PoSHMagiC0de Posted June 17, 2017 Share Posted June 17, 2017 Most of the products Hak5 have I can simulate with my laptop or my couple of Raspberry Pis but once I understand how they work, I like to buy the Hak5 product version because of simplicity in a package and to support them. They do great work. Also it is cool having a device that does things naturally to offload that to while your PC does the other stuff. I bought the Rubber Ducky a year ago. I loved it. Still do. I bought the BashBunny a few months ago, love that even more. I even got a project going on with it called the BBTPS to be able to manage multiple payloads from a single switch that is working out great so far. I have been messing with mana-toolkit and even fruitywifi. I decided to get the Nano Tactical Elite because of that. I love the Nano now too. I had a couple of bumps but I got by them pretty quickly. I have a couple of questions. I notice this thing gets hot. Really hot. Has anyone had one of these burn up? My BashBunny gets warm too and even had a member warp the casing of one leaving it in for a very long time but he also had it near a vent on his pc and stuff. Mine got warm too but because of the location I think it gets cooling if I have it in for a bit. (normally I don't). The Nano I had out in open air in a cool room and after while it was extremely hot. Just want to know what to be aware of as a precaution. Next question. I like the Nano for the actual intercepting and the Pine functions but rather offload the MitM stuff to my laptop. I have been seeing articles, even one on here pointing to someone using iptables with the Nano to route traffic to their PC's Burp or Bettercap. I like Bettercap's interface and abilities and tried to replicate this but having issues. Might be my iptable stuff. I see nat tables to route port 80 to 8080. I do not know if they are doing the iptables on the nano or the PC. I looked through the iptables on the nano but man there are a lot. I assume the Pineapple is just forwarding stuff to the PC directly so I should be able to apply these rules to the PC after I use the wp6.sh script to ics. Didn't work as expected. So, question I have is what table rules and on what device will forward my http and https traffic so I can capture it in Bettercap. I know it naturally listens on 8080. I also want to capture https traffic but I figure you do not forward 443 to 8080 or to bettercaps https proxy for ssl stripping (unless I plan on doing a regular proxy in which case the victims will need my bettercap cert) but will need to forward the dns udp 53 to port 5300 for sslstrip to work right. Is that udp protocol? When I netstat my PC while bettercap is running I see a port 5300 from ruby using tcp listening but the udp 5300 at the bottom is just there using process dhclient so do not know if I am doing the DNS proxy nat table right too. Yeah, I am a little weak on my iptabling. I can get by but when it begins to get fancy, I begin to go cross eyed. Took me forever to get a reverse VPN gateway and some test reverse SSH tunnels in my test lab, all with my issues with iptables. Open ports and allowing specific things and modes with iptables, no issue. using tables to forward between multiple machines/devices...yeah, I begin to fall apart. Any assistance can be repaid with my personal help on your BashBunny project if you own one. I believe every good turn deserves another. Last questions. I assume 1 wlan is used for pineap while the other is used for sniffing, injecting and other stuff on the side. Which wlan is used to serve the management AP I see out there? Well, not last question. With this question, does this mean the extra usb wifi that comes with the tactical elite is used to maybe have the pineapple run independent? Like you use the extra plugged in wlan adapter to maybe connect to a router to provide internet without having to be connected to your phone or PC to ICS? Thanks in advance folks. Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.