搭建WiFi蜜罐进行HTTPS证书劫持获取WEB系统帐号密码
##准备
- VMware Workstation
- Kali VMware镜像
- NetGear WG111v3 USB网卡
##网卡说明
- 需要aircrack-ng兼容性良好系列网卡(具体详见http://www.aircrack-ng.org/doku.php?id=compatibility_drivers )
- 网卡连入虚拟机时,需要选择桥接模式
##系统组件准备 在Kali下需要安装isc_dhcp_server组件
apt-get install isc-dhcp-server
/etc/dhcp/dhcpd.conf内容如下:
authoritative;
default-lease-time 700;
max-lease-time 8000;
subnet 192.168.123.0 netmask 255.255.255.0 {
option routers 192.168.123.1;
option subnet-mask 255.255.255.0;
option domain-name-servers 192.168.123.1;
range 192.168.123.10 192.168.123.100;
}
./wifi_init.sh
./wifi_atup.sh
./wifi_nat.sh
./wifi_dns.sh
./wifi_ssl_hijack.sh
./wifi_show_pass.sh
- 利用Kali进行WiFi钓鱼测试实战 - http://www.freebuf.com/articles/wireless/69840.html
- SSL中间人证书攻击测试演练 - http://www.freebuf.com/sectool/48016.html