Hi, this is a quick demo about how to backdoor executables (software) sent over HTTP using MITMF, backdoor factory
This attack works on LAN
-Kali Linux or any Linux OS
-Wireless USB Adapter e.g. (TL-WN722N)
-MITMf (man-in-the-middle framework) https://github.com/byt3bl33d3r/MITMf
-MSFconsole or Armitage
LAN network, same as the target/victim
A situation where machine A wants to download a software for example winrar, the victim goes through google and lands on the page (http://www.win-rar.com/download.html?&L=0) the attacker is already waiting to inject payload into binaries served over (HTTP)
This attack is possible because a lot of tool websites still serve binaries via non-SSL/TLS means.
Want to help support Null Byte and start making your own money as a white hat hacker? Jump start your White-Hat Hacking career with our 2020 Premium Ethical Hacking Certification Training Bundle from the new Null Byte Shop and get over 60 hours of training from Ethical Hacking Professionals.