中間人攻擊測試框架:MITMf
中間人攻擊測試框架 – MITMf。工具的作者是byt3bl33d3r,是基于代理工具sergio-proxy修改而來
MITMf不支持多系統平臺,雖然是python寫的,但是玩過以后才發現根本就是給linux量身做的,所以這里想玩的同學如果是win環境的話,可以考慮用虛擬機了,這里建議使用Kali/Linux。
這個工具完全基于 sergio-proxy https://code.google.com/p/sergio-proxy/ 并試圖恢復和更新這個項目。
可用的插件:
- Spoof - Redirect traffic using ARP Spoofing, ICMP Redirects or DHCP Spoofing and modify DNS queries
- BeEFAutorun - Autoruns BeEF modules based on clients OS or browser type
- AppCachePoison - Perform app cache poison attacks
- BrowserProfiler - Attempts to enumerate all browser plugins of connected clients
- CacheKill - Kills page caching by modifying headers
- FilePwn - Backdoor executables being sent over http using bdfactory
- Inject - Inject arbitrary content into HTML content
- JavaPwn - Performs drive-by attacks on clients with out-of-date java browser plugins
- jskeylogger - Injects a javascript keylogger into clients webpages
- Replace - Replace arbitary content in HTML content
- SMBAuth - Evoke SMB challenge-response auth attempts
- Upsidedownternet - Flips images 180 degrees
本文由用戶 jopen 自行上傳分享,僅供網友學習交流。所有權歸原作者,若您的權利被侵害,請聯系管理員。
轉載本站原創文章,請注明出處,并保留原始鏈接、圖片水印。
本站是一個以用戶分享為主的開源技術平臺,歡迎各類分享!