Jump to content

Recommended Posts

Posted

Decided to to test the nano pineapple left it on for about 5hr with the evil portal on so as soon as someone connects they would have to enter their gmail credentials to my surpise i have ended up harvesting 108 devices with google accounts people just dont think nowadays at all, obviously i deleted the logs but it caught me completely off guard the amount of accounts ive got. Pay attention where you guys connect!

https://pasteboard.co/HkZNJKbb.png

 

Posted

Where did you put your PineAP? Cafe/restaurant?

Yeah, 4G networks are pretty fast these days and I've got a decent data plan so I never need to connect to anything if I'm out and about - never did it before that either, for obvious reasons. If I'm out at at cafe or something and glance at all the SSIDs nearby it's quite suspicious to see multiple SSIDs saying different names of the same place, like: "**** Free WiFi", "**** FREE WI-FI" etc. That's when you have a look around you, see if anyone's got a box hiding near their bag or on the desk or somewhere.

Or you could do a cheeky deauth and troll him.

Posted (edited)
17 hours ago, Badnbouje said:

i have ended up harvesting 108 devices with google accounts

Thats 108 DHCP leases - granted they connected but I doubt you got Google creds from every connection.  Either way congrats on admitting to your illegal activity on a public forum ?

Edited by Just_a_User
Posted (edited)
2 hours ago, Just_a_User said:

Thats 108 DHCP leases - granted they connected but I doubt you got Google creds from every connection.  Either way congrats on admitting to your illegal activity on a public forum ?

He proving a point that  some people are way to trusting and always in public for the looking for free wifi so that why you should warn people you know about being aware where they connect to get online

Edited by fernandoblazin
Posted
28 minutes ago, fernandoblazin said:

He proving a point that  some people are way to trusting and always in public for the looking for free wifi so that why you should warn people you know about being aware where they connect to get online

I know what hes doing ? in the eyes of the law (in most countries) it doesn't make it any more legal though ? unless he asked the people who were connecting to his AP for permission first.

The same lesson could be taught to users by asking them if they wanted to take part in a security test before and then demo it to them. Then informing them how best to mitigate the risk in the future.

Coming on the pineapple manufacturers public forum telling people who most likely already have a pineapple or are already aware of the possibilities of wifi hacking isnt likely to teach anyone anything new. so what was the point? most likely (exaggerated) bragging rights. Not cool man, not cool.

Posted
3 hours ago, Just_a_User said:

I know what hes doing ? in the eyes of the law (in most countries) it doesn't make it any more legal though ? unless he asked the people who were connecting to his AP for permission first.

The same lesson could be taught to users by asking them if they wanted to take part in a security test before and then demo it to them. Then informing them how best to mitigate the risk in the future.

Coming on the pineapple manufacturers public forum telling people who most likely already have a pineapple or are already aware of the possibilities of wifi hacking isnt likely to teach anyone anything new. so what was the point? most likely (exaggerated) bragging rights. Not cool man, not cool.

What is there even to brag about or show off? Like i said to me its just mindblowing thats pretty much it not trying to teach anything new here just Facts

Posted (edited)
14 minutes ago, Badnbouje said:

What is there even to brag about or show off? Like i said to me its just mindblowing thats pretty much it not trying to teach anything new here just Facts

The post could have gone along the lines of "I still find it amazing how many people use public open wifi and enter in credentials without checking for https or using a VPN etc". But instead you claim harvesting 108 devices with google accounts along with a screenshot.

All im trying to suggest to you is if your going to do things that are not 100% legal its probably not the best idea to post about them on a public forum. Or even do them in the first place.

Edited by Just_a_User

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...