Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

wen i rouched the top menu bar line i can see only twp applets in my n900 i.e volume option and battery percentage option... i cant see the all applets like fm transmetter,shortuts,internet,clock,bluetooth etc... the default also went off...how to get it back

and one more....
when i went to setting and then cssu tuner i got dis popup mesg "could not detect community ssu being installed
you may still try to use the cssu tuner

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

How the *holy f.u.c.k* Your totally broken system is supposed to be related to Yamas? 0_o

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

^ This. We might be missing the point though...

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Aaaaaaaaaaaaaaaaaaaaaaaaaaah, I'm freaking out! I have just flashed my N900 and installed only the most necessary applications, but that (censored) (censored) (censored) of a (censored) still gives me the Dissector "dns" not supported (etter.conf line 70) error!

Please, I'm desperate :P

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi guys ! It's nice and all to play hackers, but what about network security ?!

So, I decided to do a little write up on how to protect yourself or your visitors from this type of attack. You'll find it here : http://comax.fr/yamas.php and then by clicking "how to protect". Not done yet, but it should be done quite soon !

I'll prolly make a copypasta here ;)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

just tryed to go toy you site an this is what i was faced with ??

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

[QUOTE=stevomanu;1060205]just tryed to go toy you site an this is what i was faced with ??

F*ck, my bad... I put / instead of .php... bad habits ! It's fixed now !

http://comax.fr/yamas.php !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Here's the intro :

"Introduction -- How it works.

In the attack Yamas uses, the vector is the poisonning of the victim's ARP cache. ARP is the protocol that will "translate" physical mac adresses into IP adresses on the local network. When an equipement wants to connect to the network, it will ask for the mac of the router's IP, eg : "Who has 192.168.1.1 ? Tell 192.168.1.2". The router then responds "198.168.1.1 [router] is at 11:22:33:44:55:66 [router]". This will be written in the ARP cache of the client. And this is where we come in play. We send spoofed ARP responses : "192.168.1.1 [router] is at 00:11:22:66:66:66 [attacker]". The client will then modify its cache to set the attacker as the router. We then forward the traffic to the real router, which allows us to read, and manilipulate the traffic on-the-fly. That's how we get the passwords. Thanks to sslstrip, we force the clients to send the credentials as clear text, so that we can simply read them.
All right, but now, how do you protect yourself from that to happen to you ? "

Yeah, I'm a cheap bastard, you'll have to click this http://comax.fr/yamas.php?frame=protect.php to know what's next :p

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

ArpON 2.7
will work on n900?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Dunno... You'll have to see for yourself or wait for someone to try !
If you read the article, could you give me feedback of any sort in PM please ?

Cheers :)