Bettercap to steal hashes!  


Eminent Member Admin
Joined:2 years  ago
Posts: 42
06/12/2016 4:02 pm  

I'm working on a video right now but I thought I'd share the info here first!

So I've been trying to use Responder against Windows 10 hosts, and it just doesn't seem to work. I'm able to capture hashes if the target machine tries to go to a UNC path directly, but the poisoning doesn't work.

I was playing with Bettercap and saw that you can inject HTML into plaintext HTTP requests. I wondered if you could inject a little tag like this:  which would ideally make an SMB request to my attacker machine.

Turns out it worked! On IE and Edge..

Twitter: DemmSec
YouTube: DemmSec
Skype: DemmSec
All of the things: DemmSec

New Member
Joined:1 year  ago
Posts: 2
15/03/2017 7:43 pm  

Where is the Video D:!?


Please Login or Register

%d bloggers like this: