Results 1 to 9 of 9

Thread: question about SSH connections

  1. #1
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default question about SSH connections

    i'm doing a demonstration using ettercap (no, not airpwn) to edit html on a large scale network. the hack would need a few computers to virtualize a large scale hack.

    I suppose backtrack 3 doesn't open an ssh server when it boots? how would i start an ssh server? do i need to install openssh-server or does backtrack 3 have the server?

    i need to control a few computers running backtrack 3 and this would be the ideal way for my html injecting demonstration

    obviously if one were to do this they would need to change pw

    Also my demonstration need to inject raw html into a machine. I tried using an if statement, but it proved to be unreliable.

    the coding below tried to run a script (i just want to redirect the user)
    Code:
     inject(<meta HTTP-EQUIV="REFRESH" content="0; url=website/">);
    i'd rather not use an if-then statement once the traffic has been verified it's html

    Code:
    replace("IMG SRC=", "img src=\"website/gif\" ");
    initial statement
    Code:
    if (ip.proto == TCP && tcp.dst == 80) {
       if (search(DATA.data, "Accept-Encoding")) {
          replace("Accept-Encoding", "Accept-Rubbish"); 
    	  # note: replacement string is same length as original string
          msg("zapped Accept-Encoding\n");
       }
    }

  2. #2
    Member
    Join Date
    Jun 2007
    Posts
    218

    Default

    Did your inject() function work? I believe you need to specify a file for that function.

  3. #3
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default

    Quote Originally Posted by level View Post
    Did your inject() function work? I believe you need to specify a file for that function.
    you're correct. is there some way to just inject an html snipplet? or could i just inject an html file with the redirect?

  4. #4
    Member
    Join Date
    Jun 2007
    Posts
    218

    Default

    I think the replace() function would be the best way to insert html into http packets.

    Check the tazforum:

    http://www.tazforum.thetazzone.com/

    The ettercap tutorial has an example using the replace() function and the meta-refresh.

  5. #5
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default

    alright thanks, i'll look around on that forum

    But onto the ssh question is there a pre-installed openssh-server? i can install one but i really don't want to redo the .lzm (.lvm? saving session)

  6. #6
    Junior Member
    Join Date
    Jan 2010
    Posts
    79

    Default

    Yes, Backtrack includes the ssh server. At a command prompt enter "sh /etc/rc.d/rc.sshd start". "man sshd" for more.

  7. #7
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default

    Thank you very much that's the main question i wanted resolved

  8. #8
    Just burned his ISO
    Join Date
    Jul 2007
    Posts
    17

    Default

    quick question if anyone knows.. would the inject function of the filter work with a .html? could i inject a whole html page and block the one the user wanted to connect to?

    (sorry i ask instead of testing... i'm flooded with other work for the next few months... damn school)

  9. #9
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by thefatmoop View Post
    quick question if anyone knows.. would the inject function of the filter work with a .html? could i inject a whole html page and block the one the user wanted to connect to?

    (sorry i ask instead of testing... i'm flooded with other work for the next few months... damn school)
    Might wanna look into cross site scripting.
    Would post more info but you probably don't have time to read it what with school an all
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •