Jump to content
tomyk

MITMf v0.9.8

Recommended Posts

Framework for Man-In-The-Middle attacks

gCZLdOw.png

* The framework contains a built-in SMB, HTTP and DNS server that can be controlled and used by the various plugins, it also contains a modified version of the SSLStrip proxy that allows for HTTP modification and a partial HSTS bypass.

* As of version 0.9.8, MITMf supports active packet filtering and manipulation (basically what etterfilters did, only better), allowing users to modify any type of traffic or protocol.

* The configuration file can be edited on-the-fly while MITMf is running, the changes will be passed down through the framework: this allows you to tweak settings of plugins and servers while performing an attack.

* MITMf will capture FTP, IRC, POP, IMAP, Telnet, SMTP, SNMP (community strings), NTLMv1/v2 (all supported protocols like HTTP, SMB, LDAP etc.) and Kerberos credentials by using Net-Creds, which is run on startup.

* Responder integration allows for LLMNR, NBT-NS and MDNS poisoning and WPAD rogue server support.

Available plugins

* SMBtrap - Exploits the 'SMB Trap' vulnerability on connected clients

* Screenshotter - Uses HTML5 Canvas to render an accurate screenshot of a clients browser

* Responder - LLMNR, NBT-NS, WPAD and MDNS poisoner

* SSLstrip+ - Partially bypass HSTS

* Spoof - Redirect traffic using ARP spoofing, ICMP redirects or DHCP spoofing

* BeEFAutorun - Autoruns BeEF modules based on a client's OS or browser type

* AppCachePoison - Perform app cache poisoning attacks

* Ferret-NG - Transperently hijacks sessions

* BrowserProfiler - Attempts to enumerate all browser plugins of connected clients

* CacheKill - Kills page caching by modifying headers

* FilePwn - Backdoor executables sent over HTTP using the Backdoor Factory and BDFProxy

* Inject - Inject arbitrary content into HTML content

* BrowserSniper - Performs drive-by attacks on clients with out-of-date browser plugins

* jskeylogger - Injects a Javascript keylogger into a client's webpages

* Replace - Replace arbitary content in HTML content

* SMBAuth - Evoke SMB challenge-response authentication attempts

* Upsidedownternet - Flips images 180 degrees

Source & code :https://github.com/byt3bl33d3r/MITMf

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...