Tuesday, 21 February 2017

sniffing attack on Kali-Linux

[caption id="" align="aligncenter" width="610"] sniffing attack on https[/caption]
Hello , good night .. now i will share about sniffing attack on kali-linux, what is sniffing? you can check on wikipedia or google.com oke what we need ??
  1. Ettercap
  2. Driftnet
  3. iptables
The First : [code]echo 1 > /proc/sys/net/ipv4/ip_forward[/code] [code]iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-por 10000[/code] What next?? you must know IP target , how i get the ip target? you can scan with nmap, autoscan, IPscan , what ever :p [code]ettercap -T -q -i wlan1 -M ARP / // output:[/code] ok , i use interface wlan1, and my target is when your target login, with http or https, you can get the password like this [caption id="" align="aligncenter" width="733"]ettercap - sniffing Pwned[/caption]   Just it?? no , i have the surprise LOL,we will take over the victim browser with driftnet , Put this code on your terminal, and enter! [code]driftnet -i wlan1[/code] my interface is wlan1. you can check your interface with type ifconfig , if your driftnet work, you will get image like this [caption id="" align="aligncenter" width="1024"] capture image with driftnet[/caption]
The target open google chrome and search all about BAYERN MUNCHEN
HOW Ettercap and Driftnet Work??? Ettercap works by putting the network interface into promiscuous mode and by ARP poisoning the target machines. Thereby it can act as a 'man in the middle' and unleash various attacks on the victims. Ettercap has plugin support so that the features can be extended by adding new plugins. This is my POC / Proof Of Concept about MITM / sniffing attack   [caption id="" align="aligncenter" width="630"] POC MITM[/caption]  
LIKE IT? SHARE IT , REFERENCE > http://en.wikipedia.org/wiki/Ettercap_(software)

1 comment:

  1. command :: ettercap -T -q -l wlan0 -M ARP / / output:

    ettercap 0.8.2 copyright 2001-2015 Ettercap Development Team

    Incorrect number of token (///) in TARGET !!

    whats the problem ? i got this error