Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Yeah, well, for me trying to crack md5 is a waste of time ! If you have a botnet and a nice online md5 cracker (I did know one, but forgot...) you can have a go, sure. But on your own, even with some high tech two-gpu CUDA cracking gear, it can take forever...

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Hi guys ! I just moved in, so I'm on a shitty, free wifi connection so I can't test sh|t, which means I can't work on DNS spoofing and all... I don't know when I'll get a decent connection, so just wait and see ! Meanwhile I can still bring support, and modify things here and there, so keep the feedback coming !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I have no problem with installation, however MITM doesn't work.

When I invoke script, I can see both ettercap and password terminal window running.

Victim (me) is running Windows 7.
arp -a shows that victim is using spoofed (N900) gateway.

I cannot browse internet on victim machine, (or at least it's to laggy). SSLStrip is not working (tried on facebook).

When I invoke iptables --list on N900 there are no rules.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

That's weird to say the least ! Thanks for the detailed symptoms by the way ;)
So, according to what you say, MITM is in fact working since you're using a spoofed gateway !
Now, about it being laggy, that's normal : even when I had an optic fiber connection (soon to come back I hope...) it was laggy during the attack.
Did you go as far as entering a pass for FB ?

For the iptables --list, well, there should be since we create one ! Try to enter it manually perhaps. (look at the script source, or sslstrip's website)
Were you root when doing this ? (I guess yes, but who knows !)

Ps : "Dear journal, I now have been on a shitty connection for a week. It's becoming unbearable."

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Next entry: "Temptation to perform phishing attack on neighbourn's WPA2 password is growing hard to resist" ;) Sorry, can't stop myself from posting that.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I start yamas via the desktop icon an im presnted with this error highlighted in black , also seems the script is not working .....

http://dl.dropbox.com/u/10188212/scr...706-224701.png

I dont get that error in i open xterminal as root an type " yamas " the error is gone but the script doesnt work at all not sure whats gone wrong ...

i ran yamas -d an all is fine there ...

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

yes, but it was neccessary to do couple of page refreshs (because of laggy connection). SSLStrip didn't do the job - didn't redirect to non-ssl facebook.

I think the main problem is missing rule for iptables. I'll try (as you suggesting) add rule manually and let you know.

Of course I was invoking script as root.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

do I have to install power kernel and bleeding-edge w1251 driver ?
the script is not able to get any passwords, i am getting this error :

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

HI everyone !

To the guys reporting errors, I unfortunately can't help you... It seems launching it with the icon is buggy, for some reason...

@yamakasi (smells like some fellow French there, ain't it ?) : update your iptables ! Maybe an apt-get will do, don't know !

Some dude contacted me from the BT forum to work on a ARM version (and not just N900 or maemo). So apart from places to save files, nothing much should change user-side. But if achieved, it should be compatible with at least maemo and BT-ARM. Which I think would be pretty awesome !

I'll keep you in touch !

Cheers !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

comaX I have couple questions for you. Probably answering them, can exclude some possible environment setup problems.

Are you using nokia stock or power kernel?
And are you using stock wlan or bleeding edge drivers?
Are using default busybox or enhanced?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Edited as power kernel is not needed but I don't think you have iptables installed correctly.
What is the output of

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

As stated in the first post I made here, I do not own an N900... So I'll let others who have the script wroking answering those questions !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

its working fine with me using the menu icon
- power kernel 47
- bleeding edge
- enhanced (i guess, by installing yamas via app manager it replaced my busybox so i think its the enhanced one)

comaX, how can i know how many users are there in the network and their IPs ?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

ARP-SCAN should be a GOOD Tool to see the network & IPs prior to run YAMAS. :D

http://talk.maemo.org/showthread.php?p=1016651

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

With the host discovery feature... It is asked if you want to map the network or not ^^ You have to enter [Dd] I believe !

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

lol, not really since you recognized the name then you must be from Sarcelles.

anyway, 'apt-get install iptables' returns that I have the newest version.

this is the output :
what should I put as an argument ?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Nope, not from Sarcelles but Paris ! But the movie is pretty well known here ^^

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

when i run yamas via the app icon i am faced with this problem when i do i rescan the network

anybody a clue as to what this means ??

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

what does it say if you do:
dpkg -l nmap

just curious if you testing the beta version of nmap in devel.

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

output is this

yes your right its the beta version im guessing ..

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

@stevomanu:

install the one in extras:
http://maemo.org/packages/package_in...l/nmap/5.50-2/

and check if it works again.

apt-get install nmap=5.50-2

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

many thanks for your help just wanderin do you or any 1 know why it says this in ettercap

many thanks

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Any fix for this yet?

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

i have power kernel 47 installed an only load bleeding adge drivers when i use aircrack its not needed for this script as it uses its own dependencys ...

althou the script doesnt work all the time but thats depends on your victim

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

HI everyone ! I have a new website (http://comax.fr), but no referencement because of my darn former host... So if you can pay me some visits, etc. that would be cool !
And if you wrote articles about that, with my former website in it, could you update to the new one ?

Thanks in advance bros !

Also, any feedback is welcomed !

Torpedo, I think I'll use your video as an illustration for this version, are you ok with that ?

I'm still working on the maemo page but it shouldn't be too much different from the BT one !

By the way, if that interest you, there's a count of the daily use of yamas (well, that doesn't count maemo's version, unfortunately ^^) on the page ! I didn't think it was used this much !

Cheers !

(sorry for the previous posts, but it's too device related for me to bring any help...)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

My videos are your videos, no problems about that.

BTW, I recently bought a laptop :D
Experimenting with the full BT version of YAMAS is sooo cool, I will make a video about it too, "expect us" ;)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

You just made me a happy bunny bro !
Thanks !


Have fun with it, and enjoy your laptop !

(no, the thanks button wasn't enough :p)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

comaX,

Very nice template; the site looks really cool. well done.

If you haven't already, maybe you want to change your signature here? :)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Nope... And since we don't use anything DNS-related, it's strange... Have you checked your etter.conf file ? Tried to modify anything ?

####

Thanks ! And yeah, I should change the sign, thanks for reminding me :)

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

well did some googleing on this an people have said that you need to change
to

but that never worked either so i have no idea really .... very strange

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

Yep, exactly the same problem here. Please help us or else I'm going to throw my N900 through a skyscrapper window :@

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

hey wen i rouched the top menu bar line i can see only twp applets in my n900 i.e volume option and battery percentage option... i cant see the all applets like fm transmetter,shortuts,internet,clock,bluetooth etc... how to get it back

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

I don't see any difference between the two, and it isn't ettercap related at all... I don't see how iptables would interact with etter.conf...

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

hijack a thread why dont you lol , you need to find the write thread an post your issue there ....

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

the hashes are missing if you notice at start of the line , i googled it an thats what some different forums came up with it work for some an not others so i have no idea at all ...


plus line 70 is here

so i cant see whats wrong

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

@stevomanu

i had the problem with debian-chroot
but not in maemo5
i guess it is tcpdump
try to install it
apt-get install tcpdump

if still having the problem
try to reinstall ettercap from

http://talk.maemo.org/showpost.php?p...50&postcount=1

that's how i got mine working perfectly

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

From where did you install ettercap? (Unhuman's guide is the recommended here)

I'm asking since searching for this in the forums seems like it used to be a problem in older versions of ettercap. Of course your problem might be different.

EDIT: Ohh, I just noticed there was a whole page of comments I missed..

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

not sure now but it wasnt from the link above thats for sure , so have you got a link an will check out both if i have to ..

cheers

Re: [Announce] Yet another MITM attack script (Yamas-ARM)
 

did you try to check first post? :rolleyes: