search

hak4 / subterfuge

Automatically exported from code.google.com/p/subterfuge
GNU General Public License v3.0
0 stars 0 forks source link

Encountered an error configuring arpwatch: Router MAC Address Unknown. #114

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago 
What steps will reproduce the problem?
1. type subterfuge
2. Browse to home ip address and click start
3. review terminal text as it starts

What is the expected output? What do you see instead?

i guess i am not supposed to see errors and that creds are captured instead i 
get the output below in the terminal and nothing in the way of captured creds 
in the browser

root@kali64:~# subterfuge

Subterfuge courtesy of r00t0v3rr1d3 & 0sm0s1z
Checking for updates. You can disable this feature through the settings page.
Subterfuge is still cutting edge!
Current version is: 5.0.8
Validating models...

0 errors found
Django version 1.3.1, using settings 'subterfuge.settings'
Development server is running at http://127.0.0.1:80/
Quit the server with CONTROL-C.
[25/Jul/2013 13:19:11] "GET / HTTP/1.1" 200 9594
[25/Jul/2013 13:19:11] "GET /static/css/main.css HTTP/1.1" 200 9091
[25/Jul/2013 13:19:11] "GET /static/css/settings.css HTTP/1.1" 200 197
[25/Jul/2013 13:19:11] "GET /static/css/domtab.css HTTP/1.1" 200 3108
[25/Jul/2013 13:19:11] "GET /static/css/jquery-ui.css HTTP/1.1" 200 32830
[25/Jul/2013 13:19:11] "GET /static/js/jquery.js HTTP/1.1" 200 91358
[25/Jul/2013 13:19:11] "GET /static/js/jquery-ui.js HTTP/1.1" 200 448331
[25/Jul/2013 13:19:11] "GET /static/js/domtab.js HTTP/1.1" 200 9399
[25/Jul/2013 13:19:11] "GET /static/images/logo.png HTTP/1.1" 200 2838377
[25/Jul/2013 13:19:11] "GET /static/images/title.png HTTP/1.1" 200 15636
[25/Jul/2013 13:19:11] "GET /static/images/activity.gif HTTP/1.1" 200 7247
[25/Jul/2013 13:19:11] "GET /static/images/down.png HTTP/1.1" 200 2936
[25/Jul/2013 13:19:11] "GET /static/images/loader.gif HTTP/1.1" 200 10819
[25/Jul/2013 13:19:11] "GET /static/images/subterfugebg.png HTTP/1.1" 200 
3026326
[25/Jul/2013 13:19:11] "GET /static/images/panel.jpg HTTP/1.1" 200 430
[25/Jul/2013 13:19:11] "GET /static/images/TranspFills/transpBlue90.png 
HTTP/1.1" 200 170
[25/Jul/2013 13:19:11] "GET /static/images/notify.png HTTP/1.1" 200 3338
[25/Jul/2013 13:19:11] "GET /static/images/transpBlack75.png HTTP/1.1" 200 166
[25/Jul/2013 13:19:11] "GET / HTTP/1.1" 200 438
[25/Jul/2013 13:19:11] "GET /static/images/panelsmall.png HTTP/1.1" 200 342
[25/Jul/2013 13:19:14] "GET / HTTP/1.1" 200 438
No default gw on eth0
[25/Jul/2013 13:19:17] "GET /settings/ HTTP/1.1" 200 25788
[25/Jul/2013 13:19:17] "GET /static/images/redbuttonbg.png HTTP/1.1" 200 256
[25/Jul/2013 13:19:17] "GET 
/static/css/images/ui-bg_highlight-soft_75_cccccc_1x100.png HTTP/1.1" 404 1839
[25/Jul/2013 13:19:17] "GET /static/css/images/ui-bg_glass_75_e6e6e6_1x400.png 
HTTP/1.1" 404 1812
[25/Jul/2013 13:19:17] "GET /static/css/images/ui-bg_flat_75_ffffff_40x100.png 
HTTP/1.1" 404 1812
Updating Subterfuge...
At revision 94.
Subterfuge is already at the latest version
Subterfuge 5.0.8
[25/Jul/2013 13:20:08] "POST /config/update/ HTTP/1.1" 200 24554
[25/Jul/2013 13:21:11] "GET /startpwn/auto/ HTTP/1.1" 500 52176
Starting Pwn Ops...
Running AutoPwn Method...
No default gw on eth0
Using:  wlan0
Setting gateway as:  192.168.99.1
Automatically Configuring Subterfuge...
Iptables Prerouting Configured

Configuring System...
net.ipv4.ip_forward = 1
IP Forwarding Enabled.
Initiating ARP Poison With ARPMITM...
Starting up SSLstrip...
Encountered an error configuring arpwatch: Router MAC Address Unknown. 
Terminating...
Harvesting Credentials...
Starting FTP Sniffer

sslstrip 0.9 by Moxie Marlinspike running...
Poisoning the entire subnet...

^Croot@kali64:~# 

What version of the product are you using? On what operating system?

kali amd64 1.03 with subterfuge 5.0.8

Please provide any additional information below.

I did get an error on first run where a db config file was conflicting with 
itself.

Original issue reported on code.google.com by chrisw1...@gmail.com on 25 Jul 2013 at 5:36

GoogleCodeExporter commented 8 years ago 
We are aware of the db config confliction. The fact that arpwatch failed to get 
the Router's MAC address could be from any number of reasons, such as your ARP 
table not being populated yet. This isn't a bug and Subterfuge still works fine 
without it. As to why you aren't grabbing credentials, I cannot tell from your 
description. It is always a possiblity that your network might not be 
susceptible to ARP cache poisoning attacks.

Original comment by topher.s...@gmail.com on 29 Jul 2013 at 12:34

GoogleCodeExporter commented 8 years ago 
Thanks Topher

I will try with other routers and see what happens.  Two Drayteks tried so far 
- now onto other manufacturers  :)

Original comment by chrisw1...@gmail.com on 29 Jul 2013 at 12:49