j0sh112 Posted August 4, 2010 Share Posted August 4, 2010 Just wondering if this has been done before. Have set up my evil wifi as per http://www.h-i-r.net/2009/07/evil-wifi-par...nera-setup.html Was wondering if any has incorporated SET to push the targets to an evil page with a java applet payload for example? Seems like a good idea no? Anyone done this or have any info? Will be trying in the next few days Quote Link to comment Share on other sites More sharing options...
digininja Posted August 7, 2010 Share Posted August 7, 2010 No but as long as you control the DNS and routing then you can send anyone wherever you want them to so should be relatively easy to get working. Quote Link to comment Share on other sites More sharing options...
j0sh112 Posted August 19, 2010 Author Share Posted August 19, 2010 thanks for the reply digininja, expected to get afew more maybe! how could one go about this? I know SET is a great tool for cloning and injecting code into a website but it doesn't store these websites in nice html form. I guess, first thing would be redirecting the dns so im thinking DNS spoofing? After that would be making the webpage itself and injecting it with a metasploit payload.. Any info from anyone would be greatly appreciated! :D Quote Link to comment Share on other sites More sharing options...
digininja Posted August 19, 2010 Share Posted August 19, 2010 If you want to do DNS spoofing you can use http://www.digininja.org/metasploit/dns_dhcp.php SET will clone any site you want and will inject payloads into the cloned version. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.