Search the Community

Hi all, I'm quite new to wireless sniffing. I just received a wireless adapter (Atheros AR9271 2.4 Ghz USB WiFi Wireless Adapter) and want to try man-in-the-middle type attacks at home, using kali Linux in VirtualBox on my Mac. I've set the USB ports to be accessible from the VM, and then used the adapter to connect to my wifi from the kali VM. I've set packet forwarding using echo 1 >> /proc/sys/net/ipv4/ip_forward. Then, I'm launching the two arpspoof commands from two terminal windows: "arpspoof -i wlan0 -t 192.168.1.1 192.168.1.24" and "arpspoof -i wlan0 -t 192.168.1.24 192.168.1.1", knowing that these are respectively my router's and my phone's local IPs. The commands seem to run properly (I'm having an output that look similar to the ones on any tutorial on arpspoofing on both terminals). But when trying to navigate the web from my phone, some pages load (Facebook, Google), but most don't (BBC or Amazon for instance). In any case, nothing appears when I trying to use "urlsnarf -i wlan0" on a new terminal, nothing appears apart from: "urlsnarf: listening on wlan0 [tcp port 80 or port 8080 or port 3128] ". I'm using the latest version from Kali Linux (2019_3) and MacOS (Catalina). Would anyone have an idea of what I'm doing wrong? Could this be a hardware issue? Thank you very much for any help! Best, Paul

Today, if I want to arpspoof a physical machine form a VM, I have to arpspoof from the physical adapter (wlan0), not from the virtual eth0. Before (like one month ago), I was able to arpspoof a physical machine even when I arpspoof from the virtual eth0. Why does it not work today ? I've tried with my old snapshot and it's not working. I tried on vmware and virtual box too.

Hello everybody! I connect to openvpn server and try to arpspoof a host in this network. When i type : I got an error : I can ping VPN computers from my wlan0 interface. It answer OK. But when i run : I recive error: Do you have any ide how i can do this ?

Hey, i tried using arpspoof within the official Kali Linux RPi3 / and Raspbian Image. This command sudo arpspoof -i eth0 -t targetip gatewayip works fine on both but if i use wlan0 sudo arpspoof -i wlan0 -t targetip gatewayip if get this error(on Kali AND Raspbian): libnet_write_link(): only -1 bytes written (Invalid argument) i have no idea why...seems that only a few people have this problem and they havent found a way to fix it. hope you can help me.

ARP Spoof not working. It delivers a DoS instead. What am I doin' wrong? In Kali Linux: iptables --flush iptables --table nat --flush iptables --delete-chain iptables --table nat --delete-chain echo "1" > /proc/sys/net/ipv4/ip_forwarding iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080

Hi I was always able to do a mitm attack targetting a specific IP and using sslstrip, ettercap, arpspoof, ... But today I tried (for the first time) to do the whole network at once and it was like sslstrip wasn't doing anything. No errors whatsoever and yet all I could see was the usual "sslstrip 0.9 by Moxie Marlinspike" and then nothing. When I target one computer I usually do something like: echo 1 > /proc/sys/net/ipv4/ip_forward iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000 sslstrip -a -k -f arpspoof -i wlan0 -t <targetIP> -r <gatewayIP> ettercap -Tq -L etterlogs -i wlan0 urlsnarf -v -i wlan0 and it works. To do the whole network I tried the same only replacing the <targetIP> by the Bcast (ie 192.168.1.255). I think one time it said "couldn't arp for ..." So then I tried method 2: echo 1 > /proc/sys/net/ipv4/ip_forward iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 10000 ettercap -T -q -i wlan0 -M ARP:REMOTE // // sslstrip -a -l 10000 urlsnarf -i wlan0 It ran I think but nothing happened and I couldn't see the traffic. What am I doing wrong? I'm not very experienced at this and if anyone knows a better way to do an sslstrip on the whole network I'd be grateful. I have the latest version of Kali btw. Cheers

Hey guys, Sorry if i put this in the wrong category. I'm trying to use ssl strip + arp spoofing. I do exact the same like on every tutorial. But once everything is done, my victim has no internet. He can't load the page! If i just arp spoof my target, use something like urlsnarf. Everything works fine... Can someone please help me, i'm searching a while for a solution. By the way, sorry for my bad english. :(

Hi, I hace actually a problem for use arpspoof in broadcast to my gateway ( arpspoof -i eth0 192.168.0.254 for example).When I start this command I don't have nothing but if I try to launch this command in Backtrack 5 R3 all work perfectly.... I have already reinstalled my Operation system (Kali) What is a problem? Thanks you

I have installed dsniff on my linux laptop (linux mint 14, nadia) and have figured out how to use arpspoof/ettercap to deliver an ARP poison. The problem: whenever I deliver the attacks to the devices that I am test-attacking (usually my other laptop or smart phone via wifi), their internet connections merely stop working! When I killall arpspoof, the internet on the test machines goes back to working. I cannot figure out what I am doing wrong! For people who want more detail (arpspoof method I use): 1. set up port forwarding by editing the /proc/sys/net/ipv4/ip_forward file 2. change the iptables by issuing a really long command that i dont feel like entering here but starts with "iptables -t nat -p tcp ... " 3. ARP poison by saying "arpspoof -i wlan0 -t <target> <router> *** THIS IS WHERE THE TEST MACHINES' INTERNET STOPS WORKING *** 4. ARP poison by saying "arpspoof - wlan0 -t <router> <target> 5. continue with attack using other tools. Note: This sort of works when I do it through backtrack5 on virtualbox, but it only works if I attack my host machine, if I try to attack any other device on the network, it does the same thing as above: the internet stops working on the target machine until I stop arpspoofing. How can I fix??