So this week end i watched a movie on Youtube "Algorithm" and the main character made a "can" that has some electronics on it, like a raspberry pi or a arduino FOR EXAMPLE, and i would know if is it able to do one and probably some who can tell me how to make one,, so with that he leaves that in a house and then the can searche for wifi networks who are vulnerable with the reaver (routers beetwen 2009-+-2012) and when cracked it makes a MITM attack to hijack gmail account and then send to his computer EVERYTHING it caches, if anyone hasn´t any ideia of what i´m talking about heres the link of the movie.
Forum Thread: Can
- Hot
- Active
-
Forum Thread: How to Hack Online Android Games !!? 18 Replies
3 hrs ago -
Forum Thread: Hack Instagram Account Using BruteForce 196 Replies
4 hrs ago -
Forum Thread: How to Hack a Website to Edit It 19 Replies
4 days ago -
Forum Thread: Android Doesn't Connect Back to Metasploit with App Payload? 18 Replies
5 days ago -
Forum Thread: Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce 156 Replies
5 days ago -
Forum Thread: Kali Linux WiFi Problem? 41 Replies
1 wk ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 173 Replies
1 wk ago -
Forum Thread: How to Start Listening Connections on Metaslpoit (WINDOWS) 8 Replies
1 wk ago -
Forum Thread: Grab Target's Webcam by Link 4 Replies
1 wk ago -
How to: HACK Android Device with TermuX on Android | Part #2 - Over WLAN Hotspot [Ultimate Guide] 24 Replies
1 wk ago -
Forum Thread: Complete Guide to Creating and Hosting a Phishing Page for Beginners 41 Replies
1 wk ago -
Forum Thread: No Wireless Extensions in Linux Debian 3 Replies
2 wks ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 6 Replies
2 wks ago -
Forum Thread: Bruteforce Password Cracker (ghoster_brute) 6 Replies
2 wks ago -
Forum Thread: Txpower Adjustment? 17 Replies
2 wks ago -
Forum Thread: How to Controll Multiple Devices Using a Meterpreter ? 4 Replies
3 wks ago -
Forum Thread: Delete Infected Apk from Victim Phone Remotely 1 Replies
3 wks ago -
How to: Install Metasploit Framework on Android | Part #1 - in TermuX 81 Replies
3 wks ago -
Forum Thread: The Most Anonymous Reconnaissance Technique? 1 Replies
3 wks ago -
Forum Thread: Tp-Link wn8200nd 2 Replies
3 wks ago
-
How To: Null Byte's Hacker Guide to Buying an ESP32 Camera Module That's Right for Your Project
-
How To: Perform Keystroke Injection Attacks Over Wi-Fi with Your Smartphone
-
How To: This Top-Rated Audio & Video Production Bundle Is on Sale for $40
-
How to Hack Wi-Fi: Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Hack Android Using Kali (Remotely)
-
Hacking Windows 10: How to Dump NTLM Hashes & Crack Windows Passwords
-
How To: Automate Wi-Fi Hacking with Wifite2
-
How To: Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How to Hack Wi-Fi: Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Hunt Down Social Media Accounts by Usernames with Sherlock
-
How To: Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
Hack Like a Pro: How to Crack Passwords, Part 4 (Creating a Custom Wordlist with Crunch)
-
Hack Like a Pro: How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To: Hack Web Browsers with BeEF to Control Webcams, Phish for Credentials & More
-
How To: Build a Beginner Hacking Kit with the Raspberry Pi 3 Model B+
-
The Hacks of Mr. Robot: How to Send a Spoofed SMS Text Message
19 Responses
Why not just find a public AP, like a train station free WiFi, breach that and reap the rewards.
Or better yet, create an Evil Twin public AP.
I feel one of these two solutions would be much easier to pull off, but that's just me.
ghost_
Yes, i read that tutorials too, and practiced them, but the both ways are effective, and i was asking if i can or any one can do one of these and tell me.
It sounds like a pineapple.
You could easily install kali on an android phone then ssh back to it and use it the same way and actually use it for even more malicious purposes.
Just to join the topic: right now the android one is my best way to go. I was able to install not only Kali but also some very interesting apps for pentesting that automate Mitms in a very clean and reliable way.
If anyone is interested, I have written a guide about this and I'm slowly updating it with tools.
The only very big difference is that my Android is not capable of switching to promiscuous mode. Uff.
You know I wanna read it.
Is there already a tutorial in NullByte on how to install Kali on an android phone?
Yep, is my latest article here.
Hack the router and then remotely do anything?
Just about. You can do a Man in the Middle, etc.
Exmpl.: from my house to another part of the world. with what? public ip?
a question about man in the middle attack...now adays almost all traffic are encrypted... infact was trying to steal my cousins password to a particular site on our network...since we all connect to the same ap..only hexadecimal stuff which meant nothing...so is man in the middle that valuable nowadays? if yes how... ? am i left with only pwning his box?
If you are using the same AP and same PSK, you can crack the encryption with the PSK. The airdecap tool can do that.
hello sir OTW,
which is more effective on mitm, airdecap-ng or sslstrip + ettercap or arpspoof + dsniff + packet forwarding ?
SSLStrip + iptables prerouting + ettercap + urlsnarf = What's in your wallet.
hello sir hitchhiker,
whenever i tried to use sslstrip + ettercap + urlsnarf, the browser on the victim computer prevent the victim from entering their credentials (e.g facebook) and sometimes it wont let the user browse the internet.
Does this attack still work effectively ?
Hallo, Well I don't edit any of the .conf files the iptables entry takes care of that. Also I am doing this over wlan not eth. Arpspoof instead of ettercap plugin.
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat
sslstrip -k -l
arpspoof
urlsnarf
ettercap -T -q
Running lab the other day I got MiTM pop ups 2/10 times. Probably from zed running too.
thanks for the reply :), i will try you method lol
i also notice that whenever i tried to connect windows 7/8 computer to my static AP (ettercap + sslstrip + urlsnarf + airbase-ng +dsniff). My wireless adapter will stop working, do you have the same problem ?
i'm using easy-creds script btw lol
I go intermittent sometimes when the swap starts to fill up.
(Side note to the down voter:Ha ha you cant down vote every one.)
thanks for the info :)
Share Your Thoughts