Jump to content

Fully automate your recon, de-authing, handshake capturing and cracking!


sailboatanon

Recommended Posts

Posted

This simple PHP script is an aggressive war-driver for the Hak Wifi Pineapple Mark VII to fully automate your recon, de-authing and handshake capturing. Turn this thing on, take your Pineapple for a walk around town, and collect those handshakes without any effort.

Pair this with ohc-api.sh to auto-submit your captures to onlinehashcrack.com for free, hands-off cracking. Just run it on a cron and check your inbox 🙂

https://github.com/sailboat-anon/wifi-pineapple-war-driver

Posted

Many thanks for the ohc-api.sh. That works great ! 

However, as regards the war-driver php script, could you please explain how to use it ? Maybe my question can look a bit stupid but I have no clue how to use/install it on the pineapple. Many thanks by advance  

Posted

Sure, friend.  This can (should) be run from your local machine and not on the Wifi Pineapple itself.  It utilizes the Hak5 REST API to make calls to the device in a workflow derived specifically for aggressively capturing handshakes. 

Requirements - PHP 7+

Install:

git clone git://github.com/sailboat-anon/wifi-pineapple-war-driver.git

nano war-driver.php

Modify $config to match the server, port, username, password for your Wifi Pineapple.

Use:

php war-driver.php

This workflow is started:

- set pineAP settings to AGGRESSIVE, broadcasting, allowing connections, auto-restart, etc
- run recon for 90 seconds, identify all APs with associated clients
- start handshake capture
- de-auth all clients related to AP, repeat 20 seconds later; total 2 mins
- handshakes captured, available for use
- repeat: move to next AP with associated clients, de-auth, etc.
  • 2 weeks later...
  • 1 month later...
Posted

Unzip the folder go to > wifi-pineapple-war-driver-master>war-driver.php (WITH NOTPAD++)Or what ever you like n

 

$config = array(
    'server_ip' => "172.16.42.1",  nothing to change 
    'server_port' => 1471,   here put the "" >"1471"
    'admin_user' => "root", leave it alone 
    'admin_password' => "password" Your pass to login.... save it 
 

then open a terminal type " war-driver.php " and should be good to go for a drive 😛

  • 10 months later...
Posted

Having some trouble running this on windows machine... Could someone help?

The pineapple is connected with usb-c and i got it to work connecting normally with the browser, so it works.

I have change the password for the .php file aswell.

I have downloaded the php 8.1.2, VS16 x64 Non Thread Safe (2022-Jan-19 10:43:46).

 

When i try to run it i get this error. 

C:\php>php.exe war-driver.php
> Starting war-driver.php by sailboatanon
> https://github.com/sailboat-anon/
> Enabling pineAP (AGGRO settings)

Fatal error: Uncaught Error: Call to undefined function curl_init() in C:\php\war-driver.php:149
Stack trace:
#0 C:\php\war-driver.php(191): authenticate()
#1 C:\php\war-driver.php(63): authorized_put('/api/pineap/set...', Array, 'Enabling pineAP...')
#2 C:\php\war-driver.php(67): set_aggro()
#3 C:\php\war-driver.php(43): run_scand()
#4 {main}
  thrown in C:\php\war-driver.php on line 149

 

What is your thought?

 

Posted

You probably got some answers or suggestions on Discord, but most likely you need to enable curl on the Windows machine. At least "historically", it hasn't been enabled by default on new PHP installations. Check the php.ini file and remove the semicolon in front of any line that indicates curl functionality.

  • 5 months later...
Posted
On 1/10/2021 at 7:08 PM, sailboatanon said:

Sure, friend.  This can (should) be run from your local machine and not on the Wifi Pineapple itself.  It utilizes the Hak5 REST API to make calls to the device in a workflow derived specifically for aggressively capturing handshakes. 

Requirements - PHP 7+

Install:

git clone git://github.com/sailboat-anon/wifi-pineapple-war-driver.git

nano war-driver.php

Modify $config to match the server, port, username, password for your Wifi Pineapple.

Use:

php war-driver.php

This workflow is started:

- set pineAP settings to AGGRESSIVE, broadcasting, allowing connections, auto-restart, etc
- run recon for 90 seconds, identify all APs with associated clients
- start handshake capture
- de-auth all clients related to AP, repeat 20 seconds later; total 2 mins
- handshakes captured, available for use
- repeat: move to next AP with associated clients, de-auth, etc.

Hey,

Ok, so I really want this to work but I cant seem to get it.

I have Kali on a raspberry pi 4, with an RTL8812AU and the Pineapple MK7 plugged in I've got my android phone VNCed to the Pi so I am ready to ride but... I can't seem to run this thing.

I have installed both war-driver.php and made the mods so that the ohc-api.sh runs but everytime I run the php war-driver.php script I get the same thing as ziggy over there.

└─$ php war-driver.php
> Starting war-driver.php by sailboatanon
> https://github.com/sailboat-anon/ 
> Enabling pineAP (AGGRO settings)
PHP Fatal error:  Uncaught Error: Call to undefined function curl_init() in /home/kali/wifi-pineapple-war-driver/war-driver.php:149
Stack trace:
#0 /home/kali/wifi-pineapple-war-driver/war-driver.php(191): authenticate()
#1 /home/kali/wifi-pineapple-war-driver/war-driver.php(63): authorized_put()
#2 /home/kali/wifi-pineapple-war-driver/war-driver.php(67): set_aggro()
#3 /home/kali/wifi-pineapple-war-driver/war-driver.php(43): run_scand()
#4 {main}

  thrown in /home/kali/wifi-pineapple-war-driver/war-driver.php on line 149

 

Then line 149 reads:

 

-->149)    $ch = curl_init($endpoint); 
    
    $post = json_encode(array('username' => $config['admin_user'], 'password' => $config['admin_password']));
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($ch, CURLOPT_POST, 1);
    curl_setopt($ch, CURLOPT_POSTFIELDS, $post); 
    curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json'));
    $result = curl_exec($ch);
    if ($result === false) { 
        echo "cURL Error: " . curl_error($ch) . "\n"; die();
    }
    elseif(curl_getinfo($ch, CURLINFO_HTTP_CODE) != 200) {
        echo "Error: " . (curl_getinfo($ch, CURLINFO_HTTP_CODE)) . (curl_error($ch)); die();

 

The only thing I can think of that is throwing everything off is that I have the 32-bit version of Kali installed and I think there is a conflict with the dependencies which requires the 64-bit.

Should I start my whole build over again and run the 64 instead? Will this fix the issue, does anyone know?

  • 2 weeks later...

Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...