Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

same here !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

comaX,
I just upgrade via updates the script and is not working.
It kicks everybody on the network out of the internet
why remove ettercap-gtk with the new upgrade

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi,

This must be fixed now ...

From changelog :

And IRL :

Hope it help ...

A++

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi Stephane,

Thanks for the update, it is fixed now.

Confirming also that targeting manually works; while targeting all breaks the net for all.

It seems like when you target all, it includes also itself in the hosts lists.
Do you have a diff of your previous against the new version of ettercap?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

For me it doesn't install ettercap-common but it is listed as suggested ;) Mannually installed

But as usaual sitll the dns dissector not supported...
but it is working lnormal


and yes, it includes itself in the hostlist ;) so targetting whole network fails...

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Nothing to do with a diff, just pushed the dependency from libltdl3 to libltdl7 ...

By the way, it look like my version break something, do you have a link to another version where I can have a reference to track the problem ?

A++

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi,

I meant a diff against the version you posted here:
http://talk.maemo.org/showpost.php?p...2&postcount=17

That one seemed to work.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

hii, i installed the script successfully,..then I ran ''yamas' in xterm as root,.everything went well without any error.Unfortunately,I dont get any PASS & user info for any visited sites,e.g faceb,yahoo.I am using my wlan network & on window 7 as a victim,,,any ideas:::thx

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Ok,

Well, Saturn, I reverted back to the one working, and only compiled against libltdl7 :

Can you have a look at this one please, and report if it act like you expected ?

A++

PS : If it's needed, please try to contact me in PM and we need to reach each other on IRC in live to debug deeply the problem ...

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi everyone !
It's not the first time I receive a PM regarding Yamas, which is fine. But please, if you're not using this tool lawfully, I don't want to know about that.

I'll only answer technical questions. So is it safe to do it at school ? No, end of the strory ;)

(Sorry for the unanswered PMs, here's your answer. I don't mean to be mean, but I just can't tell you how to play 3v17 h4XX0rs...)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi Stephane,

This version works :)

Tried attacking the whole network and got my pw for both gmail and yahoo.
Also, it re-ARP all clients correctly and didn't lock my wlan connection.

BTW, the DNS and privilege errors are still present.

cool, thanks

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi Saturn ;)

How about my latest build ? :D


Check it and report please ...

A++

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I only can find maemo3 and with that version still the classic line 70 error...

http://maemo.org/packages/view/ettercap/

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Wait a little bit ...

If you look at the right column you can see (1st line) :

http://bigbob.fun.free.fr/ettercap-0...emo4-build.png

A++

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I was to fast :P Well I am updating now ;) Will edit this post to tell you that version is working ;)


YAY, It's working

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hmmm, can't get ettercap-gtk installed with yamas as ettercap conflicts with ettercap-gtk and yamas depends on ettercap. Only difference is that with ettercap-gtk the gtk interface is compiled too, and the CLI version is always available in both versions.
Can yamas change depencies to ettercap OR ettercap-gtk? Sorry don't know much about packaging and repositories. I hope one day to post mdk3 in the repo's if nobody else does but I am not so familiar with linux as most of you, so I don't promise anything xD

Sorry for the doulbe post, but a edit will probably not be seen as my most is already some days old.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi, I have fixed dependencies right now.

Hope it help ...

A++

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi Stephane,

Thanks for sorting it out, but please send a mail or a PM to the maintainers (since we are active) when you make a change like that. Otherwise your change will be reverted in the next update.

Cheers

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

There is still one missing dependency. The script checks the existence of python-pyopenssl, which is not a dependency of package yamas and is a transitional dummy package for python-openssl that, even installed, is not enough to pass the test.

The first page of the post needs to be updated as any other packages are now correctly installed automatically.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

OOPS !!!

I didn't do that anymore ...

A++

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

hi
how do i install the last dependence?

nvm
i mange.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Uploaded version (0.9.9-1) that changes the dependency from python-pyopenssl to python-openssl.

It seems that people that already had python-openssl installed prior to yamas did not get the python-pyopenssl during installation. That caused the check to fail as it was explicitly was looking for the latter.

I believe it should be fixed now.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Tested and finally fixed for a clean and complete install. Something isn't completely optified as it takes 1Mb of rootfs (as reported by FAPMAN) after installation.

Another question regarding dependencies, is xterm really needed?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Yeah, well, not that much. But it's simpler that way. You can check Android's (and, as it seems, any ARM distro with correct dependencies) version, which doesn't use xterm and is fully functional at http://comax.fr/yamas.php?frame=btarm

It could be adapted in maemo's version, but I rather like it with xterm. Since I'm not a maemo user, it's up to the community though ;)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Nice, the android version has some interesting stuff to copy.
Will try to have a better look next week (when I have some more time).

In the meantime, I notice the dependencies check has wrongly the wget as required and also a small typo ">" instead of ">>" in the same place. None of those are critical, but will be fixed in the next version.

I would like to replace the xterm with osso-xterm but my initial tests didn't succeed.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

The > wasn't a typo : since there shouldn't be anything in the text file for the first check, it doesn't matter if we write over (>) or append (>>) text in the file ;)

osso-xterm seems to be a fu*king paint the A55 to use, and xterm is included in busybox-power if I remind correctly...

Anyway, it's still up to you guys ;) And I can't be grateful enough for the work you put in it ! Cheers !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

hi
i install the new version over the old one ( i didn't delete the yamas folder ) now when i save the pas and log file my txt in save folder are empty.
should i remove yamas delete the folder and reinstall?

nvm
i mange with leafpad

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I just added DNS spoofing in the BT5 version, but it's still very capricious, so before adding it to maemo's version, I'd need a help with that !
Linux guru, I shall request thy blissful knowledge for thee art the all-knowing One.

So, it's coming bros, but not without some glitches. It seemed pretty simple though. I'll keep you up to date !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hope you have the blessings of master foo.:D

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

just a quick question but is this script ment to work on access points like

BT openzone an btfon cause im havin some issues with both version n900 an backtrack 5 !!

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I could answer if only I knew what you were talking about...

What is "APs like BT openzone an btfon" ?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I kept working on DNS spoofing, and it seems it's steadier with ettercap. Which should suit you guys fine since I don't think you have the dsniff package. Saturn, please contact me, since I think it will be easier for you to update than me trying some weird-as5 stuff in maemo's SDK !

I'll be waiting for your feedback !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

and now my YAMAS has stopped working. It doesn't grab passwords no more. Any idea how to trace the problem? is the latest version stable? cuz I remember updating it

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

The same happened to me. Close it using option 6, and run it again until it works properly. Strange but works for me.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

for me is not working like that. if i close with 6 i have to wait 10 min. if i reconnect after i close the program, i have to reset the router.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Strange,,, will try it out again.

EDIT: Yup, you're right. It sometimes work after few attempts.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Edit: nvm, fixed it
Anyway, it does not show any passwords, I installed everything from the repos, and the password screen is blank.
How can i troubleshoot this ?
Also, after quitting properly, I don't have internet access in n900, I have to reconnect to my network, to make it work once again.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

sorry to bring up an old topic..

i'm having trouble with the website, login and password showing up..that's if i'm using firefox..

if i'm using safari, i had no trouble getting those passwords..any idea why?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

It could be a couple of things:

• You have already set the login and password with safari before but may have already forgotten that you did.
• Someone else who borrowed your computer (if its actually shared) may have entered it in.
• Maybe safari assumed to use anonymous login by default and if that does not work it will prompt the user to enter proper credentials.
• For some reason the site owner may have decided to block certain browsers for some weird reasons.

It also doesn't really help if you cannot tell us which site you're referring to in the first place.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

thank you sir for your feedback..i'm not quite sure..sometimes, it's working..sometimes it doesnt..closing n restarting yamas occasionally fix the problem..

basically im trying gmail,yahoo,facebook,forums and so on..sometimes the websites,login and password showed up, sometimes didn't..as such,restarting yamas several times seems to fix it though..

however, there is one thing that i'm quite confuse about..

i've added a screenshot attachment for it..

Attachment 23482

what are those numbers after "login="

yes i have 3 hosts connected to the same wifi (ipad,imac,windows pc and my N900)..sorry if i sound dumb..but im still learning.. =)

thanks and regards