Friday, July 25, 2014

1:28 PM

Using pirni to sniff on a Ipod

Part of the Iphone Hacking series


In this tutorial (part 2 of the iPhone hacking series) we will be learning how to use pirni to perform a MITM (Man In the Middle) attack on any wireless network. Network Sniffing is when the attacker catches all packets (information) passing through the network.
For example, if you were running a network sniffer on starbuck's, and one of those guys on there laptops logs into there myspace, you would get the password to there myspace if you were the sniffer.
Disclaimer: I am not responsible for anything you do from what you learned, running a network sniffer on anyone's network but yours IS illegal. Act on your own risk.

The first thing you need to do is make sure is that you get your itouch jailbroken with cydia, at the time there is no sniffing method without it being jailbroken. As long as your firmware is not 3.1.3 (or your not a 3rd gen itouch).
Your going to also need the following packages from cydia:
-Mobile Terminal
-OpenSSH
-Pirni
And on your desktop (or a schools or friends) you will need:
-WireShark 
-Winscp

Wireshark will be used to actually read the log. Now, before you start sniffing were going to need somethings. Note: There is NO graphic user interface for pirni, if you are uncomfortable in CLI, this is not for you (however it is a very easy terminal application, extremely similar to LKL if you have ever used it).
Gathering Required Information:
- Get a notebook or something you can write on (a table, anything.)
- Open up wifi and find the network you want
- Click the blue arrow next to it
- It will show the network info, log the following:
Routers IP address / IP address

Now were ready to start the sniffing process:
1. Open up Mobile Terminal
2. Log is as root:
su
It will prompt you for a password. The default is "alpine". If you have changed it, type yours.
3. Look below:
pirni -s IpAddress -d RoutersIP -f “tcp dst port 80″ -o snifflog.pcap
4. Obviously you will replace IP Address with the one you wrote down and the same with routers IP.
5. Replace snifflog with the file you want to save the log as with the .pcap extension (so it will run under wireshark).
Pirni will start capturing packets.

PART 2: 

ANALYZING THE DUMP FILE

In this part of the tutorial we will be using the computer with wireshark to analyize everything that your itouch picked up.
Open up winscp.exe to launch the program, and you will need to give it the following information:

1. The username (root)
2. The Password (alpine if unchanged)
3. The hostname (the IP address I had you write down earlier)
Press the login button, it may take a while.
Hit the "/" button inside of a file on the top right of the screen to take you root. Press the "User" folder. This is where the logfile is held. Drag it to your desktop.
Winscp is a great tool which can be used for a lot. You can move any files like music or videos to your computer.
1. Run wireshark.exe
2. Press "Open"
3. Find the file on the desktop
4. Load it
5. Press the Magnifying glass and look for keywords like "pass, username, user, password"
6. Some times the password will be encrypted. Click here for a Md5 Crack (the most common). But make sure to try THIS first!

0 comments:

Post a Comment