Posted by : Muhammad Haseeb Javed Wednesday, June 15, 2011

Hey guys Smile this Tutorial is about DNS poisoning on your network using Cain & Abel.
Download Cain HERE
This Tutorial Will be limited to just redirecting the traffic to another website (I had a better idea on my mind, but I can’t post it because of the rules).

Note: This Tutorial is for educational purposes only (you’ll be responsible for your own actions)

First What is the DNS ? (wikipedia.org)
The Domain Name System (DNS) is a hierarchical naming system for computers, services, or any resource connected to the internet or a private network. It associates various information with domain names assigned to each of the participants. Most importantly, it translates domain names meaningful to humans into the numerical (binary) identifiers associated with networking equipment for the purpose of locating and addressing these devices worldwide. An often used analogy to explain the Domain Name System is that it serves as the "phone book" for the Internet by translating human-friendly computer hostnames into IP addresses. For example, http://www.example.com translates to208.77.188.166.

What does poisoning the DNS allow us to do ?
It allows us to redirect the traffic to another website.

First This is the structure of the network :

[Image: 4337060175_5b99b48ac0.jpg]

1 , 2 and 3 are computers

1 is the computer being the gateway (could be a router) (172.128.254.1)

2 is the target computer (172.128.254.10)

3 is the attacker using cain 

Note : IPs are just used for this tutorial and chosen randomly. 

Our work is on computer number 3 :

1-After you install cain , open it and go to the sniffer tab

2-Click on configure and choose your adapter

[Image: 4336895163_134d4202fd.jpg]

3-Enable the sniffer (click on the second icon in the toolbar next to the open icon)

4-Right click in the empty area and choose scan MAC addresses. We get the results above.

5-Click on the APR Tab

[Image: 4337645862_9e847b91e4.jpg]

6-Click on the + sign in the toolbar to add a new ARP poison routing

[Image: 4337656172_57b3d5b3b5.jpg]

7-choose the gateway which is 172.128.254.1 , in the next list you’ll get the IP of the computer 2 which is 172.128.254.10 and click ok 

[Image: 4337049117_87315e8629.jpg]

8-now click on the APR-DNS tab

[Image: 4337796362_14af553609.jpg] 

9-click on the + sign 

10-enter the web address that you want to spoof , (in this case when the user goes to facebook he’ll be redirected to myspace) click on resolve type the web address that you want to redirect the user to it, and click ok, and you’ll get the IP of the web address, then click ok

[Image: 4337798910_e83774f149.jpg]

you'll get something like this:

[Image: 4337057395_171642d13d.jpg]

11-now to make this work we have to enable APR poisoning , click on the icon next to the sniffer icon, and everything should work as we expect.

Now the computer 2 will get the routes poisoned and when the user requestshttp://www.facebook.com he will be redirected to http://www.myspace.com .
Imagine what you can do with this technique.



You can also redirect Facebook to Your Phishing Page and in this way other person wouldnt even know!!!




BEWARE!!!! >> you can freak the hell out of someone with it. so be careful!!!!


=============================================================
This Article was originally published on . http://www.hackforums.net/showthread.php?tid=262997
AND I TAKE NO CREDIT OF IT! I AM ONLY SPREADING THE WORD.
==============================================================

{ 4 comments... read them below or Comment }

  1. for my friends....
    if you want to build some virus (worm and trojan) you can download the software
    in this site:
    MEDIAFIRE: http://www.mediafire.com/?xsrndkxpjdg825w,7vypaxypbgf6bf3,dy3d4uukpcwz2c3

    there is 3 software...
    just downliad it !!!! and happy virusses

    ReplyDelete
  2. tried also AyCarrumba (http://www.megapanzer.com/2012/06/07/fishing-passwords-with-aycarrumba/) to poison ARP and DNS cache. works like a charm

    ReplyDelete
  3. How Do We Know The Ip Address Of Router

    ReplyDelete
  4. Hey bro article is @w$ome, helpful and 100% work if steps followed properly
    I wish if there were video tutorial to make it understand better

    ReplyDelete

Popular Post

Labels

- Copyright © _.:Learn To Hack:._ :: Hacking Tutorials :: Warez -Metrominimalist- Powered by Blogger - Designed by Johanes Djogan -