Pineappled Posted February 14, 2022 Share Posted February 14, 2022 Hey guys new to the wifi pineapple, just wondering if it was possible to trigger a download of a .APK file on android or .exe on windows from the pineapple itself or from a remote server on the auth page? Tried but can't seem to figure it out. Thanks for any help Link to comment Share on other sites More sharing options...
Sgt.Foose Posted March 18, 2022 Share Posted March 18, 2022 You can search for .ipk's and use "opkg install ./mdk4_4.2-1_mipsel_24kc.ipk" Link to comment Share on other sites More sharing options...
dark_pyrro Posted March 18, 2022 Share Posted March 18, 2022 It's not ipk's in this case, it's non-pineapple-related. In other words; not installing on the Pineapple itself (where ipk's are used since it's OpenWrt) but make the connected client to download an installer package/executable (apk, exe, or whatever) that fits the connected device and install it. This is the basic flow of the intended idea as I see it: 1) Client connects to Pineapple AP 2) Client is greeted with whatever page the EP is serving the client 3) When the user of the connected client does something on the EP page, it should trigger a download of an APK, EXE or such depending on the client architecture 4) The APK/EXE/? should then be installed on the client device (not the Pineapple) The last step is the hard part since there are a number of obstacles to pass to be successful (if even possible at all). Also, getting the download to be accepted can be tricky and will probably need its fair share of skills when it comes to some form of social engineering. The Cliqq evil portal (from Kleo) has an APK download button. But, speaking of obstacles, getting an APK installed on a standard Android device won't be that easy. Link to comment Share on other sites More sharing options...
Sgt.Foose Posted March 21, 2022 Share Posted March 21, 2022 On 3/18/2022 at 11:26 AM, dark_pyrro said: It's not ipk's in this case, it's non-pineapple-related. In other words; not installing on the Pineapple itself (where ipk's are used since it's OpenWrt) but make the connected client to download an installer package/executable (apk, exe, or whatever) that fits the connected device and install it. This is the basic flow of the intended idea as I see it: 1) Client connects to Pineapple AP 2) Client is greeted with whatever page the EP is serving the client 3) When the user of the connected client does something on the EP page, it should trigger a download of an APK, EXE or such depending on the client architecture 4) The APK/EXE/? should then be installed on the client device (not the Pineapple) The last step is the hard part since there are a number of obstacles to pass to be successful (if even possible at all). Also, getting the download to be accepted can be tricky and will probably need its fair share of skills when it comes to some form of social engineering. The Cliqq evil portal (from Kleo) has an APK download button. But, speaking of obstacles, getting an APK installed on a standard Android device won't be that easy. Ah interesting, I didn't read the question correct. As I was typing this, I was investigating Storm-Breaker and fiddling with steganography to make an image trigger the target to get screenshots from a mobile phone. I got it to work but need to deal with the Target that has to accept the use of it's webcam or microphone everytime they receive a Stego Picture. I guess the Poster will need to deal with the same problem at some point right? Follow +1 Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.