Simple Man-in-the-Middle Script: For Script Kiddies

This Is for the Script Kiddies:

This tutorial is about a script written for the How to Conduct a Simple Man-in-the-Middle Attack written by the one and only OTW.

Hello script kiddies, Just running a script doesn't give you the understanding of what's going on under the hood. Hence it's not hacking.

Please read the the well written tutorial by the OTW before continuing. You will get a good understanding of what's going on under the hood and the tools that are used and why.

What This Script Do:

It will scan for victims, auto detect local interface and default gateway. Also set up the MitM attack for the victim, router, ipforward, and restore the victim when done.

All you need to do is enter the victim's IP Address. That's it.

What Tools Are Needed:

Kali Linux or any pentesting distro

Screenshot:

Usage: Read the README.Md

sudo ./mitm.py

After Target Poisoned:

Run sniffers in external terminals

Note: Your local interface may differ

Step 1: Driftnet -I eth0

driftnet -- Will capture all image traffic, when victim browse a website.

Step 2: Urlsnarf -I eth0

urlsnarf -- Captures all victim's website addresses visited by victim's machine.

Step 3: Dsniff -i eth0

dnsiff -- Sniffs cleartext passwords. Unique authentication attempts.

Step 4: Start Iceweasel from the Command Line

webspy -- Watches in real-time as the victim surfs, your browser surfs along with them, automagically.

Step 5: Surf from the Victim's Machine

Where to Get It:

Click the 'Download' option on the left, then 'Download repository'.

https://bitbucket.org/ruped24/mitm/src

No need to state the obvious about the educational blah blah.

Written by: n0neXn0ne

Please leave question in comment section below.