So this week end i watched a movie on Youtube "Algorithm" and the main character made a "can" that has some electronics on it, like a raspberry pi or a arduino FOR EXAMPLE, and i would know if is it able to do one and probably some who can tell me how to make one,, so with that he leaves that in a house and then the can searche for wifi networks who are vulnerable with the reaver (routers beetwen 2009-+-2012) and when cracked it makes a MITM attack to hijack gmail account and then send to his computer EVERYTHING it caches, if anyone hasn´t any ideia of what i´m talking about heres the link of the movie.
Forum Thread: Can
- Hot
- Active
-
Forum Thread:
Hack Instagram Account Using BruteForce
194
Replies
1 day ago -
Backdoor, Listeners:
How to Know if Your Computer or Smartphones Have One?
28
Replies
2 days ago -
Forum Thread:
How to Crack Instagram 6 Digit Confirmation Code When You Have the Password?
1
Replies
1 wk ago -
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
36
Replies
1 wk ago -
Forum Thread:
Boosting TX Power on Alfa AWUS036NHA
4
Replies
1 wk ago -
Forum Thread:
How to Gain Access to an Android Over WAN
22
Replies
2 wks ago -
Forum Thread:
HELP I Created an Apk for Hacking My Phone Using Kali Linux in Virtual Box How Can I Install That Apk on My Phone
16
Replies
2 wks ago -
Forum Thread:
How to Embed an Android Payload in an Image?
8
Replies
2 wks ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
44
Replies
2 wks ago -
Forum Thread:
Learn to Hack an Android Device Over the Internet Remotely
4
Replies
2 wks ago -
Forum Thread:
Cracking Passwords Using John the Ripper
14
Replies
2 wks ago -
Forum Thread:
Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce
161
Replies
2 wks ago -
Forum Thread:
Need Help with FatRat Over WAN
3
Replies
2 wks ago -
How to:
Embed MSF Payload in Original APK Files | Part #1 - Using TheFatRAT
22
Replies
2 wks ago -
Forum Thread:
Cant Login to Live Persistant Mood
1
Replies
2 wks ago -
Forum Thread:
Kali Wont Start, Stuck at Kali Login:
20
Replies
2 wks ago -
Forum Thread:
I Wan't to Learn Pentesting, and Planning to Learn Both C++ and Python. But I'm Not Sure About What I Should Start With?
2
Replies
3 wks ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
8
Replies
4 wks ago -
Forum Thread:
Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom?
117
Replies
1 mo ago -
Forum Thread:
How Do I Access Different Directories Within Android via Meterpreter
5
Replies
1 mo ago
-
How To:
Hack Networks & Devices Right from Your Wrist with the Wi-Fi Deauther Watch
-
How To:
Get a Jump Start into Cybersecurity with This Bundle
-
How To:
This Top-Rated Course Will Make You a Linux Master
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Radio Frequencies:
Hijacking FM Radio with a Raspberry Pi & Wire
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Dox Anyone
-
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
-
How to Hack Bluetooth, Part 1:
Terms, Technologies, & Security
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
Hack Like a Pro:
How to Crack Passwords, Part 4 (Creating a Custom Wordlist with Crunch)
-
How To:
Automate Wi-Fi Hacking with Wifite2
-
How To:
Scan, Fake & Attack Wi-Fi Networks with the ESP8266-Based WiFi Deauther
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
19 Responses
Why not just find a public AP, like a train station free WiFi, breach that and reap the rewards.
Or better yet, create an Evil Twin public AP.
I feel one of these two solutions would be much easier to pull off, but that's just me.
ghost_
Yes, i read that tutorials too, and practiced them, but the both ways are effective, and i was asking if i can or any one can do one of these and tell me.
It sounds like a pineapple.
You could easily install kali on an android phone then ssh back to it and use it the same way and actually use it for even more malicious purposes.
Just to join the topic: right now the android one is my best way to go. I was able to install not only Kali but also some very interesting apps for pentesting that automate Mitms in a very clean and reliable way.
If anyone is interested, I have written a guide about this and I'm slowly updating it with tools.
The only very big difference is that my Android is not capable of switching to promiscuous mode. Uff.
You know I wanna read it.
Is there already a tutorial in NullByte on how to install Kali on an android phone?
Yep, is my latest article here.
Hack the router and then remotely do anything?
Just about. You can do a Man in the Middle, etc.
Exmpl.: from my house to another part of the world. with what? public ip?
a question about man in the middle attack...now adays almost all traffic are encrypted... infact was trying to steal my cousins password to a particular site on our network...since we all connect to the same ap..only hexadecimal stuff which meant nothing...so is man in the middle that valuable nowadays? if yes how... ? am i left with only pwning his box?
If you are using the same AP and same PSK, you can crack the encryption with the PSK. The airdecap tool can do that.
hello sir OTW,
which is more effective on mitm, airdecap-ng or sslstrip + ettercap or arpspoof + dsniff + packet forwarding ?
SSLStrip + iptables prerouting + ettercap + urlsnarf = What's in your wallet.
hello sir hitchhiker,
whenever i tried to use sslstrip + ettercap + urlsnarf, the browser on the victim computer prevent the victim from entering their credentials (e.g facebook) and sometimes it wont let the user browse the internet.
Does this attack still work effectively ?
Hallo, Well I don't edit any of the .conf files the iptables entry takes care of that. Also I am doing this over wlan not eth. Arpspoof instead of ettercap plugin.
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat
sslstrip -k -l
arpspoof
urlsnarf
ettercap -T -q
Running lab the other day I got MiTM pop ups 2/10 times. Probably from zed running too.
thanks for the reply :), i will try you method lol
i also notice that whenever i tried to connect windows 7/8 computer to my static AP (ettercap + sslstrip + urlsnarf + airbase-ng +dsniff). My wireless adapter will stop working, do you have the same problem ?
i'm using easy-creds script btw lol
I go intermittent sometimes when the swap starts to fill up.
(Side note to the down voter:Ha ha you cant down vote every one.)
thanks for the info :)
Share Your Thoughts