- Whole framework now requires root privs

- Added an internal DNS server - Proxy can now use our custom DNS server (DNSChef) or Twisted's - Removed priv check from plugins - DNS spoofing fully re-written - Iptables rules are now checked and set between plugins
2025-08-21 14:03:26 -07:00 · 2015-04-12 01:49:43 +02:00 · 2015-04-12 01:49:43 +02:00 · 9a1c3b0ec4
commit 9a1c3b0ec4
parent c8732d60eb
22 changed files with 129 additions and 90 deletions
--- a/config/mitmf.conf
+++ b/config/mitmf.conf
@ -8,7 +8,6 @@
 	#here you can set the arguments to pass to MITMf when it starts so all you need to do is run `python mitmf.py` 
 	#(assuming you config file is in the default directory)
 	#
-
 	args=''

 	#Required BeEF and Metasploit options
@ -23,28 +22,22 @@
 		rpcip = 127.0.0.1
 		rpcpass = abc123

-#
-#Plugin configuration starts here
-#
-
-[Spoof]
-
-	[[DHCP]]
-		ip_pool = 192.168.2.10-50
-		subnet = 255.255.255.0
-		dns_server = 192.168.2.20 #optional
-
-	
 	[[DNS]]

 		#
-		#Here you can configure DNSChef's options
+		#Here you can configure MITMf's internal DNS server
 		#

-		port = 53              #Port to listen on
-		nameservers = 8.8.8.8  #Supported formats are 8.8.8.8#53 or 4.2.2.1#53#tcp or 2001:4860:4860::8888
-		tcp =  Off             #Use the TCP DNS proxy instead of the default UDP
-		ipv6 = Off             #Run in IPv6 mode
+		resolver = dnschef    #Can be set to 'twisted' or 'dnschef' ('dnschef' is highly reccomended)
+		tcp      = Off        #Use the TCP DNS proxy instead of the default UDP (not fully tested, might break stuff!)
+		port     = 53         #Port to listen on
+		ipv6     = Off        #Run in IPv6 mode (not fully tested, might break stuff!)
+
+		#
+		#Supported formats are 8.8.8.8#53 or 4.2.2.1#53#tcp or 2001:4860:4860::8888
+		#can also be a comma seperated list e.g 8.8.8.8,8.8.4.4
+		#
+		nameservers = 8.8.8.8

 		[[[A]]]     # Queries for IPv4 address records
 		*.thesprawl.org=192.0.2.1
@ -82,6 +75,17 @@
 		[[[RRSIG]]] #FORMAT: covered algorithm labels labels orig_ttl sig_exp sig_inc key_tag name base64(sig)
 		*.thesprawl.org=A 5 3 86400 20030322173103 20030220173103 2642 thesprawl.org. oJB1W6WNGv+ldvQ3WDG0MQkg5IEhjRip8WTrPYGv07h108dUKGMeDPKijVCHX3DDKdfb+v6oB9wfuh3DTJXUAfI/M0zmO/zz8bW0Rznl8O3tGNazPwQKkRN20XPXV6nwwfoXmJQbsLNrLfkGJ5D6fwFm8nN+6pBzeDQfsS3Ap3o=

+#
+#Plugin configuration starts here
+#
+
+[Spoof]
+
+	[[DHCP]]
+		ip_pool = 192.168.2.10-50
+		subnet = 255.255.255.0
+		dns_server = 192.168.2.20 #optional
+
 [Responder]

 	#Set these values to On or Off, so you can control which rogue authentication server is turned on.