GhostInTheNet - Ultimate Network Stealther that makes Linux a Ghost In The Net and protects from MITM.

GhostInTheNet – Ultimate Network Stealther that makes Linux a Ghost In The Net and protects from MITM.

GhostInTheNet a bash script for Ultimate Network Stealther that makes Linux a Ghost In The Net and protects from MITM

Properties:
– Network Invisibility
– Network Anonymity
– Protects from MITM
– Transparent
– Cross-platform
– Minimalistic

Dependencies:
* Linux 2.4.26+ – will work on any Linux-based OS, including Whonix and RaspberryPI
-+- BASH – the whole script
-+- root privileges – for kernel controlling

GhostInTheNet

Limitations:
– You can still be found with VLAN logs if using ethernet or by triangulation if using WiFi MAC spoofing won’t work if appropriate mitigations have been taken, like DAI or sticky MAC Might be buggy with some CISCO switches

How it works:
+ The basic and primary network protocol is ARP, located in the link layer, provides main connectivity in a LAN.
+ Despite its utility and simplicity, it has numerous vulnerabilities that can lead to the MITM attack and leak of confidentiality.
+ Patching of such a widely used standard is a practically impossible task.
+ A very simple, but at the same time effective solution is to disable ARP responses on an interface and be very cautious with broadcasting.
+ Considering the varieties of implementations, this means that anyone in the network wouldn’t be able to communication with such host, only if the host is willing it-self.
+ The ARP cache will be erased quickly afterwards.

Usage:

Source: https://github.com/cryptolok