Jump to content

Mitm Help


carcar1

Recommended Posts

I've been messing with transparent rouge ap's but I have tried 3-4 guides. 2 being scripts and some manual. One was uncompleted where it involved iptables but I didnt want to pick and choose guides. Can anyone point me to a guide that works 100%? This is to test on my own home. I have 2 wireless cards both are atheros packet-injecting ready. I am not a noob to cracking wifi and such but when it comes to ap's I've never had any support. Also can Jasaga work on bt4f? I want a fon but I dont want to spend money when I'm sure there are ways to do it on my laptop.

Thanks Carcar1
Link to comment
Share on other sites

If you are trying to make your machine an access point then I suggest bridging your wireless adapter to a wired conenction and then just run wireshark to sniff the adapters traffic as people connect through you to the wired internet connection. I gues syou coudl to it with two wireless adapters as well, but if you already have a wirelss router, just let people connect to it, then do a normal mitm via arp poisoning and you can see everything there as well.

Link to comment
Share on other sites

@c0r that was some good stuff, I'll check more out later. Also his rouge ap script doesn't work for me for some reason :(

@digip- I was going for more of a Jasaga based approach. Is it possible to get something similar to Jasaga on a Laptop?

Edited by carcar1
Link to comment
Share on other sites

@c0r- I found a guide that works for karmetasploit :) Paired with airdrop-ng my client won't ever see light of day now. BUT karma is running and its logging some goodies but I dont see any passwords? Would ssl strip work?

*The guide shows how to allow people to passively connect I know airdrop-ng can nullify that. However I want it so they are forced upon being de-authed to automatically hop onto my karma ap.

Edited by carcar1
Link to comment
Share on other sites

@c0r that was some good stuff, I'll check more out later. Also his rouge ap script doesn't work for me for some reason :(

@digip- I was going for more of a Jasaga based approach. Is it possible to get something similar to Jasaga on a Laptop?

I think jasegar is based on doing just what you ask. I think(dont quote me on that) its called Karma or karmetasploit in Back Track, where it uses one nic as an access point (SSID) and then mitm's all the traffic when people connect through it, but I have no experience with it.

Link to comment
Share on other sites

Okay I know what CAN do it. But I need to know HOW to do it. Right now I have a client hooked up to a karmetasploit acces point. When the client goes to a website it comes up "Loading....." I want it to go to the site and then I want the password if it had ssl. I have done it before with arp poising but I want to do it with karma now.

Link to comment
Share on other sites

Okay I know what CAN do it. But I need to know HOW to do it. Right now I have a client hooked up to a karmetasploit acces point. When the client goes to a website it comes up "Loading....." I want it to go to the site and then I want the password if it had ssl. I have done it before with arp poising but I want to do it with karma now.

To get the pass onan SSL site you need something like SSL strip as well. Not sure if Karmetasploit can do that too though.

Link to comment
Share on other sites

So I'm guessing arpspoofing and ssl strip as displayed in one of the episodes is my only bet?

Unless you know some other way to bypass SSL, then I would try Arp Spoofing + SSL Strip.

Link to comment
Share on other sites

I figured it out. I simply used arpspoof to mix up some arp replies and then I use wireshark to see none encrypted stuff and use ssl strip to get the goodies.

Sounds good to me!

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...