Network Hacking From Android - Network Spoofer

[Will Shackleton]

Hey there, I've recently finished a project called Network Spoofer. It's an application which lets you run arpspoof attacks and other fun hacks from Android, messing with people's internet from your phone.

The main feature is that similar to the Upside-down-ternet project: from the phone you can flip pictures on someone's computer upside down. It can do a few more things such as website redirecting and Google search changing, and I hope to add more features soon.

If anyone wants to contribute to the code, here are the hosted projects:

Launchpad (main project - primarily used)

Sourceforge

This program works well in combination with Shark for Android - combined they allow you to capture packets when logged onto wifi networks.

I hope this works for you - if you have success / no luck / questions, please post in this thread. If you find this doesn't work, please post here / Email / PM me with details and (if you know how) a log output from the application (adb logcat); the tag is 'android-netspoof'.

Currently confirmed working devices:

• Nexus One - thoroughly tested with CM7 - Android 2.3.3
  
• T-Mobile G1 - also tested with CM6 - Android 2.2
  

Installation:

Simply install from the Android Market (on a device running >2.2), and download the setup files from the application. This requires about 600MB free SD card space. The program needs the phone to be rooted, and have busybox (most custom firmwares have this). Once it's done, it takes only a few seconds to get it running.

Enjoy! :D

Will Shackleton

digitalsquid.co.uk

[Jamo]

It looks great, Can't wait till I can test it. I got Lg optimus 2x, with stock rom, 2.2 Where you would like me to report weather it works, from androidmarket, send email to developer or where?

Thanks for posting this here.

Doesnt work yet, does it require bash, which is included in cyanogen mods? Stock LG doesnt have it.

Edited July 19, 2011 by Jarmo

[iisjman07]

600MB? Daaaamn I'm gonna need a bigger SD card :D

[Will Shackleton]

600MB? Daaaamn I'm gonna need a bigger SD card :D

Yeah, I know. Inside it's a debian image which contains squid (a proxy, used to modify data), perl, imagemagick (image processing tools) and all the other debian toolkit. The program then chroots into this image on the SD card.

[CompleteTech]

any quick how to's for a n00b???

[Jamo]

I could say, that if you have any knowledge about mitm (man in the midde) ie. you know the idea, you can use that app.

BTw doesnt work with stock rom, 2.2.2 lg optimus 2x but works with CM7 nightlys.

[m1k]

Confirm is working flawlessly on Huawei u 8150d

Using Dronix 0.5 rom (Android 2.2.2)

Good work...indeed!

:)

[Scorpion]

I have got this working on the HTC Hero running Villainrom - 2.2

It had trouble extracting but it managed to sort it self out.

It doesn't grab all the traffic (even if set to one machine) but i think thats because of how slow the phone is.

I do like it though and hope you do carry on with this and you never know it might get on the show (hope so)

[Encrypt]

I have a HUAWEI-M835 and flashed with this ROM Mate5: Here And I can't get this to work, Im on wifi and have BusyBox Pro installed and Rooted. And I know all about ARP, DNS Spoofing, Mitm attacks Etc. So I know I'm doing everything right, Settings etc. If someone could let me know if there is a way to fix this on this phone. Or if its not even compatible with my ROM please let me know, I would love to get this to work.(And its not giving any Errors,It SHOULD be working, But its just not.) Thanks.

[barry99705]

Damn, won't work on my atrix... Also doesn't work on a HTC Flyer.

Edited January 14, 2012 by barry99705

[Oijh]

Happen to know any android tablets that support this software?

[JZL]

works like a charm. My device is ZTE Blade/San Francisco whit cyanogenmod 7. Just had to sign in to say THANKS. :)

[marm]

Nice virus dude

[Radau]

Nice virus dude

Your forum ranking is about correct.

Edited April 26, 2012 by Radau

[l1ncoln]

I will be testing this on my HTC Rezound (Rooted). Hope fully it works! Nice Job.

[vdub]

Dude this is brilliant.

I’m glad I have spare battery, I'm going to need them.

Works great on my Galaxy Note.

[vdub]

Maybe a feature request or just a cool idea. Wouldn’t aireplay-ng be great on this for deauthing.

Could help out in a quarantined attack.

[Qubit!]

I found an amazing how to on creating custom scripts to add and overall how network spoofer works, check it out: http://tech-ape.com/network-spoofer-re/

[l1ncoln]

I am testing this out on my HTC Rezound (rooted) (busybox) (ICS) (Sense) and I am running into a couple of issues, it doesn't really give me any errors or anything but it doesn't execute the attacks very well. The download worked fine and I can start the app up but when I select a device to perform the attack on it just opens up a page like this:

Any ideas on what is going wrong or anything you want me to do to help you further test it out? Do you need a logcat?

[dwek]

Worth a look at this $49 Android device if you are after a cheap environment.

http://apc.io/about/

http://www.pcmag.com/article2/0,2817,2404770,00.asp.

[checksum420]

Wow, this works absolutely perfectly!!! 10/10!! Love it!

Can somebody show me how to set up SSLstrip with this? Would you have to redirect the traffic through your phone, and then use SSLStrip as a separate application somehow? I'm fairly new to this, but have a little experience with linux networking.

Using shark, I don't think you would get SSL packets like you would with SSLstrip.

Edited June 7, 2012 by checksum420

[vdub]

Wow, this works absolutely perfectly!!! 10/10!! Love it!

Can somebody show me how to set up SSLstrip with this? Would you have to redirect the traffic through your phone, and then use SSLStrip as a separate application somehow? I'm fairly new to this, but have a little experience with linux networking.

Using shark, I don't think you would get SSL packets like you would with SSLstrip.

The program is nothing but scrips that run on a Debian image. There is no reason why sslstrip wouldn't work. The modified version for a Linux PC uses sslstrip. You would have to compile and install sslstrip on the Debian image and then modify the scripts to use it.

[checksum420]

K. By the way, works great on my samsung stratosphere android 2.3

Also redirecting all traffic does not work. I'm assuming you used dnsmasq, but there's a bug. If I tell it to forward all sites to "zombo.com", and I go to my computer and go to google, I see a white page with the title "ZOMBO" but the page does not load. Just FYI.

[killerbee]

works fine on my IQware qw tb-1207 WH runs andriod 4.03 intertoys tablet for 100 euro`s

is there any more for the andriod

[ebolla]

This works great on my Galaxy s2 and i have to say "THANK YOU" this is an awesome and fun little tool... and i has made my roommates hair turn grey!!