search

wismna / HackPi

Hacking tool inside a Raspberry Pi zero
303 stars 57 forks source link

Guide for only running Responder #12

Open derrabe opened 7 years ago

derrabe commented 7 years ago

Hi, I was wondering what needs to be disabled/commented out to just run Responder to capture the creds (i.e. not run PoisonTap) ?

Is it a matter of just commenting out the following lines in rc.local?

/sbin/sysctl -w net.ipv4.ip_forward=1 /sbin/iptables -t nat -A PREROUTING -i br0 -p tcp --dport 80 -j REDIRECT --to-port 1337
/usr/bin/screen -dmS dnsspoof /usr/sbin/dnsspoof -i br0 port 53 /usr/bin/screen -dmS node /usr/bin/nodejs /home/pi/poisontap/pi_poisontap.js

Thanks for the great work!

wismna commented 7 years ago

Hi,

To disable PoisonTap and leave only Responder, set rc.local as follows:

# Start the DHCP server
#/sbin/route add -net 0.0.0.0/0 br0
/etc/init.d/isc-dhcp-server start
# Set some other paramaters
/sbin/sysctl -w net.ipv4.ip_forward=1
#/sbin/iptables -t nat -A PREROUTING -i br0 -p tcp --dport 80 -j REDIRECT --to-port 1337
# Start some servers
#/usr/bin/screen -dmS dnsspoof /usr/sbin/dnsspoof -i br0 port 53
#/usr/bin/screen -dmS node /usr/bin/nodejs /home/pi/poisontap/pi_poisontap.js

But please not that I haven't tested it yet. Let me know how this goes!