (Burpsuite). Anyone know how to do this? Can I just create an iptables pre-routing rule to forward to this IP/port? Quote Link to comment Share on other sites More sharing options...
sud0nick Posted January 9, 2015 Share Posted January 9, 2015 If all you are doing is forwarding web requests to Kali then try using either DNSSpoof (to send all requests to the Kali machine) or maybe you can try iptables. Quote Link to comment Share on other sites More sharing options...
dustbyter Posted January 9, 2015 Share Posted January 9, 2015 I'd say IP tables is your best bet. This way you can forward the traffic to any device that is running burp or another http proxy. Quote Link to comment Share on other sites More sharing options...
i8igmac Posted January 9, 2015 Share Posted January 9, 2015 iptables -t nat -A PREROUTING -i LANFACE -p tcp -m tcp --dport 80 -j DNAT --to-destination kali-ip:3128 ptables -t nat -A PREROUTING -i LANFACE -p tcp -m tcp --dport 443 -j DNAT --to-destination kali-ip:3128 have fun Quote Link to comment Share on other sites More sharing options...
1N3 Posted January 10, 2015 Author Share Posted January 10, 2015 Wow, next level! Have to write up a quick tutorial about this! Had to add a few iptables rules, modify the dnspoof settings and add invisible proxying to Burpsuite but now it works! thanks for the help! Quote Link to comment Share on other sites More sharing options...
i8igmac Posted January 10, 2015 Share Posted January 10, 2015 All device's and applications will act different when burp request a certificate... The most popular applications may not work do to security reasons. Quote Link to comment Share on other sites More sharing options...
1N3 Posted January 10, 2015 Author Share Posted January 10, 2015 yeah, I'm noticing that... it works great for HTTP... perhaps only forward port 80 requests to Burpsuite and run SSLStrip or SSLSplit for HTTPS? Quote Link to comment Share on other sites More sharing options...
1N3 Posted January 10, 2015 Author Share Posted January 10, 2015 Even better, Burpsuite has options to redirect all HTTPS -> HTTP and on SSL negotiation failure, does SSL pass-through automatically (thus not breaking the connection for sites like Google to the client, etc.). Seems to be working pretty good here aside from not seeing all HTTPS traffic... Quote Link to comment Share on other sites More sharing options...
Whistle Master Posted January 21, 2015 Share Posted January 21, 2015 Tuto has been move to https://forums.hak5.org/index.php?/topic/34529-howto-burpsuite-proxy/ Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.