Viewing 14 posts - 1 through 14 (of 14 total)
  • Author
    Posts
  • #52353
    akademikane
    Participant

    Hi teacher,

    Is there any way we can give them internet access so when fake captive portal gets displayed after they enter the password they also get a pop up saying update your network, click here to update so we give them a backdoor ?

    #52370
    Diego PérezDiego Pérez
    Moderator

    Hi!
    Fluxion is the closest tool to do the Captive Portal attack and at the end give internet connection to the user:
    https://github.com/FluxionNetwork/fluxion/wiki/Captive-Portal-Attack

    And yes, you can also give them a backdoor with the network update, in this case you’ll need to have some web development skills in order to modify the html page and serve a backdoor to the client.

    Greetings!
    Diego

    #52375
    akademikane
    Participant

    So as I know fluxion is a program which checks if the entered password on the web is correct then they give access to the itnernet, is that right ?

    #52406
    Diego PérezDiego Pérez
    Moderator

    Hi!
    According to the documentation (in the link I sahred above) they said that after checking the password the victim will be to connect to the real AP.

    Greetings!
    Diego

    #52468
    akademikane
    Participant

    Dieo I understand it, but what If we want when they click in the fake ap we give them a page so they enter the password and after it we gvie them a page you have to update this network and they click and get the backdoor ?

    #52500
    Diego PérezDiego Pérez
    Moderator

    Hi!
    It can be done but not with fluxion, because you’ll need to modify it’s code, i haven’t tried it but it might be possible. So the easiest way would be to do it manually, as the fake captive portal attack, but you’ll need to do some modifications to the fake login page as well to serve the fake update, for this you’ll need some web development skills.

    Greetings!
    Diego

    #52529
    akademikane
    Participant

    I can modify but, which one do you recommend me because as you know to install something needs internet connection, so with fake captive protal no internet is there, any idea Diego ?

    #52534
    Diego PérezDiego Pérez
    Moderator

    Hi!
    In such case you need to give them an already backdoored executable, something that pop-up as normal a normal update. I know that for a cpative portal this is not normal but you should make it look like it is, so creating a custom installer would be the option here. To make it more real it will have to display the companies logo and stuff like that. The executable doesn’t have to do anything at all, I mean to the the system, it will be just a dummy executable that display brands logo, some info and a loading bar but in the background it will run the malware.

    Greetings!
    Diego

    #52550
    akademikane
    Participant

    Yes but we know that there is no internet connection when the captive protal is loaded.

    #52621
    Diego PérezDiego Pérez
    Moderator

    Hi!
    That doesn’t matter, the file will be stored in your local machine, so there’s no need for internet connection.

    Greetings!
    Diego

    #52684
    akademikane
    Participant

    Yes but when we give them a backdoor and they can’t even download it because there is no internet connection in captive portal.

    #52766
    Diego PérezDiego Pérez
    Moderator

    Hi!

    As mentioned, the file is stored in your machine, and by file I mean the backdoor, so again, there’s no need for internet connection. Do you get what I mean?

    Let me know.
    Diego

    #52772
    akademikane
    Participant

    I am so sorry but I did not.
    We can’t even download anything if we don’t have internet conenction.

    #52905
    Diego PérezDiego Pérez
    Moderator

    Hi!
    As the file is gonna be stored in the kali machine, attacker machine, and apache server is running, then there’s no need for internet connection, any device connected to the fake captive portal will be able to connect to kali’s apache server an it can download a file stored in the local server, you don’t need internet to download a file from the local host. Do you understand the situation I’m raising?

    Greetings!
    Diego

Viewing 14 posts - 1 through 14 (of 14 total)
  • You must be logged in to reply to this topic.