[Script] [Video] FakeAP_pwn (v0.2.1)

[BlackthornE]

Are you using WiFI N?
Are you in a virtual machine?
Have you updated to the latest version (fakeAP_pwn & dhcp3-server)
Try running with -V so that you can see if anyone is connecting (with their IP and mac address)
)

I running on my pc with a windows xp in vmware with usb wifi, i update the fakeAP_pwn to RC32 and dhcpd3 version is:

root@bt:~# dhcpd3 --version
isc-dhcpd-V3.1.1

the "client" is connecting but stuck in DHCP and loop with this msg:

DHCPDISCOVER from 00:21:e8:34:a9:59 (BlackthornE) via at0
DHCPOFFER on 10.0.0.150 to 00:21:e8:34:a9:59 (BlackthornE) via at0

Fake Access point says:

Got directed probe request from 00:21:e8:34:a9:59 - "Free-WiFi"

The scripts start like this:
[*] g0tmilk's fakeAP_pwn v0.3-RC32
[>] Checking environment...
[i] ESSID=Free-WiFi
[i] fakeAPchannel=1
[i] interface=eth0
[i] wifiInterface=wlan0
[i] monitorInterface=mon0
[i] payload=wkv
[i] backdoorPath=/root/backdoor.exe
[i] metasploitPath=/opt/metasploit3/bin
[i] htdocsPath=/var/www/fakeAP_pwn
[i] mtu=1500
[i] apMode=transparent
[i] respond2All=false
[i] fakeAPmac=set
[i] extras=false
[i] debug=false
[i] verbose=1
[i] gatewayIP=192.168.1.1
[i] ourIP=192.168.1.104
[i] port=27724
[>] Stopping services and programs...
[>] Setting up wireless card...
[>] Changing MAC Address...
[i] macAddress=04:01:02:9a:58:3f (Rco Security Ab)
[>] Creating scripts...
[>] Creating exploit...(Windows)
[>] Creating fake access point...
[>] Setting up our end...
[>] Starting DHCP server...
[>] Starting Metasploit...
[>] Starting Web server...[*] Waiting for target to run the "update"

Wifi N? what do u mean with that?

Thx in advance! and sorry for my english

[slowz3r]

I running on my pc with a windows xp in vmware with usb wifi, i update the fakeAP_pwn to RC32 and dhcpd3 version is:

root@bt:~# dhcpd3 --version
isc-dhcpd-V3.1.1

the "client" is connecting but stuck in DHCP and loop with this msg:

DHCPDISCOVER from 00:21:e8:34:a9:59 (BlackthornE) via at0
DHCPOFFER on 10.0.0.150 to 00:21:e8:34:a9:59 (BlackthornE) via at0

Fake Access point says:

Got directed probe request from 00:21:e8:34:a9:59 - "Free-WiFi"

The scripts start like this:
[*] g0tmilk's fakeAP_pwn v0.3-RC32
[>] Checking environment...
[i] ESSID=Free-WiFi
[i] fakeAPchannel=1
[i] interface=eth0
[i] wifiInterface=wlan0
[i] monitorInterface=mon0
[i] payload=wkv
[i] backdoorPath=/root/backdoor.exe
[i] metasploitPath=/opt/metasploit3/bin
[i] htdocsPath=/var/www/fakeAP_pwn
[i] mtu=1500
[i] apMode=transparent
[i] respond2All=false
[i] fakeAPmac=set
[i] extras=false
[i] debug=false
[i] verbose=1
[i] gatewayIP=192.168.1.1
[i] ourIP=192.168.1.104
[i] port=27724
[>] Stopping services and programs...
[>] Setting up wireless card...
[>] Changing MAC Address...
[i] macAddress=04:01:02:9a:58:3f (Rco Security Ab)
[>] Creating scripts...
[>] Creating exploit...(Windows)
[>] Creating fake access point...
[>] Setting up our end...
[>] Starting DHCP server...
[>] Starting Metasploit...
[>] Starting Web server...[*] Waiting for target to run the "update"

Wifi N? what do u mean with that?

Thx in advance! and sorry for my english

he means 802.11N the newest wireless connection standard for computers and networks,

[joker5bb]

i added hostapd support, so test that out

[ravbyte]

gorgeous, amazing job, with the popularity of the wifi this tool it's excelent, i will probe and come later to give me review, regards.

[BlackthornE]

he means 802.11N the newest wireless connection standard for computers and networks,

My wifi card is:

Intel 802.11a/b/g

[pentest09]

Hi all hope someone can help?

I have used G0tmilks fake_ap_pwn since early versions without the shikata gai_nai payload and up until recently when i run it it seems to just hang with me not being able to get the update page on my vic machine bfore it was working pukka. Now with the recent updates to the script i cant get it to work

running bt4 final
vmware 7 on win7 works in vmware btw before.

ifconfig eth0 up
/etc/init.d/networking start

wlan0 ready all xterms setup and handler waiting on 10.0.0.x etc

before when i connected to the ap i had to type in an http address and the update/patch icon appeared but recently not a thing
and it used to work an give me internet after exploit run.

i have checked the server 127.0.0.1 and 10.0.0.1 and "it works" appears.

but i get forbidden on the wepage now when run on the vic machine.

please help.

[slowz3r]

My wifi card is:

Intel 802.11a/b/g

Then your golden

[elliotdark]

Somehow the script doesn't start my preffered network devices. I choose eth0 with internet and wlan0 and mon0 for fakeAP. But in midst of the process it starts at0 and eth0 is that suppose to happen?

Also wanted to check if the 10.0.0.0 ip ranges are supposed to be changed to my network enviroment?

[joker5bb]

Somehow the script doesn't start my preffered network devices. I choose eth0 with internet and wlan0 and mon0 for fakeAP. But in midst of the process it starts at0 and eth0 is that suppose to happen?

Also wanted to check if the 10.0.0.0 ip ranges are supposed to be changed to my network enviroment?

mon0 and at0 is created for airbase-ng
ip ranges dont really need to be changed, if you want you can

Hi all hope someone can help?

I have used G0tmilks fake_ap_pwn since early versions without the shikata gai_nai payload and up until recently when i run it it seems to just hang with me not being able to get the update page on my vic machine bfore it was working pukka. Now with the recent updates to the script i cant get it to work

running bt4 final
vmware 7 on win7 works in vmware btw before.

ifconfig eth0 up
/etc/init.d/networking start

wlan0 ready all xterms setup and handler waiting on 10.0.0.x etc

before when i connected to the ap i had to type in an http address and the update/patch icon appeared but recently not a thing
and it used to work an give me internet after exploit run.

i have checked the server 127.0.0.1 and 10.0.0.1 and "it works" appears.

but i get forbidden on the wepage now when run on the vic machine.

please help.

are you using the the latest svn?

[BlackthornE]

Then your golden

I need a WiFi /n ?