Page 5 of 6 FirstFirst ... 3456 LastLast
Results 41 to 50 of 56

Thread: easy-creds 3.3-BT5 Released

  1. #41
    Senior Member
    Join Date
    Dec 2010
    Posts
    127

    Default Re: easy-creds 3.3-BT5 Released

    Quote Originally Posted by comaX View Post
    I'm jealous
    Joke apart, congrats man ! You deserve it
    Thanks man...still a little bit of work to do on it. Need to add some deauth options for the AP stuff. Also, need to get ettercap ironed out...which is slow going since I dont know c.

  2. #42
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: easy-creds 3.3-BT5 Released

    Yeah, I saw ettercap getting crazy one or two times when working along sslstrip, that's pretty ugly ! Fortunately, I don't have much problems using the two together. The famous errors happened only once when doing DNS spoofing with ettercap (which for some reason is much more reliable than dnsspoof...)

    Good luck !
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  3. #43
    Just burned his ISO mfilter's Avatar
    Join Date
    Jan 2010
    Posts
    6

    Default Re: easy-creds 3.3-BT5 Released

    Eric..luv your script but i got an error at ettercap windows

    SEND L3 ERROR: 40 byte packet (0800:06) destined to 7613.15.54 was not forwarded

    i already set echo 1 > /proc/sys/net/ipv4/ip_forward

    please help...

    when i visiting a https site the pop-up come "unsecure bla...bla..bla.. do you want to continue...."


    please help...i really like the script

    good job mate

  4. #44
    Senior Member
    Join Date
    Dec 2010
    Posts
    127

    Default Re: easy-creds 3.3-BT5 Released

    Yeah...this is a known issue with the latest kernel 2.6.39 that is on BT5R1. Everything still works, but those errors are annoying. There is another post on here (SSLStrip not playing nice with Ettercap in BT5R1) where I've asked others for input or suggestions. As far as I can see, everything still works fine, but the errors are annoying.

    The insecure for 443 sites is normal. It's because the certificate you're presenting is not a valid certificate for the site. That's normal for any arp poisoning tool. (i.e. Cain, etc) If the user acepts the cert, then all traffic is encrypt/decrypted with your cert so you can see/read everything.

    The script does the echo 1 function so you don't have to.

    Thanks for the kudos, working on AP DoS for the wireless options.

    Happy hunting,
    Eric

  5. #45
    Just burned his ISO mfilter's Avatar
    Join Date
    Jan 2010
    Posts
    6

    Default

    Erick,

    Thank you very much for the explanation... keep it going

    at the URL Snarf window, the script capture all my internet source eth0 not the at0 data...
    Last edited by g0tmi1k; 09-19-2011 at 10:08 AM. Reason: Merged

  6. #46
    Senior Member
    Join Date
    Dec 2010
    Posts
    127

    Default Re: easy-creds 3.3-BT5 Released

    Quote Originally Posted by mfilter View Post
    Erick,

    Thank you very much for the explanation... keep it going

    at the URL Snarf window, the script capture all my internet source eth0 not the at0 data...
    I'll look into that...I believe it captures everything for those ports. I never reanalyzed it for the wireless function. It should catch all data across ethx or wlanx, whatever you set up as your nic connected to the internet.

    Like I said...I'll see if I can't specify it grab at0 for the wireless options.

    Thanks again!

  7. #47
    Senior Member
    Join Date
    Dec 2010
    Posts
    127

    Default Re: easy-creds 3.3-BT5 Released

    Quote Originally Posted by mfilter View Post
    Erick,

    Thank you very much for the explanation... keep it going

    at the URL Snarf window, the script capture all my internet source eth0 not the at0 data...
    Item fixed, coded so that if $wireless == 1 then use $TUNIFACE value instead of $IFACE value

    Will be out in v3.6. Trying to get it all done before I demo at Derbycon.

    Thanks,
    Eric

  8. #48
    Junior Member
    Join Date
    Jun 2011
    Posts
    43

    Default Re: easy-creds 3.3-BT5 Released

    quick question.. if i have client isolation up and running on my wireless lan... it successfully stops me from arpspoofing my VM's and using nmap to find anything other then the router... would the next best thing to do is just spoof my ap with EvilTwin? have it boot everyone off the AP and then try and sniff the vm's?

  9. #49
    Senior Member
    Join Date
    Dec 2010
    Posts
    127

    Default Re: easy-creds 3.3-BT5 Released

    Quote Originally Posted by destro23 View Post
    quick question.. if i have client isolation up and running on my wireless lan... it successfully stops me from arpspoofing my VM's and using nmap to find anything other then the router... would the next best thing to do is just spoof my ap with EvilTwin? have it boot everyone off the AP and then try and sniff the vm's?
    Absolutely, isolation encrypts the transmission of each client, etc so you don't see anyone but the gateway.

    You can then do a few things:
    Set up a fake AP with the same ESSID as the victim AP and see if someone connects.
    Set up an eviltwin to see if someone connects, but if they are already connected to the victim AP, they won't just hop over to yours.

    I'm testing easy-creds 3.6, hoped to have it done by Derbycon, but I still have a few bugs and functionality to fix first. e-c 3.6 includes MDK3, so when you set up your fake AP attack, you can then use MDK3 to DoS clients (deauths them from the BSSIDS you give it)

    Right now, it'll pop airodump for 5 mins, show you the ESSIDS its found, you select one and it build a black list and MDK3 deauths all clients from the BSSIDs in the black list. The hopes are that they will connect to you either automatically, or manually.

    I've also coded in a last man standing which will whitelist your BSSIDs and deauth's everything else it can reach.

  10. #50
    Just burned his ISO
    Join Date
    Sep 2011
    Posts
    5

    Question Re: easy-creds 3.3-BT5 Released

    ericmilam, have you thought about changing the easy-creds to save the pcap file in order to make possible more in-depth analysis?

Page 5 of 6 FirstFirst ... 3456 LastLast

Similar Threads

  1. easy-creds v3 released
    By ericmilam in forum Experts Forum
    Replies: 2
    Last Post: 01-08-2011, 10:28 PM
  2. easy-creds bash script
    By ericmilam in forum Experts Forum
    Replies: 6
    Last Post: 12-13-2010, 05:01 AM
  3. CUPP v3 released!
    By j0rgan in forum Experts Forum
    Replies: 0
    Last Post: 04-02-2010, 08:59 PM
  4. Tutorial: Dumping Novell creds from memory
    By williamc in forum OLD Tutorials and Guides
    Replies: 0
    Last Post: 07-21-2008, 01:48 PM
  5. btscanner2.1 released
    By imported_spudgunman in forum OLD BT3beta Software related issues
    Replies: 0
    Last Post: 12-18-2007, 07:17 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •