HD Moore just posted documentation for Karmetasploit:
I just posted the first public documentation on Karmetasploit. This project is a combination of Dino Dai Zovi and Shane Macaulay's KARMA and the Metasploit Framework. The result is an extremely effective way to absorb information and remote shells from the wireless-enabled machines around you. This first version is still a proof-of-concept, but it already has an impressive feature list:Just one piece of advice. Unless you create an IPSEC tunnel or you can use WPA, don't use a wireless network. Too much can go wrong. If you want to know how many attacks are possible on an unprotected wlan connection, just download this video from The Last HOPE from Renderman: How Do I Pwn Thee - Let Me Count The Ways (torrent). Just set up a openVPN server at home (or use ssh tunneling in worst case).
- Capture POP3 and IMAP4 passwords (clear-text and SSL)
- Accept outbound email sent over SMTP
- Parse out FTP and HTTP login information
- Steal cookies from large lists of popular web sites
- Steal saved form fields from the same web sites
- Use SMB relay attacks to load the Meterpreter payload
- Automatically exploit a wide range of browser flaws
(source: Metasploit blog)
Related posts:
- Forget wardriving, now you have warcarting and warballooning
- Netgear provides alternative opensource router
- Wireless Auditing Toolkits
- Rogue access point at Dutch Airport
- New version of coWPAtty 4.3 and some wireless tips
- Don't make life difficult
- A Wireless Pentest LiveCD: Russix
- (IN)SECURE Magazine Issue 14 released
- HowTo extend your WiFi range
- Ultimate Geek Shirt
- 50% of Belgian Wifi networks are unprotected
- Public Wifi at Blackhat and how to defend yourself
Security4all Blog
Twitter
Slideshare
Facebook
Digg
Flickr
0 comments:
Post a Comment