i8igmac Posted September 4, 2015 Share Posted September 4, 2015 These xfinity hot spots are everywhere... there is so much to explain... I have a raspberry pi kali with 3 alfa cards. One card is associated with a xfinity open access point... at this time we are not yet authenticated with login.xfinity.com... with a second alfa card I will broadcast a encrypted access point for my home device's to connect to... some iptables will complete the configuration along with dnsmasq to issue local ip address to my device's... (I will post command line configuration later) And now the exciting part... when a device in my home authenticates with login.xfinity.com, this will allow all my devices internet access ;-) because this legit login will come from my raspberry pi... How so? when a paying xfinity customer is in range of a xfinity access point, there handheld device will automatically connect and authenticate with login.xfinity.com... How can I exploit this? I can use a 3rd alfa card to broadcast a open xfinity access point and some more iptables... only need one paying xfinity customer to pass by my house... Now, I can point a long range antenna broadcasting xfinity at a highway or a road lots of cars travel down ,-) Not much of a exploit, I don't have to tamper with the traffic... it just works Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.