|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
appreciate it..cheers |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Hi to all!
I tried Yamas against a computer in my network: a couple of times worked, but most of the times the computer just cannot surf anymore, and I have to reboot it. Is there a solution? |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Sorry for the time. It's something common with mitm attacks, so, nope, nothing much you could do, if not just wait for the next version that might help with that.
Oh, and guys... Congrats, for Thehackernews talks about it : http://thehackernews.com/2012/02/mob...work-mitm.html So, big thanks to all of you who helped, and particularly Unhuman, for having the original idea of the port, Saturn for the repos, and Torpedo48 for the help and the vids :) Cheers friends ! |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
1 Attachment(s)
Hi
I try today the Qt Mobile Hotspot and the Yamas, but no luck when i lunch Yamas the Ettercap window close after one second. Is there a conflict between gprs0 and wlan0? nvm i fix it need to put manual the ip for wlan0 and yes comaX all the new victims will be added automatic no need to rescan. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
The version you have been using for some time now (i.e. 0.9.9-1) has been promoted to extras-testing (for the only reason of allowing a new development version to be uploaded).
Version 1.0.0-1 has just been released in extras-devel In short, arpspoof is now the default method and if you'd like to use ettercap you need to start the script with option -e changelog:
Finally, blame ComaX for the changes, Unhuman for pushing everyone to make the changes and me for packaging.. :) EDIT: Apparently there is a problem with the autobuilder atm and all packages to be build are stuck in a queue.. so there will be some delay to reach to you. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
with the new yamas can we do anythning more than the previous version?(other than just seeing which website visited and the login and password information?) i mean can i redirect a single host to some other website than he/she dint go to. for ex: X went to www.facebook.com, instead of facebook.com i ridirect him to hotmail or any other site? so what else can i do with this arspoof?
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Hi
I test the new improve formula for YAMAS and i can say that is much faster comparing with Yamas with Ettercap. Still from some pages i will get only the user name and the password in a MD5 format for example Maemo Talk, any ideas? Many thx to all the people making this project working. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
tested new yamas
much faster thanks to the new arpspoof :) is it the same one from Karam ? do i have to uninstall and install dsniff again ? sorry for my noob questions |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
Quote:
Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
@Mohammed Muid
dns spoof is possible with dnsspoof inside dsniff @seker_94 yes it is @comaX i have seen the latest Yamas script (PC) version it has driftnet and dnsspoof and will have urlsnaf Dsniff has dnsspoof and urlsnarf and i will upload Driftnet to the repository soon so is it possible to update Yamas to include thosel both? thank you |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
hello! I've got problem.
Yamas working with routers only? Can i use it with shared internet connection from my pc? I have bridged connection in my pc, acces point (ad-hoc) provides internet to n900. But when i start yamas with default options it didn't work :( (a haven't got any passwords). Maybe I need to set other options than the standard? Yamas work great with sharing internet from n900 (via qt mobile hotspot). please help :) |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Hey all, I've been really busy lately, so sorry for slacking. I've seen that Comax and Saturn have already introduced pretty much everything.
A few more things - Arpspoof should only introduce more stability and speed to the process. Arpspoof is indeed Karam's port and he gets full credits for that. If you have any problems with this latest version, please P.M. me as it is still in developement sort of speak. Any suggestions are also more than welcome. Once again, thanks a lot to Comax and Saturn for the hard work. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
Quote:
"man dnsspoof". I don't mean to be an as*s guys, but if you want to play hackers, you gotta act like one. And that means learning what is going on, why, and doing a lot of research. I didn't write this script out of nowhere, I spent sleepless nights trying to figure out how this sh*it works. The parsing was a real pain in the as**s too. So, I'll never refuse to help anyone, as long as they show they've done some work too. Otherwise, I get suspisious and I start thinking you only want to play 3v17 HaXX0rs. I can't stress this enough, this IS intended for learning purposes. Now, what you do with it is your sole business, but I won't help you do illegal stuff. Mind that I myself never used it in an illegal way. Ok, I snooped on my sister's connection, got her FB pass and all. Big deal. But I never used it in a public place whatsoever. In a nutshell, I'm very -and I mean it- grateful for all the feedback, the appreciation, the suggestions and mostly for the support you guys provide. I feel I didn't do this for nothing. But on the other hand, I'm no security expert, and I'm not entitled to do anything for anyone. Ah, I really sound like an as*s. Sorry :s @Karam : same goes for driftnet and urlsnarf (fitting-wise only). Moreover, it's -imo-fu*cking useless. I added driftnet on the PC version because it's kind of fun, and people over at BT forums asked for it. But, it is useless... Unless you're trying to monitor some employee that likes saucy websites, that is. But you won't do that with your mobile phone, will you ? See, the thing I fear is that it will be easier to snoop on someone's FB pass AND FB photos. Because that really is the only use I can fathom from using it on a handled device. By the way, there is better than driftnet, check the BT version of Yamas ;) Urlsnarf, I've been asked only one time, and after testing it... My conclusions are that it's pure horse sh*it. If you want the browsed websites, read through the complete log, or launch in a new console : "cat yamas.log | grep HOST", and that should do it. Thanks for dsniff, it sounds like it's much efficient with arpspoof on the mobile phone. Now if you people, REALLY want that (driftnet, dns spoofing, urlsnarf, etc.)... We can make that happen, but keep in mind that it's just a mobile phone. @knypek3 : Yeahp, normal. You should try to learn how ARP works ;) If you do but fail to understand, send a PM or mail, and I'll try to explain ;) Edit : wow, I got censored as fu*ck. Sorry for being French :p |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
i visited this website to learn about dns spoofing.
https://calomel.org/dns_spoof.html but dint understand how to do that. understood abt it. what it does. but need a help from anyone who is willing to help. or suggest me some page where i can understand fully. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
okay. now i have spent a day learning about dnsspoof. where is the the dnsspoof.conf file located? should i creat it in /etc/dnsspoof.conf.
what should be the format. i kno that first i hav to find the ip address of the website where i want to redirect. i hav seen few videos and got this knowledge. but how to write in the dnsspoof.conf file. and how to start the daemon. do i need to run yamas first then dnsspoof. usr/sbin/dnsspoof -f /etc/dnsspoof.conf in xterminal to run dnspoof gives an error. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
@comaX
you are totally correct it's useless but kinda funny Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
how the command to run the yamas....
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
hi friends... i have installed yamas. but i do not know how to work with it! any detailed guidelines on how to work? if so pl help. i am not an advanced user. i am using stock kernal.
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Hi Guys, l'm having trouble getting yamas 1.0.0-1 working on my n900.
lt was working fine in the previous version. l get the error "sh: 1: unknown operand" with 'iptables'. l have read the other posts about this and followed the suggestions - like upgrading the power kernel and removing the broken nmap [BETA version]. My power kernel is now at v50. l installed nmap v5.50. Still get this error and it doesn't pick up any credentials at all. l thought it might be my bleeding edge drivers because they only worked with kernel v46, but after updating these for kernel v50, still no joy. lt's obviously some 'iptables' problem, l think. BTW, the BT5 version works fine on my netbook. Any ideas. Thanx in advance.:( |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Go back to v49, everything is working on v49.
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Thanx for replying. Yeah, l thought it might be the kernel...l did try removing [uninstalling] power kernel v50, but it wouldn't let me. l installed v50 from extra-devel and tried disabling it to uninstall, but still got nowhere.
Any idea how l can do that and install v49. Any commands l can use etc..? |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
EDIT: btw yamas is working well with kp50 on my n900 |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
Sorry, what do you mean by 'menu shortcut' ? |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
l found the menu-shortcut for reverting kp50 [nokia kernel icon]. lt seemed to remove kp50 after a reboot, but l'm not sure because after doing:
uname -r l get 2.6.28-omap1 [is that right]. Can l install kp49 .deb now? Does anyone have an apt-get address for kp49? |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Yes now you can install k49.
http://maemo.org/packages/view/kernel-power/ Here are the files http://www.sendspace.com/filegroup/y...45nDPKioXBHlEP http://www.sendspace.com/filegroup/y...45nDPKioXBHlEP http://www.sendspace.com/filegroup/y...45nDPKioXBHlEP |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Thanx for those files q6600.
l installed them all and rebooted. uname -r now says it's kp49. l started up 'yamas' but still get the 'sh: 1: unknown operand' with 'iptables'. lt's weird, nothing works. l'm going to re-install yamas again just in case it's that. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Did you try to reinstall iptables instead?
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Yeah, first l did 'apt-get install iptables' and it said l already have the newest version. Then, l downloaded the latest .deb for 'iptables' [including modules etc] but still not working.
l even downgraded to kp46, which was when it last worked, l believe - no joy again. l'm going to try the previous version of 'yamas' after to see if that still works. l didn't like that one, though, because it was freezing up my network and l had to refresh the window before it would sign into the account - is that normal? Also, even with the new version [on my netbook with BT5] l'm getting 'location: ht' [in my browser on PC] every time l start-up 'yamas' . l need to refresh page with that too! Should that happen? l also noticed that version 1.0.0-1 only has 5 options instead of 6 - is that right? |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
sorry for this question but im stuck on a step :
after i got the password.txt and log.txt what should i do to get my account password while running MIMTattack i was using facebook thanx i also got all of the needed packages :D |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Not sure if this is what you mean, but to read the log after capturing passwords l use the 'leafpad' program [text editor for n900]
ln terminal [home/user] Go to cd yamas/saved then: leafpad yamas.pass.txt And it should bring up all your user/passes. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
l got it working with the previous version [0.9.9-1] again; with kp46 [might work with kp50 but haven't tried that yet]. Looks like yamas v1.0.0-1 isn't compiling properly on my n900 for some reason.
Only problem is the refreshing thing. Browser either gets stuck or takes ages to login-in or freezes completely, or comes up with that msg on a blank page - 'location: ht'. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
well thanx i know the directory and how to open the files but all what in there is like big numbers and letters i will bring the pass.txt file to here once i have it thanx again:)
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Sounds like your talking about an MD5 hash. Try copy/paste that hash into google. l did that with one of mine and it gave my password.
Otherwise, you'll have to use 'john the ripper' or similar cracker. |
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
actually i reflashed my n900 days ago so now i have nothing in it thanx for responding
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
Quote:
|
Re: [Announce] Yet another MITM attack script (Yamas-ARM)
can you share the command to run YAMAS for password sniffing, and the other acount
thank you |
| All times are GMT. The time now is 10:07. |
vBulletin® Version 3.8.8