Posted: 2/12/2014 7:43:02 PM EDT
|
So... I've been doing some ARP spoofing in my home network, and every time it stops the target's internet connection. I assume that my attacking machine just isn't forwarding packets. I've spent hours trying to figure this out.
I'm running Kali Linux (64-bit) from a usb. |
|
Quoted:
So... I've been doing some ARP spoofing in my home network, and every time it stops the target's internet connection. I assume that my attacking machine just isn't forwarding packets. I've spent hours trying to figure this out. I'm running Kali Linux (64-bit) from a usb. What program/script are you using to spoof? How good is the machine you're running? Older comps can't handle the throughput for ARP spoofing. On a related note, if you're phone is a decent somewhat recent android, check out dSploit. Has a built in MITM suite to do all sorts of nifty things. Can get really interesting when combing the script injection function with a computer running BEEF (Browser Exploitation Framework). 
|
|
Quoted:
What program/script are you using to spoof? How good is the machine you're running? Older comps can't handle the throughput for ARP spoofing. On a related note, if you're phone is a decent somewhat recent android, check out dSploit. Has a built in MITM suite to do all sorts of nifty things. Can get really interesting when combing the script injection function with a computer running BEEF (Browser Exploitation Framework). Quoted:
What program/script are you using to spoof? How good is the machine you're running? Older comps can't handle the throughput for ARP spoofing. On a related note, if you're phone is a decent somewhat recent android, check out dSploit. Has a built in MITM suite to do all sorts of nifty things. Can get really interesting when combing the script injection function with a computer running BEEF (Browser Exploitation Framework). I'm using ettercap on a Asus G75. It's pretty legit. I think I figured it out once I read the man pages. You have to run in unoffensive mode when targeting a gateway! 
I am definitely interested in using dSploit, but I am a bit apprehensive about rooting my phone. What do you think about it? I just played with BeEF for the first time yesterday. Still getting a feel for it. Quoted:
Sure you have the old echo 1 > /proc/sys/net/ipv4/ip_forward in place? I haven't run Kali yet. Spoofing the gateway or a specific machine? Might try pasting the cmdline of your arpspoof too. I think I figured it out once I manned up and read the man pages. Ettercap automatically forwards packets, but you have to run in unoffensive mode when targeting a gateway. I'm spoofing a specific machine. I'll play with arpspoof some. ETA: Nope... I was wrong. Still don't have it nailed down. |
|
Quoted:
I'm using ettercap on a Asus G75. It's pretty legit. I think I figured it out once I read the man pages. You have to run in unoffensive mode when targeting a gateway!
I am definitely interested in using dSploit, but I am a bit apprehensive about rooting my phone. What do you think about it? I just played with BeEF for the first time yesterday. Still getting a feel for it. I think I figured it out once I manned up and read the man pages. Ettercap automatically forwards packets, but you have to run in unoffensive mode when targeting a gateway. I'm spoofing a specific machine. I'll play with arpspoof some. ETA: Nope... I was wrong. Still don't have it nailed down. Quoted:
Quoted:
What program/script are you using to spoof? How good is the machine you're running? Older comps can't handle the throughput for ARP spoofing. On a related note, if you're phone is a decent somewhat recent android, check out dSploit. Has a built in MITM suite to do all sorts of nifty things. Can get really interesting when combing the script injection function with a computer running BEEF (Browser Exploitation Framework). I'm using ettercap on a Asus G75. It's pretty legit. I think I figured it out once I read the man pages. You have to run in unoffensive mode when targeting a gateway!
I am definitely interested in using dSploit, but I am a bit apprehensive about rooting my phone. What do you think about it? I just played with BeEF for the first time yesterday. Still getting a feel for it. Quoted:
Sure you have the old echo 1 > /proc/sys/net/ipv4/ip_forward in place? I haven't run Kali yet. Spoofing the gateway or a specific machine? Might try pasting the cmdline of your arpspoof too. I think I figured it out once I manned up and read the man pages. Ettercap automatically forwards packets, but you have to run in unoffensive mode when targeting a gateway. I'm spoofing a specific machine. I'll play with arpspoof some. ETA: Nope... I was wrong. Still don't have it nailed down. Rooting your phone, if done correctly is almost completely risk free. Dsploit is a fun package to play with. Everything from automatically running routerpwn against a wifi router, to MITM attacks, to vuln scanning and exploit finding against machines on the local network. BeEF takes some practice, I still don't have everything down, but it's quite powerful. Combined with dsploit or another MITM attack (ettercap w/ HTTP filters for example) makes it trivial to hook browsers. I can use the script injection function of dsploit (against my wife's machine) to automatically add the JavaScript hook to every page the target visits. Much fun could, hypothetically of course, be had on public WiFi nets. I would check what rubywat said about the ip_forward line. It can cause lots of issues. |
|
Quoted:
Rooting your phone, if done correctly is almost completely risk free. Dsploit is a fun package to play with. Everything from automatically running routerpwn against a wifi router, to MITM attacks, to vuln scanning and exploit finding against machines on the local network. BeEF takes some practice, I still don't have everything down, but it's quite powerful. Combined with dsploit or another MITM attack (ettercap w/ HTTP filters for example) makes it trivial to hook browsers. I can use the script injection function of dsploit (against my wife's machine) to automatically add the JavaScript hook to every page the target visits. Much fun could, hypothetically of course, be had on public WiFi nets. I would check what rubywat said about the ip_forward line. It can cause lots of issues. I just hope Sprint doesn't mind when it comes to warranty issues. I actually did figure out what the problem was. Apparently Ettercap has known issues when operating in a 64-bit environment. I switched over to 32-bit, and it works fine. |
|
Quoted:
I just hope Sprint doesn't mind when it comes to warranty issues. I actually did figure out what the problem was. Apparently Ettercap has known issues when operating in a 64-bit environment. I switched over to 32-bit, and it works fine. Quoted:
Quoted:
Rooting your phone, if done correctly is almost completely risk free. Dsploit is a fun package to play with. Everything from automatically running routerpwn against a wifi router, to MITM attacks, to vuln scanning and exploit finding against machines on the local network. BeEF takes some practice, I still don't have everything down, but it's quite powerful. Combined with dsploit or another MITM attack (ettercap w/ HTTP filters for example) makes it trivial to hook browsers. I can use the script injection function of dsploit (against my wife's machine) to automatically add the JavaScript hook to every page the target visits. Much fun could, hypothetically of course, be had on public WiFi nets. I would check what rubywat said about the ip_forward line. It can cause lots of issues. I just hope Sprint doesn't mind when it comes to warranty issues. I actually did figure out what the problem was. Apparently Ettercap has known issues when operating in a 64-bit environment. I switched over to 32-bit, and it works fine. Glad you got it figured out. I've had better results running Kali/BT in 32-bit as well. If you root your phone you can also unroot it and the carrier can't tell that you did it. Just don't flash ROMs if you're worried about warranty issues. |