So this week end i watched a movie on Youtube "Algorithm" and the main character made a "can" that has some electronics on it, like a raspberry pi or a arduino FOR EXAMPLE, and i would know if is it able to do one and probably some who can tell me how to make one,, so with that he leaves that in a house and then the can searche for wifi networks who are vulnerable with the reaver (routers beetwen 2009-+-2012) and when cracked it makes a MITM attack to hijack gmail account and then send to his computer EVERYTHING it caches, if anyone hasn´t any ideia of what i´m talking about heres the link of the movie.
Forum Thread: Can
- Hot
- Active
-
Forum Thread: Gaining Access into the Victim's Whatsapp on Android 12 Replies
9 hrs ago -
Forum Thread: Whatsapp Hack? 19 Replies
11 hrs ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 12 Replies
3 days ago -
Forum Thread: Hydra Syntax Issue Stops After 16 Attempts 2 Replies
3 wks ago -
Forum Thread: Hack Instagram Account Using BruteForce 208 Replies
3 wks ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 47 Replies
2 mo ago -
Forum Thread: How to Train to Be an IT Security Professional (Ethical Hacker) 22 Replies
2 mo ago -
Metasploit Error: Handler Failed to Bind 41 Replies
2 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 21 Replies
3 mo ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 177 Replies
3 mo ago -
How to: Crack Instagram Passwords Using Instainsane 36 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More 5 Replies
3 mo ago -
Forum Thread: How Many Hackers Have Played Watch_Dogs Game Before? 13 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device with Only a Ip Adress 55 Replies
4 mo ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 10 Replies
4 mo ago -
Forum Thread: How to Run and Install Kali Linux on a Chromebook 18 Replies
5 mo ago -
Forum Thread: How to Find Admin Panel Page of a Website? 13 Replies
6 mo ago -
Forum Thread: can i run kali lenux in windows 10 without reboting my computer 4 Replies
6 mo ago -
Forum Thread: How to Hack School Website 11 Replies
6 mo ago -
Forum Thread: Make a Phishing Page for Harvesting Credentials Yourself 8 Replies
6 mo ago
-
How To: Dox Anyone
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To: Find Vulnerable Webcams Across the Globe Using Shodan
-
BT Recon: How to Snoop on Bluetooth Devices Using Kali Linux
-
How To: Make Your Own Bad USB
-
How to Hack Wi-Fi: Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To: Exploit EternalBlue on Windows Server with Metasploit
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To: Find Identifying Information from a Phone Number Using OSINT Tools
-
How To: Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
How To: Run USB Rubber Ducky Scripts on a Super Inexpensive Digispark Board
-
Rainbow Tables: How to Create & Use Them to Crack Passwords
-
How To: Clear the Logs & Bash History on Hacked Linux Systems to Cover Your Tracks & Remain Undetected
-
How To: Scan for Vulnerabilities on Any Website Using Nikto
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
How to Hack Wi-Fi: Stealing Wi-Fi Passwords with an Evil Twin Attack
19 Responses
Why not just find a public AP, like a train station free WiFi, breach that and reap the rewards.
Or better yet, create an Evil Twin public AP.
I feel one of these two solutions would be much easier to pull off, but that's just me.
ghost_
Yes, i read that tutorials too, and practiced them, but the both ways are effective, and i was asking if i can or any one can do one of these and tell me.
It sounds like a pineapple.
You could easily install kali on an android phone then ssh back to it and use it the same way and actually use it for even more malicious purposes.
Just to join the topic: right now the android one is my best way to go. I was able to install not only Kali but also some very interesting apps for pentesting that automate Mitms in a very clean and reliable way.
If anyone is interested, I have written a guide about this and I'm slowly updating it with tools.
The only very big difference is that my Android is not capable of switching to promiscuous mode. Uff.
You know I wanna read it.
Is there already a tutorial in NullByte on how to install Kali on an android phone?
Yep, is my latest article here.
Hack the router and then remotely do anything?
Just about. You can do a Man in the Middle, etc.
Exmpl.: from my house to another part of the world. with what? public ip?
a question about man in the middle attack...now adays almost all traffic are encrypted... infact was trying to steal my cousins password to a particular site on our network...since we all connect to the same ap..only hexadecimal stuff which meant nothing...so is man in the middle that valuable nowadays? if yes how... ? am i left with only pwning his box?
If you are using the same AP and same PSK, you can crack the encryption with the PSK. The airdecap tool can do that.
hello sir OTW,
which is more effective on mitm, airdecap-ng or sslstrip + ettercap or arpspoof + dsniff + packet forwarding ?
SSLStrip + iptables prerouting + ettercap + urlsnarf = What's in your wallet.
hello sir hitchhiker,
whenever i tried to use sslstrip + ettercap + urlsnarf, the browser on the victim computer prevent the victim from entering their credentials (e.g facebook) and sometimes it wont let the user browse the internet.
Does this attack still work effectively ?
Hallo, Well I don't edit any of the .conf files the iptables entry takes care of that. Also I am doing this over wlan not eth. Arpspoof instead of ettercap plugin.
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat
sslstrip -k -l
arpspoof
urlsnarf
ettercap -T -q
Running lab the other day I got MiTM pop ups 2/10 times. Probably from zed running too.
thanks for the reply :), i will try you method lol
i also notice that whenever i tried to connect windows 7/8 computer to my static AP (ettercap + sslstrip + urlsnarf + airbase-ng +dsniff). My wireless adapter will stop working, do you have the same problem ?
i'm using easy-creds script btw lol
I go intermittent sometimes when the swap starts to fill up.
(Side note to the down voter:Ha ha you cant down vote every one.)
thanks for the info :)
Share Your Thoughts