Update subterfuge v-3.0 – Automated Man-in-the-Middle Attack Framework

 Our Post Before:

  • http://www.seclist.us/2012/05/update-subterfuge-v-21-automated-man-in.html
  • http://www.seclist.us/2012/05/update-subterfuge-v-20-automated-man-in.html
  • http://www.seclist.us/2012/04/update.html
  • http://www.seclist.us/2012/04/subterfuge-v-10-automated-man-in-middle.html

General Features : 

  • Credential Harvester
  • Http Injection Code
  • Session Hijacking
  • Race Condition Exploitation
  • Evilgrade update exploitation
  • Wireless attack suite
  • and more …
Subterfuge ScreenShoot GUI For Unix/Linux Tool

ChangeLog V-3.0:

 Program Structure:

  • Developed Network View
  • Integrated Nmap
  • Added update functionality through SVN

29 EnhancementAccepted   High   —- Mtoussain      › Module Builder
Now fully functional

44 EnhancementAccepted   High   —- Topher         › Mobile Device Credential Harvesting
Tested and added popular mobile site definitions

33 EnhancementAccepted   High  —Mtoussain      › Network Enumeration Module
Tooled Subterfuge in with Nmap to allow for ennumeration of poisoned hosts

41 EnhancementNew      Low– ›   Expose detailed attack info in the web UI
This is now accomplished via the Network View Control Interface

The new Network View Control Interface makes it easy to deploy many different modules against potential victims, and optimizes the attackers efficiency

DOS Module
 New Modules:
Network View Control Interface
DOS Module

   Bug Fixes:
Optimized SSLStrip by removing extraneous error reporting

Subterfuge  Automated Man-in-the-Middle Attack Framework Tutorial : 

Download Latest : SubterfugePublicBeta3.0.tar.gz (17.0 MB)
Find Other Version |
Read more In here : http://code.google.com/p/subterfuge/