SET & cloning webpage

**MapEndo** · 02-21-2012, 10:18 AM

Hi everyone,

I am working with SET 2.5.3 and I am trying the Java applet attack vector. Everything work without a hitch except of one thing which borders me, the language of the login page of the site I have cloned. For i.e the login page of facebook or twitter appears in the polish language ( I am located in Poland

). I enter the correct url : " www.facebook.com" but when the victim opens the link send to him in his browser (Mozilla 8 on Win 7), the fake webpage appears in Polish .

what is the problem? is it SET or my browser set up? I have checked in Mozilla in the options to make sure English is the first language.Any ideas?????

Thanks for the help in advance

**Brn93** · 02-23-2012, 10:19 AM

i think you should change the header of the browser which grab the page, from

Code:

 Mozilla/5.0 (iPad; U; CPU OS 3_2_1 like Mac OS X; pol) AppleWebKit/531.21.10 (KHTML, like Gecko) Mobile/7B405

to

Code:

 Mozilla/5.0 (iPad; U; CPU OS 3_2_1 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Mobile/7B405

if it get in your language probably set use firefox, so you can try edit firefox and see if it works...
let me know

**Brn93** · 03-06-2012, 08:02 AM

i think i found it:
/pentest/exploits/set/src/webattack/web_clone/cloner.py

about half:

Code:

        # if Linux
        if counter == 0:
            subprocess.Popen('%s;cd src/program_junk/web_clone/;../../webattack/web_clone/linux/wget --no-check-certificate -O index.html -c -k -U "%s" %s' % (proxy_config,user_agent,url), stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=True).wait()

i think you should make:

Code:

        # if Linux
        if counter == 0:
            subprocess.Popen('%s;cd src/program_junk/web_clone/;../../webattack/web_clone/linux/wget -U "Mozilla/5.0 (iPad; U; CPU OS 3_2_1 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Mobile/7B405" --no-check-certificate -O index.html -c -k -U "%s" %s' % (proxy_config,user_agent,url), stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=True).wait()

i haven't tested, let me know

**MapEndo** · 03-15-2012, 07:34 AM

Hi Brn93
it did not work.Thanks for trying

**Brn93** · 03-15-2012, 01:22 PM

found!
/config/set_config
and check
USER_AGENT_STRING=Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)

**MapEndo** · 03-26-2012, 06:49 AM

Are you sure this is in the /config/set_config directory? I did not found it

**MapEndo** · 03-30-2012, 08:35 AM

Sorry , I found it in that directory.The problem was that that line appears from SET 3.1.4 and I was running another versions.But it did not resolve the problems. it even worse actually

Thanks for your help

BackTrack Linux - Penetration Testing Distribution

Thread: SET & cloning webpage

Thread Tools

Search Thread

Display

SET & cloning webpage

Riferimento: SET & cloning webpage

Re: SET & cloning webpage

Re: SET & cloning webpage

Re: SET & cloning webpage

Re: SET & cloning webpage

Re: SET & cloning webpage

Similar Threads

Command used in SET for cloning

test webpage downloader

detecting MAC cloning, e.g. using RARP

WPA versus Webpage re-direct login?

Posting Permissions