albainski / subterfuge

Automatically exported from code.google.com/p/subterfuge
GNU General Public License v3.0
0 stars 0 forks source link

Harvester not capturing credentials #146

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?
1. Dynamic ARP unckecked
2. start harvester
3.

What is the expected output? What do you see instead?
captured credentials, however i received none from target computer

What version of the product are you using? On what operating system?
kali 1.0.6 on Virtual box 4.3.6, subterfuge 1.0.1. Host is Macbook pro OSX 
10.9.1. Target is imac OSX 10.9.1.

Please provide any additional information below.

Harvester not working for me. Using Kali on VB, started subterfuge and started 
harvester with no credentials captured. Tried linkedin, espn, directv, 
craigslist, just test accounts.  

Host machine i'm using is a MCPro, my target machine is my imac, all are on my 
home network. I did not see the MAC addresses matching on Kali and the target 
computer as 0sm0s1z had mentioned in issue #110. Also Dynamic ARP is unchecked.

I have the latest version of Kali 1.0.6 and all the updates for subterfuge but 
using --update. Any ideas?

Original issue reported on code.google.com by mxgen...@gmail.com on 10 Jan 2014 at 6:15

GoogleCodeExporter commented 8 years ago
Are you able to provide more details describing your network setup? Is it a 
consumer level router? It sounds like the ARP poison is not successful, but I 
would need more details to try to determine why. It is always a possibility 
that your network is not vulnerable to an ARP spoofing attack..Also, did 
Subterfuge alert you to any errors?

Original comment by topher.s...@gmail.com on 10 Jan 2014 at 7:59

GoogleCodeExporter commented 8 years ago
r00t0v3rr1d3,

The router i am using is an apple timecapsule, consumer level, Best Buy  :)...

What sort of networks are more vulnerable? Is it the public type at cafes? Are 
there any consumer level routers that are more susceptible?  

There were no errors during the loading of subterfuge attached is the terminal 
window after startup. Is there anything else that you might need to help 
resolve this? I want to help make your program as good as it can get, let me 
know if there is any more details you need.

Original comment by mxgen...@gmail.com on 10 Jan 2014 at 8:23

Attachments:

GoogleCodeExporter commented 8 years ago
An apple timecapsule should be vulnerable. The screenshot you provided just 
shows that Subterfuge is running, but you haven't opened a browser to view the 
interface or launch an attack. Are you sure you are using Subterfuge properly? 
You need to use the graphical interface (default is point your web-browser to 
http://127.0.0.1/) and at a minimum click the "Start" button in the upper right 
hand corner. I am unable to determine what problem you are having without more 
information. 

Original comment by topher.s...@gmail.com on 14 Jan 2014 at 7:30

GoogleCodeExporter commented 8 years ago
I had the browser open Chrome @127.0.0.1 and hit the start button. I could see 
the indicator running in the interface, but no credentials were populating. I 
did more research and read that some websites if they have SSL or HTTPS  it 
will not work. Maybe that could be the problem. If There is anymore info you 
need let me know.

Original comment by mxgen...@gmail.com on 15 Jan 2014 at 1:25

GoogleCodeExporter commented 8 years ago
Sorry, there not enough information to determine if a bug exists in Subterfuge.

Original comment by topher.s...@gmail.com on 22 Jan 2014 at 12:00

GoogleCodeExporter commented 8 years ago
I'm having a similar problem. I start and load Subterfuge through the web 
interface and I hit the start button (the default gateway was correctly 
auto-populated) but it doesn't seem to capture credentials or I am just unable 
to browse the net with another computer in the network.

I'm using Kali in VMWare inside a MacBook Air. The router I'm using is Motorola 
SurfBoard SBG6580.

Original comment by panictu...@gmail.com on 25 Oct 2014 at 9:22