Advertisement
opexxx

sslstrip on OpenWRT (Linux) wireless router

Jan 27th, 2015
397
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 1.36 KB | None | 0 0
  1. Router with Linux and Python
  2.  
  3.     I have a Buffalo WZR-HP-AG300H which I really like
  4.     I used OpenWRT version r29484
  5.  
  6. Sufficient space for all the software (you may need an external drive/share mounted)
  7.  
  8.     My setup uses 11MB for OS, Python, and sslstrip
  9.  
  10. Sufficient RAM on your router
  11.  
  12.     My router has 128MB. Probably need at least 16MB
  13.  
  14. sslstrip python program by Moxie
  15.  
  16.     I had to use version 0.8 due to bugs in 0.9
  17.     I didn't use the OpenWRT repository version because it was only version 0.6
  18.  
  19. iptables
  20.  
  21.    For OpenWRT I installed all the iptables packages (which includes modules) and the kernel (kmod-ipt) modules
  22.    A package search on "ipt" should get you them all
  23.  
  24. Extract the sslstrip tarball to any directory you like
  25.  
  26.    I didn't separate it into the system or run the installer. I just used the stand-alone version.
  27.  
  28. Start it with python sslstrip
  29.  
  30.     Just the defaults. Use -h for other choices
  31.  
  32. Set your iptables to redirect all HTTP (port 80) traffic to sslstrip
  33.  
  34.     iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 127.0.0.1:10000
  35.     I tried using -j REDIRECT, but my version of OpenWRT didn't have it compiled. The above is just the long form of it anyway.
  36.  
  37. Bring up the login page for a site like Facebook
  38. Enter in login credentials (fake if you want)
  39. Look in the sslstrip.log file for the credentials
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement