If you are using VMware Workstation you would want to install VMware Tools.
Choose VM > Install VMware Tools from the VMware Workstation menu to connect a ISO image file that contains the VMware...

Here is a interesting project I found:

https://github.com/cortesi/mitmproxy

you can use hostapd, i dont know how well it works in airbase-ng

ok, well it's best you test it manually, below is a sample of commands for non-transparent mode

in /etc/apache2/sites-available
add to symlinks:

then reload apache

nano...

that's already in setup in the script

If you have these wireless cards:
BCM4313
BCM43224
BCM43225

you should install the open source brcmsmac driver from brcm80211

get firmware first:

git clone...

check for AP mode support with "iw list"

enable debug mode and try running it again

Today I went back to bind9, and i finally made it work properly, this method below would be the solution for dns.
For me it worked really fast with hostapd, please test it out - this is not in the...

I have written a aircracking tutorial on my own forum:
http://hacking-library.com/forum/viewtopic.php?f=36&t=284&p=550#p550

scroll down to the section "Override regulatory domain restrictions"...

screenshot from Ubuntu, but same result in Backtrack
http://hacking-library.com/images/Screenshot.png

here is my awus036nh modded with a heatsink (I am going to build a custom case for it): ...

you have to override regulatory restrictions
max txpower is 31dbm on awus036nh

bt git package needs to be updated, i get that error too

Firesheep: A Firefox extension that demonstrates HTTP session hijacking attacks.

NOTE: Firefox 3.6 is required

Build:

apt-get install autoconf libhal-dev
wget...

Im testing out Coovachilli for the multiclient feature for fakeap_pwn. In vmware hostapd is too slow. I need to build a dedicated test server.

you can replace all the flash content on web pages with an image saying you need to update your flash player

this option would be in our framework, working on multi-client support right now.

oh i saw fakeap_pwn folder there, lol
good work with the .exe file, but we can do better ways of getting them to download that file.

I just got back to testing and I got bind9 to do all dns lookups to us.
here is how to do it:


nano /etc/bind/named.conf.default-zones



nano /etc/bind/db.home.com

well im redoing the whole thing with jquery & ajax
there will be client-side and server-side validation, output to .txt file with ip & passphrase
also we can write commands to php file to check...

below is some sample work for the wpa project


<html>
<head>
<title>Security Check</title>
<script type="text/javascript">
function checkWholeForm(theForm) {
var why = "";
why +=...

Hydra: network logon cracker which support many different services

Version in BT repo: 5.7

New Release version 5.9

link: THC-HYDRA - fast and flexible network login hacker

Snort® is an open source network intrusion prevention and detection system (IDS/IPS)

Version in Backtrack Repo: 2.8.0.2 (Build 75)

New Version: 2.9.0.1 - 01 Nov, 2010

Link: Snort ::...

In KDE Menu entry for chntpw
Command should be

sh -c "./chntpw -h; sudo -s"
Work Path should be

/pentest/passwords/chntpw

hdparm: get/set ATA/SATA drive parameters under Linux (also used to perform Secure Erase (SE))

BT repo version: 8.9
New version: 9.35

Download: Browse hdparm Files on SourceForge.net

Scrub: overwrites hard disks, files, and other devices with repeating patterns intended to make recovering data from these devices more difficult.

BT repo has version: 2.2
New version released:...