samy kamkar
samy kamkar
Great idea! I haven't tried it, but agree supporting WPAD on the DHCP and DNS server would be great...in fact, by injecting a PAC, you could then get the user...
The reason I mention DHCP is that A) typically the WPAD DNS request is only done on browser startup in my understanding and in our case the browser is already...
I haven't tested the code I wrote in there, but what happens when you use it? Specifically what happens in the Network tab of your browser inspector? Do you seem...
@clankill3r I doubt Windows Update would be susceptible as I'm assuming the updates themselves are signed, and likely the communication itself is protected, but there may be other vulnerabilities. You...
The WebSocket will only open after you remove PoisonTap. There's no need for the WebSocket while it's plugged in as you can issue all your commands through the Pi --...
Thanks! Though I love ambiguity :)
Not sure if more people are on IRC (freenode) or Slack -- do most users have a preference?
@TheOncomingStorm is correct, it is technically possible, but most everything except the client side Javascript code would likely need to be rewritten. Additionally, one of the critical pieces (Ethernet gadget...
Screenshot/link? I suspect they only recently added PoisonTap's code.
pi_startup.sh is definitely running if you see dnsspoof running. Are you running node v6? You can `sudo screen -r node` and see what it says, that's the node poisontap server.