Morpheus – Automated Ettercap TCP/IP Hijacking Tool

Morpheus framework automates tcp/udp packet manipulation duties by means of the usage of etter filters to govern goal requests/responses beneath MitM assaults changing the tcp/udp packet contents by means of our contents befor ahead the packet again to the objective host…

workflow:
1º – attacker -> arp poison native lan (mitm)
2º – goal   -> requests webpage from community (wan)
3º – attacker -> modifies webpage reaction (contents)
4º – attacker -> changed packet its ahead again to focus on host
morpheus ships with some pre-configurated filters however it’ll permit customers to enhance them when lunching the assault (morpheus scripting console). After all of the assault morpheus will revert the clear out again to is default degree, this may increasingly permit customers to enhance filters at operating time with out the concern of messing with clear out command syntax and wreck the clear out.
“Best possible for scripting enthusiasts to soundly take a look at new ideas”…

What are we able to acomplish by means of the usage of filters?

morpheus ships with a number of etter filters writen be me to acomplish more than a few duties: changing pictures in webpages, change textual content in webpages, inject payloads the usage of html

tag, denial-of-carrier assaults (drop,kill packets from supply), https/ssh downgrade assaults, redirect goal browser visitors to any other area and provides you with the power to construct assemble your clear out from scratch and lunch it thru morpheus framework (possibility W).

“filters can also be prolonged the usage of browser languages like: javascript,css,flash,and so forth”…

On this instance we’re the usage of ” HTML tag” to inject an rediretion url in goal request On this instance we’re the usage of ‘CSS3’ to cause webpage 180º rotation morpheus v1.6-Alpha

Framework obstacles

1º – morpheus will fail if goal device its secure againt arp poison atacks
2º – downgrade assaults will fail if browser goal as put in handiest-https addon’s
3º – goal device every so often must transparent netcache for arp poison to be efficient
4º – many assaults described in morpheus is also droped by means of goal HSTS detection sys.

5º – flawed choice of token (///) in TARGET !! morpheus v1.6-Alpha   

morpheus by means of default will run ettercap the usage of IPv6 (USE_IPV6=ACTIVE) like its earlier
configurated into the ‘settings’ record, in case you are reciving this mistake edit settings
record befor runing morpheus and set (USE_IPV6=DISABLED) to power ettercap to make use of IPV4

6º – morpheus wishes ettercap to be completed with higth privileges (uid 0 | gid 0).
right kind ettercap configuration show (operating as Admin with out ssl disectors lively) morpheus v1.6-Alpha

By way of default morpheus (at startup) will change the unique etter.conf/etter.dns information equipped by means of ettercap, at framework go out morpheus will revert information to is authentic state..

Dependencies

ettercap, nmap, apache2, zenity

Framework possibility 1 [firewall] screenshots

firewall [option 1] pre-configurated clear out will seize credentials from the apply products and services:
http,ftp,ssh,telnet (fb makes use of https/ssl :( ) record suspicious connections, record commonplace
websocial surfing (fb,twitter,youtube), record the lifestyles of botnet connections like:
Mocbot IRC Bot, Darkcomet, redirect browser visitors and make allowance customers to dam connections (drop,kill)
"Remmenber: morpheus provides is customers the power to 'upload extra regulations' to filters befor execution"

[morpheus] host:192.168.1.67 [ -> ] port:23 telnet ☆
Supply ip addr glide vacation spot rank just right

[morpheus] host:192.168.1.67 [ <- ] port:23 telnet ☠
Vacation spot ip glide supply port rank suspicious


morpheus v1.6-Alpha

morpheus v1.6-Alpha

morpheus v1.6-Alpha

morpheus v1.6-Alpha

Principally firewall clear out will act like one offensive and defensive instrument examining the
tcp/udp information glide to record logins,suspicious visitors,brute-power,block goal ip,and so forth.

Author: Marshmallow

Marshmallow Android is BT Ireland’s Head of Sales for Republic of Ireland domestic multi-site companies, indigenous MNCs and public sector accounts. He is responsible for the direction and control of all sales activity in the region. He has over 10 years management experience from high growth start-ups to more established businesses. He’s led teams in Ireland, India and China across various industries (ICT, On-Line Recruitment, Corporate Training and International Education).