RazerBlade Posted November 18, 2017 Share Posted November 18, 2017 I have a payload idea for the packetsquirrel. The idea is to use the bashbunny or the rubberducky to install a certificate in a victims computer. Then deploy the packet squirrel to be able to decrypt all https traffic. I'm just wondering two things, first, does anybody know any decent mitm program that the packet squirrel can actually run? I have looked at bettercap but it runs on ruby so I'm unsure if it will work with the packet squirrel. I have also looked a bit into mitmproxy but I found the documentation vague. If it can't be run the packet squirrel, maybe you could connect the bashbunny to it to perform the mitm attack. Quote Link to comment Share on other sites More sharing options...
Dave-ee Jones Posted November 20, 2017 Share Posted November 20, 2017 A decent MITM program..The Packet Squirrel itself is the MITM. The PS doesn't have the power to decrypt traffic, sadly. However, you could use the Bash Bunny/Rubber Ducky to configure the PC to receive certain packets from the PS, interpreting them into commands or even just simpler things like doing Network Administrator attacks on the PC. What you're saying isn't impossible. You could even write your own proxy server in python if you wanted to. I think there's a few 'pocket' proxy servers around on the internet. Quote Link to comment Share on other sites More sharing options...
Decoy Posted September 8, 2019 Share Posted September 8, 2019 (edited) I've actually been toying with the idea of trying to get SSLSplit on the Squirrel. Just as Whistle Master has done for the Pineapple. Why not? It seems possible in theory. Edited September 8, 2019 by Decoy Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.