In this post we will guide you how you can hack a Network and performing MITM attack in Kali Linux.
It’s one of the simplest but also most essential steps to “Conquering” a network. Once a hacker has performed a “Man In The Middle” attack (MITM) on a local network, he is able to perform a number of other “Side-kick” attacks. This includes, cutting a victim’s internet connection; intercepting Emails, logins, and chat messages, Facebook; and many others.
Step One:
Start Kali Linux and login to the root user.
Step Two:
Open a Terminal and type: leafpad /etc/ettercap/etter.conf
Step Three:
Look through the text file that just opened. On one of the first lines, under the [privs] section, look for the words highlighted below:
You need to change these lines to this:
By removing the number 65534 and replacing it with 0 (zero). You can leave the “# nobody is default” line.
Step Four:
This next one will be tricky to locate, so we’re going to use the “Find” option. Click onSearch in the toolbar at the top of leafpad and click Find.
Type the word iptables in the box that appears and click the Find button or press Enter.
It should skip to a line that looks like this:
We need to “uncomment” the two bottom lines. To do this, remove the two “#” symbols before each “redir_command,” so that the two lines look like this:
Now close leafpad and click Yes when it asks you to save changes.
Step Five:
Now start Ettercap-gtk, open a Terminal and type ettercap –G
Wait until Ettercap opens. When it does, click Sniff in the toolbar and select Unified Sniffing… from the menu.
Step Six:
Select the interface that’s connected to the network.
If your using a wired (ethernet) connection, then the interface will probably be eth0, but if you’re using wireless, (WLAN), then it will be a different one. To find which one of your interfaces is connected, run ifconfig.
Step Seven:
Now Ettercap should load into attack mode. Click on Hosts and select Scan for hosts from the menu.
Step Eight:
Ettercap will briefly scan for hosts on the network. After a moment, you should see the words “hosts added to the host list…” in the command box. This is the green light.
Click on Hosts again, and this time select Hosts list from the menu.
Step Nine:
Click the IP address of the router and click the Add to Target 1 button.
Then select the IP of your test victim’s machine and click Add to Target 2.
Step 10:
Now click Mitm on the toolbar and select Arp poisoning…
When the question box shows up, check the box next to Sniff remote connections and hit OK.
Step 11:
Ettercap will now Arp poison the victim and router. Now if you want to see any of the victim’s personal info, you’ll need to click Start on the toolbar and select Start sniffing.
Ettercap will notify you that unified sniffing was started.
You’ve successfully executed an MITM attack!
You can now use tools such as URLsnarf and SSLstrip to sniff out information about your victim’s internet traffic. Tutorials on how to use these tools will be coming soon.
To stop the MITM attack, click on MITM and select Stop mitm attack(s) from the menu.
Ettercap will then send the ARP correction packet, and the network will return to normal. You can then close Ettercap.
.jpg)
![4_thumb[1]](http://lh5.ggpht.com/-xsdYXddDY-I/UmpaSxIX2kI/AAAAAAAAAgg/ar0JvCP2LhE/s1600-h/4_thumb%25255B1%25255D%25255B2%25255D.png "4_thumb[1]")
![5_thumb[1]](http://lh3.ggpht.com/-YInMs8-3uRQ/UmpaTlvGQdI/AAAAAAAAAgw/O8N2aApnYUo/s1600-h/5_thumb%25255B1%25255D%25255B2%25255D.png "5_thumb[1]")
![5.5_thumb[1]](http://lh4.ggpht.com/-6nBa_T-3qbE/UmpaUccQgFI/AAAAAAAAAhE/vu-XhB9IIz4/s1600-h/5.5_thumb%25255B1%25255D%25255B2%25255D.png "5.5_thumb[1]")
![6_thumb[1]](http://lh5.ggpht.com/-u1cmA3lBPDU/UmpaVAr2QlI/AAAAAAAAAhU/aCM1Yp9fEOs/s1600-h/6_thumb%25255B1%25255D%25255B2%25255D.png "6_thumb[1]"){kind=small}
