Closed GoogleCodeExporter closed 8 years ago
It looks like Dynamic ARP Retention might be DOSing your network. It's a nice
feature that Subterfuge has, and in most situations it works well; however,
some router can freak out when this setting is enabled. Try going to the
Subterfuge settings page -> Configuration -> Toggle Dynamic Retention to off.
Let me know if that fixes your issue at all?
Original comment by Mtoussain@gmail.com
on 26 Jun 2013 at 12:54
Oh one more thing. An easy way to tell if the host has been poisoned. Under OS
X run: arp -a Then check to see if the MAC Address of your gateway is the same
as the MAC of your Kali Machine. If they are then the poison was successful.
Original comment by Mtoussain@gmail.com
on 26 Jun 2013 at 12:56
Dynamic ARP Retention does not seem to be fixing the problem. Here is how I
tried to fix the problem.
I started subterfuge from the command line as usual. Launched a browser,
navigated to the configuration page, and disabled Dynamic Retention, and hit
apply. I then went back to the subterfuge home page, and hit "start." Same
issue. No collection of passwords.
As far as arp, I am using it to confirm that the man in the middle attack is
working at all, which it is not. The "homeportal" mac address stays the same
no matter what I do with the attack.
Please let me know if you would like more logs.
Original comment by not2rip...@gmail.com
on 29 Jun 2013 at 11:26
I have the exact same problem. I am running subterfuge 5.0 on Ubuntu 12.04.2.
I get the same outputs and I am unable to collect credentials from any site
(tried amazon, yahoo, hotmail, ebay). I also checked arp -a and it did not show
my computer's MAC address as the default gateway.
As for the Dynamic Retention option under ARP controls, I notice that even
though I uncheck it and click apply, it still remains checked when I reopen the
settings page. I can change any other settings and they remain changed except
for Dynamic Retention which persistently remains active.
Thanks
Original comment by thehoudh...@gmail.com
on 4 Jul 2013 at 2:33
Try going into the Settings page and clicking the Update button. The latest
version should allow you to properly disable Dynamic ARP Retention if that is
causing problems on your network.
Original comment by topher.s...@gmail.com
on 12 Jul 2013 at 12:49
I have the same problem and im unable of turnning off the ARP dynamic retention
Original comment by dnevado...@gmail.com
on 7 Sep 2013 at 1:36
Original comment by Mtoussain@gmail.com
on 20 Oct 2013 at 5:25
saludos
amigos este es mi error y de ahi no paso y ya me canse de como solucionar eeste
error
si alguien sabe
ademas no me recolecta las credenciales
Original comment by gersonme...@gmail.com
on 9 Nov 2013 at 1:13
Attachments:
si alguuien me puede ayudar se lo agradeceria Much0
Original comment by gersonme...@gmail.com
on 9 Nov 2013 at 1:17
what i did, is, on command line:
subterfuge --update
with p, df and mf, problem is fixed. but look, i do not say that this is
solution, i just share what i did to solve this issue. you can try, but this is
not promissed fix rule...
Original comment by dimitrij...@gmail.com
on 6 Jan 2014 at 3:54
also you can use e option which is edit, to see and edit configuration file, to
see if it points to correct ip, router and if it uses correct interface.
Original comment by dimitrij...@gmail.com
on 6 Jan 2014 at 3:56
[deleted comment]
Hola amigo gersonme para solucionar tu problema ve a settings y en
configuration desactiva Dynamic Toggle y luego marcas apply
Original comment by Malave...@gmail.com
on 27 Jan 2014 at 8:32
its only going to work on twitter, all the ones you listed use SSL, hence, you
wont get any passwords using Subterfuge !!!!!
Original comment by executive
on 8 Mar 2014 at 7:56
executive, the idea is to strip it from ssl that is why subterfuge uses
sslstrip! it should work with ssl!
Original comment by nash...@gmail.com
on 13 Aug 2014 at 3:17
Original issue reported on code.google.com by
not2rip...@gmail.com
on 19 Jun 2013 at 3:38