poisontap icon indicating copy to clipboard operation
poisontap copied to clipboard

Published 20 hours ago verified publisher icon samyk

Stops all internet on the target computer

Open LoomyGloomy opened this issue 7 years ago • 6 comments

When plugged in it can successfully automatically install itself, but it kills the internet on the machine its plugged into. No animation displays, no cookies collected, the browser just reads unable to connect. I followed the installation guide to the letter and have node js current release. Any thoughts?

LoomyGloomy avatar Dec 11 '16 09:12 LoomyGloomy

+1 I am having this same issue

wdibi avatar Jan 05 '17 09:01 wdibi

PoisonTap is supposed to take over the Internet for the computer, however I'm not sure why you're not seeing the animation. Perhaps an iptables rule is needed to forward all HTTP traffic to the PoisonTap IP (1.0.0.1). You could try ssh'ing to [email protected] and running:

echo "1" > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 1.0.0.1:80
iptables -t nat -A POSTROUTING -j MASQUERADE

samyk avatar Jan 05 '17 19:01 samyk

Same issue here. Using Pi Zero with clean lite install + PoisonTap instructions. I get the same result on Win10 or OSX.

DHCP assigns an IP. (e.g. 1.0.0.15) No internet traffic once connected. I can manually open animation via http://1.0.0.1.
But no internet once connected to the Pi. In other words it does not automatically trigger when a web page call occurs as the host just times out.

If I ssh onto the zero via 1.0.0.1, I can ping the IP on the host I am coming from 1.0.0.15 but nothing else. e.g. 192.168.0.15 (the IP of the host on the local lan) or 192.168.0.1 (the router/internet GW on the local LAN). The Pi zero also does not resolve any DNS requests.

root@poisontap:/etc# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 usb0 169.254.0.0 0.0.0.0 255.255.0.0 U 202 0 0 usb0

root@poisontap:~# iptables-save *nat :PREROUTING ACCEPT [1607:104133] :INPUT ACCEPT [376:22338] :OUTPUT ACCEPT [124:7980] :POSTROUTING ACCEPT [0:0] -A PREROUTING -i usb0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 1337 -A POSTROUTING -j MASQUERADE COMMIT

Checked all the required settings and suspect iptables/routing related issue. Bottom line is the host points to the Pi for the internet and the Pi has no route to the internet other than the host its connected to .... that's point back to the Pi.

nlacj avatar Jan 07 '17 10:01 nlacj

I was able to solve this issue by restarting and following these instructions (scroll to bottom).

wdibi avatar Jan 07 '17 12:01 wdibi

Ok, Im editing my comment as per further research looks like the no-internet-while-pt-is-connected is intended and the backdoor should only kick in when the PT is disconnected. Looks like the problem in my case is the caching of the backdoor.

KALRONG avatar Jun 02 '17 07:06 KALRONG

So, any solution to this issue? As soon as i connect the rasp, my internet connection goes out. Indeed it syphons cookies, but with an internet connection would be more realistic. I noticed that i only have the route on the script, the 0.0.0.0/0 gw 0.0.0.0. Tried to change the gateway, the OS broke. Anyone has an idea?

himuura avatar Nov 16 '17 15:11 himuura