[Announce] Yet another MITM attack script (Yamas-ARM) - Page 24 - maemo.org

Saturn | # 231 | 2011-06-29, 21:23 | Report

comaX, you are now maintainer in your project

just approved your request.

price | # 232 | 2011-06-29, 21:33 | Report

Originally Posted by price View Post

thank you for the help.
it says: rc grep-gnu 2.5.-4maemo4
and when i type apt-get install grep it says:
selecting busybox instead of grep
busybox is already the newest version.

what about installing the grep-gnu package?

is this output correct? o.o

Kabouik | # 233 | 2011-06-29, 21:39 | Report

Yamas 0.9.4-1 did not solve my problem. Still no password retrieved when I attack my private wifi network, and I still get the following output:

Originally Posted by

egrep: bad regex ' (function(){var s=document.createElement('script');s.async="async" ;s.type="text/javascript";s.src='http://tcr.tynt.com/ti.js';var h=document.getElementsByTagName('script')[0];h.parentNode.insertBefore(s,h);})();': Invalid content of \{\}

I have not this message each time I launch Yamas however, and no idea of how to reproduce the error. :/

Last edited by Kabouik; 2011-06-29 at 21:44.

Saturn | # 234 | 2011-06-29, 23:37 | Report

Originally Posted by price View Post

thank you for the help.
it says: rc grep-gnu 2.5.-4maemo4
and when i type apt-get install grep it says:
selecting busybox instead of grep
busybox is already the newest version.

what about installing the grep-gnu package?

hi,

it might be irrelevant but you could try install and purge the grep-gnu package?
from the "rc" flag it seems you still have the configuration.

I would do:

Code:

apt-get install grep-gnu
apt-get remove --purge grep-gnu

if that didn't help I would remove/install the busybox-power

hih

price | # 235 | 2011-06-29, 23:56 | Report

Originally Posted by Saturn View Post

hi,

it might be irrelevant but you could try install and purge the grep-gnu package?
from the "rc" flag it seems you still have the configuration.

I would do:

Code:

apt-get install grep-gnu
apt-get remove --purge grep-gnu

if that didn't help I would remove/install the busybox-power

hih

Here my output. Thank you for your interest

/home/user # apt-get remove --purge grep-gnu
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
grep-gnu*
WARNING: The following essential packages will be removed.
This should NOT be done unless you know exactly what you are doing!
grep-gnu
0 upgraded, 0 newly installed, 1 to remove and 2 not upgraded.
After this operation, 1143kB disk space will be freed.
You are about to do something potentially harmful.
To continue type in the phrase 'Yes, do as I say!'
?] Yes, do as I say!
dpkg - warning, overriding problem because --force enabled:
This is an essential package - it should not be removed.
(Reading database ... 28776 files and directories currently installed.)
Removing grep-gnu ...
Purging configuration files for grep-gnu ...
dpkg: error processing grep-gnu (--purge):
subprocess post-removal script returned error exit status 1
Errors were encountered while processing:
grep-gnu
E: Sub-process /usr/bin/dpkg returned an error code (1)
/home/user #

udaychaitanya16 | # 236 | 2011-06-30, 06:00 | Report

Thank you Comax,Unhuman,Saturn.You made N900 invaluable.

The Following User Says Thank You to udaychaitanya16 For This Useful Post:
comaX

Saturn | # 237 | 2011-06-30, 09:48 | Report

Originally Posted by price View Post

Here my output. Thank you for your interest

/home/user # apt-get remove --purge grep-gnu
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
grep-gnu*
WARNING: The following essential packages will be removed.
This should NOT be done unless you know exactly what you are doing!
grep-gnu
0 upgraded, 0 newly installed, 1 to remove and 2 not upgraded.
After this operation, 1143kB disk space will be freed.
You are about to do something potentially harmful.
To continue type in the phrase 'Yes, do as I say!'
?] Yes, do as I say!
dpkg - warning, overriding problem because --force enabled:
This is an essential package - it should not be removed.
(Reading database ... 28776 files and directories currently installed.)
Removing grep-gnu ...
Purging configuration files for grep-gnu ...
dpkg: error processing grep-gnu (--purge):
subprocess post-removal script returned error exit status 1
Errors were encountered while processing:
grep-gnu
E: Sub-process /usr/bin/dpkg returned an error code (1)
/home/user #

crap..

what does it say for:

Code:

apt-cache rdepends grep-gnu

I think you should remove yamas, busybox-power
then apt-get -f install
remove grep-gnu if it is still there and then reinstall yamas (if you want it).

we can do it on steps, send me PMs with output of every step.

iDont | # 238 | 2011-06-30, 11:38 | Report

Originally Posted by AgogData View Post

the warning during installing (replacing) busybox-power was a bit scary, whats the difference between the old stock and the new one ?

Please read the first post of this thread; I could copy-paste it into this thread, but a pointer is more practical I think

About the warning: whilst I haven't had a single report of a failing installation (out of a lot of downloads, according to this), it does seem fair to me to warn users about what the installation does, which is in fact overwriting an essential binary.

Originally Posted by Unhuman View Post

Got stuck with comax on the maemo sdk in virtual box - how can we install busybox-power in the SDK exactly? Got everything else installed, It returns an error -
dpkg: error processing /var/cache/apt/archives/busybox-power_1.18.5power1.armel.deb ( --unpack):
subprocess pre-installation script returned error exit status 1
Errors were encountered while processing:
/var/cache/apt/archives/busybox-power_1.18.5power1_armel.deb
E: Sub process /scratchbox/devkits/debian-etch/bin/dpkg returned an error code (1)

I'll look into this; I haven't tried installing busybox-power in Scratchbox before, as I do all testing on the device itself

Seems like I have to implement some checks to detect the current environment, and use different codepaths for them in the shell scripts. Thanks for spotting the failing installation in the SDK environment

By the way, if you're going to use the SDK as a development platform for YAMAS: do note that the SDK doesn't match Maemo 100%; e.g. Scratchbox has GNU grep and egrep, whilst these are provided by BusyBox in Maemo. In fact, BusyBox isn't even installed by default in Scratchbox. I'm sure there are quite a few more of these kind of differences.

Last edited by iDont; 2011-06-30 at 14:10. Reason: Fix small spelling error

The Following 3 Users Say Thank You to iDont For This Useful Post:
AgogData, Estel, Unhuman

AgogData | # 239 | 2011-06-30, 14:34 | Report

I've just tested it :
- yamas saves the files into /home/user/yamas not home/user/MyDocs/yamas
- the password.txt contains
website = www.facebook.com
login = true
website = www.facebook.com
login = (some numbers assuming it maybe the password)
why don't it show the ID or the username ?

comaX | # 240 | 2011-06-30, 14:53 | Report

Originally Posted by AgogData View Post

I've just tested it :
- yamas saves the files into /home/user/yamas not home/user/MyDocs/yamas
- the password.txt contains
website = www.facebook.com
login = true
website = www.facebook.com
login = (some numbers assuming it maybe the password)
why don't it show the ID or the username ?

Hmm... You sir are a bad student ! Since you're assuming it may be the password, it means you don't know it. If you don't know it, it's not yours. I'm sorry, but I won't help you for that.
Here's just a hint : we are parsing the log.

You should use the script on your own connection and then get log into a maximum of sites to know what the output should look like.

The saving location is just a variable now, so you can change it to whatever suits you

Saturn used this location because of some problem with MyDocs not being always available or something.