Forum Replies Created
- Posts
Hi!
As I mentioned above I suggested using custom kali for learning purposes, if you have plenty knowledge on using linux then use your custom distro, I never try to said that it was a problem but if you are not familiar with linux then it can be harder to spot where the issue is, but do it as you wish.If there’s no info being displayed in screen while running the script and the browser window does not load at all then there are some networking issues, can you share the results of the other iptables command I mentioned? And here is site that use http that you can use to test the file interceptor:
http://www.diabeticretinopathy.org.uk/exeforlaptops.htmlAnd another problem here might be running the scripts as a normal user, will suggest to run them as root, logging ig as root would be prefered.
Thanks!
DiegoHi!
Have you watched the videos in custom kali download page? That might help to do it. And just as a side note I won’t recommend installing kali as main OS, this can bring more problems than solutions dur to hardware compatibility.Let me know.
DiegoHi!
As you are learning it would be better to follow all the instructions as in the lectures, I mean using custom kali and the syntax as showed by Zaid, I reapeat this is for learning purposes, and once the scripts work you can use your custom Debian machine and the syntax you want, this will also help to spot the error in your custom script. I don’t know the specifics of your custom Debian so I can’t tell if there’s any networking issue, did the DNS and file interceptor worked as expected?Can you share the result of iptables -L and iptables -t nat -L after setting the rules for INPUT and OUTPUT?
Thanks!
DiegoHi!
When you said you are trying it on the local computer do you mean kali? Or which exact computer?Also I’ll suggest to write the code as showed in the course, I mean import scapi.all as scapy, and your mod function seems a bit odd, why are you getting the payload ther? and why are you converting it to bytes using utf-8? Are you using python 2 or 3?
Let me know.
DiegoHi!
Unfortunately that will not be possible, I haven’t tried myself but many students have without success, there are some threads in the official kali forum about this but without a solution. I’ll suggest to use custom kali for the course as it has those tools already installed, if you want to use other kali version for your own work is ok.Greetings!
DiegoHi!
That’s weird, can you share a screenshot of the modified code? Also add a print after load.replace() and check if the load is being modified properly.
The latest custom kali is v1.3, but this script should work anyway.Let me know.
DiegoHi!
I will suggest to remove the iptables rules form the code, they are inside a loop and that’s not a good practice, better run them manually.
So first flush iptables:
iptables –flush
iptables –table nat –flush
iptables –delete-chain
iptables –table nat –delete-chain
iptables -P FORWARD ACCEPTEnable port forwarding
echo 1 > /proc/sys/net/ipv4/ip_forwardThen run the iptables manually and try it again, and yes, it looks like speedbit.com is offline now, that’s weird. So you can try with stealmylogin.com
Are you sure you are using the latest custom kali image provided by Zaid? It’s important! Are you using python 2 or 3?
Let me know.
DiegoHi!
Don’t use bing as it uses hsts protection now a days, try it with speedbit.com.Also can you share a screenshot of your code?
Thanks!
DiegoHi!
We are practicing, so to practice just copy and paste the link. In a real scenario you’ll need to use your better social engineering skills so the victim enter the link in his browser or click it.Greetings!
DiegoHi!
Hostapd file in not complete, you just shared the header, also I’ll recommend to use custom kali for the course sake and if you want to use anyother kali version for your own work is ok. This because you’ll need to be roor user to run this attack properly and using custom kali will also have the proper version and tools installed on it.Also you didn’t mentioned you adapter model, can you share a screenshot with the results of iw list?
Thanks!
DiegoHi!
Can I see the result of ifconfig BEFORE starting mana, and the contents of start-nat-simple.sh and hostapd-mana.config please? And the results of the command iw list.Can I also see a screenshot of Kali’s network settings please?
So just right click the Kali machine in Virtual Box >> Setting >> Network, take a screenshot and post it here please.
Also can you please give me the exact model of your adapter?Thanks!
DiegoHi!
We don’t recommand installing kali as main OS as it can give more problem than solutions, I will recommend to use it as a virtual machine for the course sake, if you want to use any other kali version for your own work is ok.Also if you installed it as main OS you’ll need a second computer to be your victim, do you have one?
Greetings!
Diego
