This Is for the Script Kiddies:
This tutorial is about a script written for the How to Conduct a Simple Man-in-the-Middle Attack written by the one and only OTW.
Hello script kiddies, Just running a script doesn't give you the understanding of what's going on under the hood. Hence it's not hacking.
Please read the the well written tutorial by the OTW before continuing. You will get a good understanding of what's going on under the hood and the tools that are used and why.
What This Script Do:
It will scan for victims, auto detect local interface and default gateway. Also set up the MitM attack for the victim, router, ipforward, and restore the victim when done.
All you need to do is enter the victim's IP Address. That's it.
What Tools Are Needed:
Kali Linux or any pentesting distro
Screenshot:
Usage: Read the README.Md
sudo ./mitm.py
After Target Poisoned:
Run sniffers in external terminals
Note: Your local interface may differ
Driftnet -I eth0
driftnet -- Will capture all image traffic, when victim browse a website.
Urlsnarf -I eth0
urlsnarf -- Captures all victim's website addresses visited by victim's machine.
Dsniff -i eth0
dnsiff -- Sniffs cleartext passwords. Unique authentication attempts.
Start Iceweasel from the Command Line
webspy -- Watches in real-time as the victim surfs, your browser surfs along with them, automagically.
Surf from the Victim's Machine
Where to Get It:
Click the 'Download' option on the left, then 'Download repository'.
https://bitbucket.org/ruped24/mitm/src
No need to state the obvious about the educational blah blah.
Written by: n0neXn0ne
Please leave question in comment section below.
Comments
Be the first, drop a comment!