Results 1 to 9 of 9

Thread: question about SSH connections

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default question about SSH connections

    i'm doing a demonstration using ettercap (no, not airpwn) to edit html on a large scale network. the hack would need a few computers to virtualize a large scale hack.

    I suppose backtrack 3 doesn't open an ssh server when it boots? how would i start an ssh server? do i need to install openssh-server or does backtrack 3 have the server?

    i need to control a few computers running backtrack 3 and this would be the ideal way for my html injecting demonstration

    obviously if one were to do this they would need to change pw

    Also my demonstration need to inject raw html into a machine. I tried using an if statement, but it proved to be unreliable.

    the coding below tried to run a script (i just want to redirect the user)
    Code:
     inject(<meta HTTP-EQUIV="REFRESH" content="0; url=website/">);
    i'd rather not use an if-then statement once the traffic has been verified it's html

    Code:
    replace("IMG SRC=", "img src=\"website/gif\" ");
    initial statement
    Code:
    if (ip.proto == TCP && tcp.dst == 80) {
       if (search(DATA.data, "Accept-Encoding")) {
          replace("Accept-Encoding", "Accept-Rubbish"); 
    	  # note: replacement string is same length as original string
          msg("zapped Accept-Encoding\n");
       }
    }

  2. #2
    Member
    Join Date
    Jun 2007
    Posts
    218

    Default

    Did your inject() function work? I believe you need to specify a file for that function.

  3. #3
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default

    Quote Originally Posted by level View Post
    Did your inject() function work? I believe you need to specify a file for that function.
    you're correct. is there some way to just inject an html snipplet? or could i just inject an html file with the redirect?

  4. #4
    Member
    Join Date
    Jun 2007
    Posts
    218

    Default

    I think the replace() function would be the best way to insert html into http packets.

    Check the tazforum:

    http://www.tazforum.thetazzone.com/

    The ettercap tutorial has an example using the replace() function and the meta-refresh.

  5. #5
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default

    alright thanks, i'll look around on that forum

    But onto the ssh question is there a pre-installed openssh-server? i can install one but i really don't want to redo the .lzm (.lvm? saving session)

  6. #6
    Junior Member
    Join Date
    Jan 2010
    Posts
    79

    Default

    Yes, Backtrack includes the ssh server. At a command prompt enter "sh /etc/rc.d/rc.sshd start". "man sshd" for more.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •