MASIGNCLEAN104

Squid-Imposter: A Squid Based Sidejacking Proxy !


Tuesday, May 29, 2018
iklan banner
That tool was meant specifically for Windows operating systems in addition to also contains a module that uses HTML5 offline cache to store the payload permanently inwards all supporting browsers. Squid-Imposter simply add together the HTML5 offline cache storage functionality to the application in addition to has been ported to Linux.
Squid-imposter makes it slowly to create Squid based proxy injecting your ain content to chosen website URLs. Modified content is in addition to then persisted inwards client’s browser fifty-fifty when the customer no longer connects through your proxy thank yous to HTML5 Offline cache features! Additionally, measure HTTP cache headers fix the page to cache for 10 years. Injected content may for illustration last used to cast a phishing fix on during penetration test. In other words, it is a port of HTML5 offline cache poisoning features introduced inwards Imposter to Squid/Apache/PHP setup amongst an opened upwards root (MIT) license.
So, similar a shot yous tin easily spoof websites that volition last stored inwards victim’s browser cache forever. It’s a MITM/sidejacking fix on technique past times pretending to last that website. Here is how yous piece of occupation amongst the Squid-Imposter:
  1. Choose a website URL you’d similar to spoof (e.g. GMail login page)
  2. Prepare a modified version of the page (e.g amongst a submit push clitoris that also sends login/password to you)
  3. Look for whatever other URL on the domain that user won’t last probable to take in (this volition last the manifest URL). It mightiness something tiny similar a blank.gif file.
  4. Setup Squid-imposter amongst payloads in addition to URLs
  5. Convince a victim to connect to squid-imposter (e.g. hijack victim’s proxy entries, brand him connect to your rogue Wi-Fi, etc.)
  6. When victims enters the URL, squid returns the modified page in addition to a manifest file that tells user to shop the page inwards offline cache.
  7. Two years later, the user is no longer connected to your proxy, but the modified page is even thence served past times victim’s browser.
It requires the following:
  • PHP 5.2
  • Apache
  • mod_php
  • Squid
Download Squid-Imposter here
Share This :
Concept Phone

comment 0 Comments

more_vert

Subscribe to: Post Comments (Atom)