Fixed bug where Net-Creds wouldn't parse URL's and HTTP data when reading from pcap

Active packet filtering engine and proxy + servers are now mutually exclusive , you can only start one of them (iptable conflicts)
2025-08-20 05:23:28 -07:00 · 2015-09-01 14:15:21 +02:00 · 2015-09-01 14:15:21 +02:00 · 986b2b851f
commit 986b2b851f
parent 28fc081068
9 changed files with 179 additions and 160 deletions
--- a/plugins/plugin.py
+++ b/plugins/plugin.py
@ -31,6 +31,7 @@ class Plugin(ConfigWatcher):

    def __init__(self, parser):
        '''Passed the options namespace'''
+
        if self.desc:
            sgroup = parser.add_argument_group(self.name, self.desc)
        else:
--- a/plugins/responder.py
+++ b/plugins/responder.py
@ -91,5 +91,5 @@ class Responder(Plugin):
        options.add_argument('--fingerprint',   dest="finger", action="store_true", help="Fingerprint hosts that issued an NBT-NS or LLMNR query")
        options.add_argument('--lm',            dest="lm",     action="store_true", help="Force LM hashing downgrade for Windows XP/2003 and earlier")
        options.add_argument('--wpad',          dest="wpad",   action="store_true", help="Start the WPAD rogue proxy server")
-        options.add_argument('--forcewpadauth', dest="forcewpadauth", action="store_true", help="Set this if you want to force NTLM/Basic authentication on wpad.dat file retrieval. This might cause a login prompt in some specific cases. Therefore, default value is False")
-        options.add_argument('--basic',         dest="basic",         action="store_true", help="Set this if you want to return a Basic HTTP authentication. If not set, an NTLM authentication will be returned")
+        options.add_argument('--forcewpadauth', dest="forcewpadauth", action="store_true", help="Force NTLM/Basic authentication on wpad.dat file retrieval (might cause a login prompt)")
+        options.add_argument('--basic',         dest="basic",         action="store_true", help="Return a Basic HTTP authentication. If not set, an NTLM authentication will be returned")
--- a/plugins/spoof.py
+++ b/plugins/spoof.py
@ -70,7 +70,7 @@ class Spoof(Plugin):

        if options.dns:
            self.tree_info.append('DNS spoofing enabled')
-            if iptables().dns is False:
+            if iptables().dns is False and options.filter is False:
                iptables().DNS(self.config['MITMf']['DNS']['port'])

        if not options.arp and not options.icmp and not options.dhcp and not options.dns:
@ -78,7 +78,7 @@ class Spoof(Plugin):

        set_ip_forwarding(1)

-        if iptables().http is False:
+        if iptables().http is False and options.filter is False:
            iptables().HTTP(options.listen_port)

        for protocol in self.protocol_instances:
--- a/plugins/sslstrip+.py
+++ b/plugins/sslstrip+.py
@ -33,7 +33,7 @@ class SSLstripPlus(Plugin):
        from core.servers.DNS import DNSChef
        from core.utils import iptables

-        if iptables().dns is False:
+        if iptables().dns is False and options.filter is False:
            iptables().DNS(self.config['MITMf']['DNS']['port'])

        URLMonitor.getInstance().setHstsBypass()