Update subterfuge v-3.0 – Automated Man-in-the-Middle Attack Framework

 Our Post Before:

  • http://www.seclist.us/2012/05/update-subterfuge-v-21-automated-man-in.html
  • http://www.seclist.us/2012/05/update-subterfuge-v-20-automated-man-in.html
  • http://www.seclist.us/2012/04/update.html
  • http://www.seclist.us/2012/04/subterfuge-v-10-automated-man-in-middle.html

General Features : 

  • Credential Harvester
  • Http Injection Code
  • Session Hijacking
  • Race Condition Exploitation
  • Evilgrade update exploitation
  • Wireless attack suite
  • and more …
Subterfuge ScreenShoot GUI For Unix/Linux Tool

ChangeLog V-3.0:

 Program Structure:
General:

  • Developed Network View
  • Integrated Nmap
  • Added update functionality through SVN

Issue:
29 EnhancementAccepted   High   —- Mtoussain      › Module Builder
Now fully functional

44 EnhancementAccepted   High   —- Topher         › Mobile Device Credential Harvesting
Tested and added popular mobile site definitions

33 EnhancementAccepted   High  —Mtoussain      › Network Enumeration Module
Tooled Subterfuge in with Nmap to allow for ennumeration of poisoned hosts

41 EnhancementNew      Low– ›   Expose detailed attack info in the web UI
This is now accomplished via the Network View Control Interface

 Functionality:
General:
The new Network View Control Interface makes it easy to deploy many different modules against potential victims, and optimizes the attackers efficiency

Addition:
DOS Module
 New Modules:
Network View Control Interface
DOS Module

   Bug Fixes:
General:
Optimized SSLStrip by removing extraneous error reporting

Subterfuge  Automated Man-in-the-Middle Attack Framework Tutorial : 


Download Latest : SubterfugePublicBeta3.0.tar.gz (17.0 MB)
Find Other Version |
Read more In here : http://code.google.com/p/subterfuge/