Did your inject() function work? I believe you need to specify a file for that function.
question about SSH connections
i'm doing a demonstration using ettercap (no, not airpwn) to edit html on a large scale network. the hack would need a few computers to virtualize a large scale hack.
I suppose backtrack 3 doesn't open an ssh server when it boots? how would i start an ssh server? do i need to install openssh-server or does backtrack 3 have the server?
i need to control a few computers running backtrack 3 and this would be the ideal way for my html injecting demonstration
obviously if one were to do this they would need to change pw
Also my demonstration need to inject raw html into a machine. I tried using an if statement, but it proved to be unreliable.
the coding below tried to run a script (i just want to redirect the user)
i'd rather not use an if-then statement once the traffic has been verified it's htmlCode:inject(<meta HTTP-EQUIV="REFRESH" content="0; url=website/">);
initial statementCode:replace("IMG SRC=", "img src=\"website/gif\" ");
Code:if (ip.proto == TCP && tcp.dst == 80) { if (search(DATA.data, "Accept-Encoding")) { replace("Accept-Encoding", "Accept-Rubbish"); # note: replacement string is same length as original string msg("zapped Accept-Encoding\n"); } }
Did your inject() function work? I believe you need to specify a file for that function.
you're correct. is there some way to just inject an html snipplet? or could i just inject an html file with the redirect?Originally Posted by level
I think the replace() function would be the best way to insert html into http packets.
Check the tazforum:
http://www.tazforum.thetazzone.com/
The ettercap tutorial has an example using the replace() function and the meta-refresh.
alright thanks, i'll look around on that forum
But onto the ssh question is there a pre-installed openssh-server? i can install one but i really don't want to redo the .lzm (.lvm? saving session)
Yes, Backtrack includes the ssh server. At a command prompt enter "sh /etc/rc.d/rc.sshd start". "man sshd" for more.
Thank you very much that's the main question i wanted resolved
quick question if anyone knows.. would the inject function of the filter work with a .html? could i inject a whole html page and block the one the user wanted to connect to?
(sorry i ask instead of testing... i'm flooded with other work for the next few months... damn school)
Might wanna look into cross site scripting.
Would post more info but you probably don't have time to read it what with school an all
To be successful here you should read all of the following.
ForumRules
ForumFAQ
If you are new to Back|Track
Back|Track Wiki
Failure to do so will probably get your threads deleted or worse.
Posting Permissions