maemo.org - Talk

maemo.org - Talk (https://talk.maemo.org/index.php)
-   Applications (https://talk.maemo.org/forumdisplay.php?f=41)
-   -   [Announce] Yet another MITM attack script (Yamas-ARM) (https://talk.maemo.org/showthread.php?t=73988)

Saturn 2011-06-29 21:23

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
comaX, you are now maintainer in your project :D

just approved your request.

price 2011-06-29 21:33

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Quote:

Originally Posted by price (Post 1041513)
thank you for the help.
it says: rc grep-gnu 2.5.-4maemo4
and when i type apt-get install grep it says:
selecting busybox instead of grep
busybox is already the newest version.

what about installing the grep-gnu package?

is this output correct? o.o

Kabouik 2011-06-29 21:39

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Yamas 0.9.4-1 did not solve my problem. Still no password retrieved when I attack my private wifi network, and I still get the following output:

Quote:

egrep: bad regex ' (function(){var s=document.createElement('script');s.async="async" ;s.type="text/javascript";s.src='http://tcr.tynt.com/ti.js';var h=document.getElementsByTagName('script')[0];h.parentNode.insertBefore(s,h);})();': Invalid content of \{\}
I have not this message each time I launch Yamas however, and no idea of how to reproduce the error. :/

Saturn 2011-06-29 23:37

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Quote:

Originally Posted by price (Post 1041513)
thank you for the help.
it says: rc grep-gnu 2.5.-4maemo4
and when i type apt-get install grep it says:
selecting busybox instead of grep
busybox is already the newest version.

what about installing the grep-gnu package?

hi,

it might be irrelevant but you could try install and purge the grep-gnu package?
from the "rc" flag it seems you still have the configuration.

I would do:
Code:

apt-get install grep-gnu
apt-get remove --purge grep-gnu

if that didn't help I would remove/install the busybox-power

hih

price 2011-06-29 23:56

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Quote:

Originally Posted by Saturn (Post 1041832)
hi,

it might be irrelevant but you could try install and purge the grep-gnu package?
from the "rc" flag it seems you still have the configuration.

I would do:
Code:

apt-get install grep-gnu
apt-get remove --purge grep-gnu

if that didn't help I would remove/install the busybox-power

hih

Here my output. Thank you for your interest :)

/home/user # apt-get remove --purge grep-gnu
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
grep-gnu*
WARNING: The following essential packages will be removed.
This should NOT be done unless you know exactly what you are doing!
grep-gnu
0 upgraded, 0 newly installed, 1 to remove and 2 not upgraded.
After this operation, 1143kB disk space will be freed.
You are about to do something potentially harmful.
To continue type in the phrase 'Yes, do as I say!'
?] Yes, do as I say!
dpkg - warning, overriding problem because --force enabled:
This is an essential package - it should not be removed.
(Reading database ... 28776 files and directories currently installed.)
Removing grep-gnu ...
Purging configuration files for grep-gnu ...
dpkg: error processing grep-gnu (--purge):
subprocess post-removal script returned error exit status 1
Errors were encountered while processing:
grep-gnu
E: Sub-process /usr/bin/dpkg returned an error code (1)
/home/user #

udaychaitanya16 2011-06-30 06:00

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Thank you Comax,Unhuman,Saturn.You made N900 invaluable.

Saturn 2011-06-30 09:48

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Quote:

Originally Posted by price (Post 1041837)
Here my output. Thank you for your interest :)

/home/user # apt-get remove --purge grep-gnu
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
grep-gnu*
WARNING: The following essential packages will be removed.
This should NOT be done unless you know exactly what you are doing!
grep-gnu
0 upgraded, 0 newly installed, 1 to remove and 2 not upgraded.
After this operation, 1143kB disk space will be freed.
You are about to do something potentially harmful.
To continue type in the phrase 'Yes, do as I say!'
?] Yes, do as I say!
dpkg - warning, overriding problem because --force enabled:
This is an essential package - it should not be removed.
(Reading database ... 28776 files and directories currently installed.)
Removing grep-gnu ...
Purging configuration files for grep-gnu ...
dpkg: error processing grep-gnu (--purge):
subprocess post-removal script returned error exit status 1
Errors were encountered while processing:
grep-gnu
E: Sub-process /usr/bin/dpkg returned an error code (1)
/home/user #

crap..

what does it say for:
Code:

apt-cache rdepends grep-gnu
I think you should remove yamas, busybox-power
then apt-get -f install
remove grep-gnu if it is still there and then reinstall yamas (if you want it).

we can do it on steps, send me PMs with output of every step.

iDont 2011-06-30 11:38

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Quote:

Originally Posted by AgogData (Post 1041154)
the warning during installing (replacing) busybox-power was a bit scary, whats the difference between the old stock and the new one ?

Please read the first post of this thread; I could copy-paste it into this thread, but a pointer is more practical I think ;)

About the warning: whilst I haven't had a single report of a failing installation (out of a lot of downloads, according to this), it does seem fair to me to warn users about what the installation does, which is in fact overwriting an essential binary.

Quote:

Originally Posted by Unhuman (Post 1041532)
Got stuck with comax on the maemo sdk in virtual box - how can we install busybox-power in the SDK exactly? Got everything else installed, It returns an error -
dpkg: error processing /var/cache/apt/archives/busybox-power_1.18.5power1.armel.deb ( --unpack):
subprocess pre-installation script returned error exit status 1
Errors were encountered while processing:
/var/cache/apt/archives/busybox-power_1.18.5power1_armel.deb
E: Sub process /scratchbox/devkits/debian-etch/bin/dpkg returned an error code (1)

I'll look into this; I haven't tried installing busybox-power in Scratchbox before, as I do all testing on the device itself ;)
Seems like I have to implement some checks to detect the current environment, and use different codepaths for them in the shell scripts. Thanks for spotting the failing installation in the SDK environment :)

By the way, if you're going to use the SDK as a development platform for YAMAS: do note that the SDK doesn't match Maemo 100%; e.g. Scratchbox has GNU grep and egrep, whilst these are provided by BusyBox in Maemo. In fact, BusyBox isn't even installed by default in Scratchbox. I'm sure there are quite a few more of these kind of differences.

AgogData 2011-06-30 14:34

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
I've just tested it :
- yamas saves the files into /home/user/yamas not home/user/MyDocs/yamas
- the password.txt contains
website = www.facebook.com
login = true
website = www.facebook.com
login = (some numbers assuming it maybe the password)
why don't it show the ID or the username ?

comaX 2011-06-30 14:53

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 
Quote:

Originally Posted by AgogData (Post 1042204)
I've just tested it :
- yamas saves the files into /home/user/yamas not home/user/MyDocs/yamas
- the password.txt contains
website = www.facebook.com
login = true
website = www.facebook.com
login = (some numbers assuming it maybe the password)
why don't it show the ID or the username ?

Hmm... You sir are a bad student ! Since you're assuming it may be the password, it means you don't know it. If you don't know it, it's not yours. I'm sorry, but I won't help you for that.
Here's just a hint : we are parsing the log.

You should use the script on your own connection and then get log into a maximum of sites to know what the output should look like.

The saving location is just a variable now, so you can change it to whatever suits you ;) Saturn used this location because of some problem with MyDocs not being always available or something.


All times are GMT. The time now is 08:33.

vBulletin® Version 3.8.8