Forum

Bettercap to steal hashes!  

  RSS

DemmSec
Eminent Member
Joined: 1 year  ago
Posts: 42
06/12/2016 4:02 pm  

I'm working on a video right now but I thought I'd share the info here first!

So I've been trying to use Responder against Windows 10 hosts, and it just doesn't seem to work. I'm able to capture hashes if the target machine tries to go to a UNC path directly, but the poisoning doesn't work.

I was playing with Bettercap and saw that you can inject HTML into plaintext HTTP requests. I wondered if you could inject a little tag like this:  which would ideally make an SMB request to my attacker machine.

Turns out it worked! On IE and Edge..

Twitter: DemmSec
YouTube: DemmSec
Skype: DemmSec
All of the things: DemmSec


ReplyQuote
PrettyBoyPBM
New Member
Joined: 1 month  ago
Posts: 2
15/03/2017 7:43 pm  

Where is the Video D:!?


ReplyQuote
  
Working

Please Login or Register

%d bloggers like this: