DSploit

DSploit

After playing with the applications installed on the Pwn Pad, I found that the most important application (at least for me) was missing from the pre-installed apps. Namely, DSploit. Although DSploit has tons of features, I really liked the multiprotocol password sniffing (same as dsniff) and the session hijacking functionality.

The DSploit APK in the Play Store was not working for me, but the latest nightly on http://dsploit.net worked like a charm.

Most features require that you and your target uses the same WiFi network, and that's it. It can be Open, WEP, WPA/WPA2 Personal. On all of these networks, DSploit will sniff the passwords - because of the active attacks. E.g. a lot of email clients still use IMAP with clear text passwords, or some webmails, etc. 

First, DSploit lists the AP and the known devices on the network. In this case, I chose one victim client.

In the following submenu, there are tons of options, but the best features are in the MITM section. 

Stealthiness warning: in some cases, I received the following popup on the victim Windows:

This is what we have under the MITM submenu:

Password sniffing

For example, let's start with the Password Sniffer. It is the same as EvilAP and DSniff in my previous post. With the same results for the popular Hungarian webmail with the default secure login checkbox turned off. Don't forget, this is not an Open WiFi network, but one with WPA2 protection!

Session hijack

Now let's assume that the victim is very security-aware and he checks the secure login checkbox. Another cause can be that the victim already logged in, long before we started to attack. The session hijacking function is similar to the Firesheep tool, but it works with every website where the session cookies are sent in clear text, and there is no need for any additional support.

In a session hijacking attack (also called "sidejacking"), after the victim browser sends the authentication cookies in clear text, DSploit copies these cookies into its own browser, and opens the website with the same cookies, which results in successful login most of the time. Let's see session hijacking in action!

Here, we can see that the session cookies have been sniffed from the air:

Let's select that session, and be amazed that we logged into the user's webmail session.

Redirect traffic

This feature can be used both for fun or profit. For fun, you can redirect all the victim traffic to http://www.kittenwar.com/. For-profit, you can redirect your victim to phishing pages.

Replace images, videos

I think this is just for fun here. Endless Rick Rolling possibilities.

Script injection

This is mostly for profit. client-side injection, drive-by-exploits, endless possibilities.

Custom filter

If you are familiar with ettercap, this has similar functionalities (but dumber), with string or regex replacements. E.g. you can replace the news, stock prices, which pizza the victim ordered, etc. If you know more fun stuff here, please leave a comment (only HTTP scenario - e.g. attacking Facebook won't work).

Additional fun (not in DSploit) - SSLStrip 

From the MITM section of DSploit, I really miss the SSLStrip functionality. Luckily, it is built into the Pwn Pad. With the help of SSLStrip, we can remove the references to HTTPS links in the clear text HTTP traffic, and replace those with HTTP. So even if the user checks the secure login checkbox at freemail.hu, the password will be sent in clear text - thus it can be sniffed with DSniff.

HTML source on the client-side without SSLstrip:

HTML source on the client-side with SSL strip:

With EvilAP, SSLStrip, and DSniff, the password can be stolen. No hacking skillz needed.

Lessons learned here

If you are a website operator where you allow your users to login, always:

1. Use HTTPS with a trusted certificate, and redirect all unencrypted traffic to HTTPS ASAP
2. Mark the session cookies with the secure flag
3. Use HSTS to prevent SSLStrip attacks

If you are a user:

1. Don't trust sites with your confidential data if the above points are not fixed. Choose a more secure alternative
2. Use HTTPS everywhere plugin
3. For improved security, use VPN

Because hacking has never been so easy before.
And last but not least, if you like the DSploit project, don't forget to donate them!

Related word

1. Hackrf Tools
2. Hacking Tools And Software
3. Hacker Tools Mac
4. Hacker Tools Software
5. Hacker Tools Windows
6. Hacker Tools Linux
7. Hack Tools
8. Hack App
9. Physical Pentest Tools
10. Growth Hacker Tools
11. Hacks And Tools
12. Wifi Hacker Tools For Windows
13. Pentest Tools For Mac
14. Hacker Hardware Tools
15. Hacker Tool Kit
16. Hacking Tools
17. Hacking Tools Windows
18. Hack Tools For Pc
19. Hacker Security Tools
20. Computer Hacker
21. Pentest Tools
22. Hack Apps
23. Hack Tools For Mac
24. Hacking Tools For Games
25. World No 1 Hacker Software
26. Pentest Tools Apk
27. Hacking Tools For Games
28. Hak5 Tools
29. Hack And Tools
30. Hak5 Tools
31. Hacker Tool Kit
32. Ethical Hacker Tools
33. Install Pentest Tools Ubuntu
34. Hacking Tools Github
35. Pentest Tools Android
36. Hack Apps
37. Hacker Tools Apk
38. What Are Hacking Tools
39. Best Pentesting Tools 2018
40. Hack Tools For Pc
41. Hacking Tools For Windows Free Download
42. New Hacker Tools
43. Hack And Tools
44. Pentest Reporting Tools
45. Hacker Tools Mac
46. Hacking Tools For Kali Linux
47. Pentest Box Tools Download
48. Hacker Tools Linux
49. Pentest Tools Windows
50. Hacking Tools Pc
51. Hacker Tools For Pc
52. Pentest Tools Bluekeep
53. Github Hacking Tools
54. Hacking Tools Kit
55. Hacker Tool Kit
56. Tools 4 Hack
57. Hacking Tools For Kali Linux
58. Pentest Tools Kali Linux
59. Hack Tool Apk
60. Hack Website Online Tool
61. Pentest Tools For Android
62. Hacker Tools Mac
63. Hack Tools For Pc
64. Hacker Tools
65. Hacker Tools
66. Pentest Tools Nmap
67. Hacking Tools Online
68. Hacker Tools For Ios
69. Pentest Automation Tools
70. Black Hat Hacker Tools
71. Hacking Tools Kit
72. Hacking Tools Pc
73. Hacking Tools And Software
74. Hacker Tools Github
75. Beginner Hacker Tools
76. Hack Tools Pc
77. Nsa Hack Tools
78. Hacking Tools Download
79. Hacker Tools Linux
80. Nsa Hacker Tools
81. Easy Hack Tools
82. What Are Hacking Tools
83. Hacker Hardware Tools
84. Pentest Tools Github
85. Pentest Tools Port Scanner
86. Bluetooth Hacking Tools Kali
87. Tools For Hacker
88. Pentest Automation Tools
89. Hacking Tools Windows 10
90. What Is Hacking Tools
91. Hacker Tools For Ios
92. Pentest Tools Tcp Port Scanner
93. Pentest Reporting Tools
94. Pentest Tools For Mac
95. Hacker Security Tools
96. Pentest Tools For Windows
97. Black Hat Hacker Tools
98. Hacker Hardware Tools
99. Hacking Tools For Windows Free Download
100. Hack Tools Pc
101. Hacking Tools Pc
102. Computer Hacker
103. Hacking Tools For Pc
104. Pentest Tools
105. Hacker Tools Mac
106. Hacker Tools Github
107. Hacking Tools 2019
108. Pentest Tools Kali Linux
109. Pentest Tools Alternative
110. Pentest Tools Apk
111. Computer Hacker
112. Hacking Tools 2019
113. Pentest Tools Github
114. Hack Tools For Ubuntu
115. Pentest Tools For Mac
116. Hacking Tools For Windows 7
117. Hacking Apps
118. Pentest Tools Linux
119. Hacking Tools Name
120. Pentest Tools For Mac
121. Hacking Tools For Kali Linux
122. How To Hack
123. Pentest Tools For Ubuntu
124. Pentest Tools Website Vulnerability
125. Hack Website Online Tool
126. Pentest Tools Alternative
127. Hacker Tools Free Download
128. Kik Hack Tools
129. Kik Hack Tools
130. Pentest Tools Find Subdomains
131. Pentest Tools Github
132. Hack Tool Apk
133. Tools For Hacker
134. Hackrf Tools
135. Hacker Tools Hardware
136. Hacker Tools Windows
137. Hacking Tools Windows
138. Pentest Reporting Tools
139. Tools For Hacker
140. Pentest Tools Download
141. Hacking Tools Hardware
142. Tools 4 Hack
143. Hacker Tools Free
144. Computer Hacker
145. Pentest Box Tools Download
146. Top Pentest Tools
147. Hack Tools Online
148. Black Hat Hacker Tools
149. Pentest Tools Port Scanner
150. Hack Rom Tools
151. Pentest Tools Website Vulnerability
152. Growth Hacker Tools
153. Hacker Tools 2020