Skip to content

Latest commit

 

History

History
59 lines (58 loc) · 1.87 KB

File metadata and controls

59 lines (58 loc) · 1.87 KB

REPLACE DOWNLOAD

Intercept Target download and replace it with Spoof file.

Basic Stuff:

Tested and works so far with OWASP Juice Shop online
http://demo.owasp-juice.shop/ftp/quarantine
When it is not broken lol. Because, let us be clear. This is the only http site, I could find, which allows you to test downloads. Due to this and many other reasons, it is often broken.

Does not work OWASP Juice Shop Locally http://localhost:3000/

Testing in General

Why test locally when you can straight up just test on Remote VM, on your lab.

  1. Enable port forwarding (1) just in case you want to remote.
    It doesn't seem to make a difference.
  2. Set ALL iptables - INPUT, OUTPUT, FORWARD.
    When using Bettercap we are using INPUT and OUTPUT
    There is no conflict local vs remote.
  3. Enable arp_spoof.py, which sets you onPath.
  4. setup_environment will take care of all of this for you.
  5. Start webserver locally: service apache2 start
  6. Webroot:Location of where webfiles are stored:
    /var/www/html/

List of HTTP Status codes:

We want to use 301 - moved permanently - to tell our response packet it is being redirected.

Run on a remote computer

Bettercap works with

  • Linkedin.com
  • winzip.com
  • Try loading in the full address with http, this works with http://7-zip.org - Tested and worked to spoof download...
    http://www.udemy.com/ -
    You could try experimenting with a bunch more.