mirror of https://github.com/byt3bl33d3r/MITMf.git synced 2025-07-07 13:32:18 -07:00

Framework for Man-In-The-Middle attacks

Find a file

byt3bl33d3r 9ef85851a2 Merge pull request #10 from mmetince/master Kali installation steps added into README.md		2014-10-13 16:48:46 +02:00
bdfactory@20fe713d78	updated bdfactory to lastest commit	2014-10-01 22:52:25 +02:00
config_files	added HSTS bypass as demonstrated by Leonardo Nve at blackhat	2014-10-11 13:09:06 +02:00
libs	revamped beefapi, fixed BrowserProfiler output	2014-08-27 00:09:18 +02:00
plugins	added HSTS bypass as demonstrated by Leonardo Nve at blackhat	2014-10-11 13:09:06 +02:00
sslstrip	added HSTS bypass as demonstrated by Leonardo Nve at blackhat	2014-10-11 13:09:06 +02:00
.gitignore	code cleanup on all plugins, disabled annoying "Starting new HTTP Connection" log message, added BeefAutorun plugin and beefapi lib	2014-08-14 11:30:44 +02:00
.gitmodules	added submodule bdfactory	2014-07-12 08:31:09 +02:00
install-bdfactory.sh	added install and update scripts	2014-07-24 12:47:19 +02:00
LICENSE	Initial commit	2014-07-07 13:13:51 +02:00
lock.ico	initial commit	2014-07-07 13:40:49 +02:00
mitmf.py	added HSTS bypass as demonstrated by Leonardo Nve at blackhat	2014-10-11 13:09:06 +02:00
README.md	Update README.md	2014-10-13 12:16:37 +03:00
update.sh	added install and update scripts	2014-07-24 12:47:19 +02:00

MITMf

Framework for Man-In-The-Middle attacks

Quick tutorials, examples and dev updates at http://sign0f4.blogspot.it

This tool is completely based on sergio-proxy https://code.google.com/p/sergio-proxy/ and is an attempt to revive and update the project.

Availible plugins:

Spoof - Redirect traffic using ARP Spoofing, ICMP Redirects or DHCP Spoofing and modify DNS queries
BeEFAutorun - Autoruns BeEF modules based on clients OS or browser type
AppCachePoison - Perform app cache poison attacks
BrowserProfiler - Attempts to enumerate all browser plugins of connected clients
CacheKill - Kills page caching by modifying headers
FilePwn - Backdoor executables being sent over http using bdfactory
Inject - Inject arbitrary content into HTML content
JavaPwn - Performs drive-by attacks on clients with out-of-date java browser plugins
jskeylogger - Injects a javascript keylogger into clients webpages
Replace - Replace arbitary content in HTML content
SMBAuth - Evoke SMB challenge-response auth attempts
Upsidedownternet - Flips images 180 degrees

So far the most significant changes have been:

Integrated SSLstrip+ (https://github.com/LeonardoNve/sslstrip2) by Leonardo Nve to partially bypass HSTS as demonstrated at BlackHat Asia 2014
Spoof plugin now supports ICMP, ARP and DHCP spoofing along with DNS tampering (DNS tampering code was stolen from https://github.com/DanMcInerney/dnsspoof/)
Spoof plugin can now exploit the 'ShellShock' bug when DHCP spoofing!
Usage of third party tools has been completely removed (e.g. ettercap)
FilePwn plugin re-written to backdoor executables and zip files on the fly by using the-backdoor-factory https://github.com/secretsquirrel/the-backdoor-factory and code from BDFProxy https://github.com/secretsquirrel/BDFProxy
Added msfrpc.py for interfacing with Metasploits rpc server
Added beefapi.py for interfacing with BeEF's RESTfulAPI
Addition of the app-cache poisoning attack by Krzysztof Kotowicz

First you need to execute install-bdfactory.sh file then execute following commands.

apt-get install capstone python-nfqueue

pip install pefile capstone