Security of Information, Hacking, Offensive Security, Pentest, Open Source, Hackers Tools, etc etc...

Thursday, January 7, 2016

The Wind - Man In The Middle (MITM) Attack Tool

What is MITM Attack?

A man-in-the-middle (MITM) attack is a form of eavesdropping where communication between two users is monitored and modified by an unauthorized party. Its intercepts a communication between two systems.

For now, it only supports SSL protocol.


  • SSL Freak Attack


1) mv to ./scapy/layers

2) modify ./scapy/ to autoload ssl_tls layer 
    <                    "sebek", "skinny", "smb", "snmp", "tftp", "x509", "bluetooth", "dhcp6", "llmnr", "sctp", "vrrp",
    <                    "ssl_tls", ]
    >                    "sebek", "skinny", "smb", "snmp", "tftp", "x509", "bluetooth", "dhcp6", "llmnr", "sctp", "vrrp"]


  • redirect traffic to port 8888: iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port 8888 Or rdr on xxiface inet proto tcp from to any port = 443 -> port 8888
  • edit to import the right file, for example, add import freak to launch the SSL FREAK attack
  • you can write your own module to implement a specific ssl attack, the compulsory funtions you need to supply are those in
  • if man in the middle wants to connect to another server, set use OrinAddr = False, then set ip, port
  • set doProcess = True to make the process functions take effect.


0 comentários:

Post a Comment

Copyright © Offensive Sec 3.0 | Powered by OffensiveSec
Design by OffSec | Theme by Nasa Records | Distributed By Pirate Edition