Xerosploit is the Efficient and advanced man in the middle framework of Kali Linux and other linux distros .
In this video, I will demostrate the working of xerosploit framework.
Sniffing, Port scanning, Network mapping, Dos attack, Html code injection, Javascript code injection, Dns spoofing, Background audio reproduction, Image replacement, driftnet, webpage defacement and more can be done by xerosploit framework tool.
Xerosploit is a penetration testing toolkit whose goal is to perform man in the middle attacks for testing purposes. It brings various modules that allow to realise efficient attacks, and also allows to carry out denial of service attacks and port scanning. Powered by bettercap and nmap.
It requires following Dependencies –
nmap, hping3, build-essential, ruby-dev, libpcap-dev, libgmp3-dev, tabulate, terminaltables
Read full article here –
Follow our website to get latest updates –
If you have any Questions then feel free to Comment Below
Music Info –
Song: Alan Walker – Fade [NCS Release]
Music provided by NoCopyrightSounds.
Video Link:
Uploaded By –
TheHackerStuff
Nguồn: https://ftlinuxcourse.com
Xem thêm bài viết khác: https://ftlinuxcourse.com/lap-trinh-linux
Xem thêm Bài Viết:
- Trải nghiệm mới hay ho với hướng dẫn cài Mac Os trên vmware
- Bật mí cách cài đặt ssl miễn phí lên Let’s Encrypt
- Tuyệt chiêu tạo usb boot kali linux đơn giản dành cho bạn
- Hướng dẫn chi tiết từ A – Z các bước cài đặt Python trên Windows 10
- Bật mí quy trình cài đặt Kali Linux trên Vmware đúng chuẩn và chi tiết
when i try to open xerosploit it says command not found
i cant scan – only shows me aaaaaaaaaaaaaaaaaaaaac fak
Hey!! Guys I recently installed kali linux for learning penetration and hacking I've also installed xerosploit package and everything was successful until I tried to test mitm on my mobile, pc but non of the modules work it just makes the internet of the target device slow and result in no internet connection.. I checked my connection everything works fine.. Idk why it ain't working… If anyone has any solutions please help…
can someone help me with this please ?!
hey how can i disable password md5 encryption using MITM Injecting Javascript ?????!!
the code that i want to disable is
document.sendin.password.value = hexMD5('324' + document.login.password.value + '142342314100322261134207�04173217110321175�15�11');?
And also injectjs is not working
The replace is not working to me
Traceback (most recent call last):
File "/opt/xerosploit/xerosploit.py", line 26, in <module>
from terminaltables import DoubleTable
ImportError: No module named terminaltables
bro solve these
why does it say for sniffing it cant determine target MAC adress
xerosploit is not installing in my system
it shows this after selecting os help me install xerosploit
[++] Installing Xerosploit …
Reading package lists… Done
Reading package lists… Done
Building dependency tree
Reading state information… Done
Package libgmp3-dev is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or
is only available from another source
However the following packages replace it:
libgmp-dev
E: Unable to locate package libpcap-dev
E: Package 'libgmp3-dev' has no installation candidate
WARNING: bin/xettercap is not executable
WARNING: See http://guides.rubygems.org/specification-reference/ for help
Successfully built RubyGem
Name: xettercap
Version: 1.5.7xerob
File: xettercap-1.5.7xerob.gem
Building native extensions. This could take a while…
ERROR: Error installing xettercap-1.5.7xerob.gem:
ERROR: Failed to build gem native extension.
current directory: /var/lib/gems/2.5.0/gems/pcaprub-0.12.4/ext/pcaprub_c
/usr/bin/ruby2.5 -r ./siteconf20180624-2983-1xwiyww.rb extconf.rb
[*] Running checks for pcaprub_c code…
platform is x86_64-linux-gnu
checking for ruby/thread.h… yes
checking for rb_thread_blocking_region()… no
checking for rb_thread_call_without_gvl()… yes
checking for pcap_open_live() in -lpcap… no
checking for pcap_setnonblock() in -lpcap… no
creating Makefile
current directory: /var/lib/gems/2.5.0/gems/pcaprub-0.12.4/ext/pcaprub_c
make "DESTDIR=" clean
current directory: /var/lib/gems/2.5.0/gems/pcaprub-0.12.4/ext/pcaprub_c
make "DESTDIR="
compiling pcaprub.c
pcaprub.c:11:10: fatal error: pcap.h: No such file or directory
#include <pcap.h>
^~~~~~~~
compilation terminated.
Makefile:242: recipe for target 'pcaprub.o' failed
make: * [pcaprub.o] Error 1
make failed, exit code 2
Gem files will remain installed in /var/lib/gems/2.5.0/gems/pcaprub-0.12.4 for inspection.
Results logged to /var/lib/gems/2.5.0/extensions/x86_64-linux/2.5.0/pcaprub-0.12.4/gem_make.out
Xerosploit has been sucessfuly instaled. Execute 'xerosploit' in your terminal.
root@kalilinux:~/Desktop/xerosploit# xerosploit
bash: xerosploit: command not found
root@kalilinux:~/Desktop/xerosploit#
hello the xerosploit kill the target internet connection with any function , how can i fix it ?
not working…..
Traceback (most recent call last):
File "xerosploit.py", line 980, in main
home()
File "serosploit.py", in home
print (tabulate(table, stralin="center", tablefmt="fancy_grid, headers="fristrow"))
UnicodeEncodeError: 'ascii' code can't encode characters in poaitio 0-83: ordinal not in range(128)
But we cannot acquire secured sites credentials from this.. cuz they are secured.. even in a hostel wifi.. stupid video.. that's why he didn't open fb or gmail in this video😒
not working
When i try to run xerosploit after installation , its saying "Command not found "
hello i am getting this error while using xerosploit in kali 17.3
xero»modules»deface ➮ run
[+] Specify the file containing your defacement code .
[!] Your file should not contain Javascript code .
Xero»modules»deface ➮ '/root/Desktop/deface.html'
Traceback (most recent call last):
File "/opt/xerosploit/xerosploit.py", line 981, in main
cmd0()
File "/opt/xerosploit/xerosploit.py", line 869, in cmd0
scan()
File "/opt/xerosploit/xerosploit.py", line 129, in scan
target_ip()
File "/opt/xerosploit/xerosploit.py", line 855, in target_ip
program0()
File "/opt/xerosploit/xerosploit.py", line 829, in program0
option()
File "/opt/xerosploit/xerosploit.py", line 784, in option
deface()
File "/opt/xerosploit/xerosploit.py", line 782, in deface
deface()
File "/opt/xerosploit/xerosploit.py", line 766, in deface
file_deface = open(file_deface, 'r').read()
IOError: [Errno 2] No such file or directory: '/root/Desktop/deface.html '
How about SSL for HTTPS secure😟😟😟😟
Thanks dude
how to attack multiple target at same time
To Fix File "/opt/xerosploit/xerosploit.py", line 26, in <module>
from terminaltables import DoubleTable
ImportError: No module named terminaltables
After installing terminaltables and tabulate by running pip install
terminaltables and pip install tabulate go to
/usr/local/lib/python3.5/dist-packages copy and paste terminaltables and
tabulate in the xerosploit directory then run xerosploit in the
terminal (sorry for my bad english)
images not showing
hi how i can find the html file
This is awesome! Almost exactly like ZANTI for Android but with a less sorted sniffing UI
Why is that all my ip's are 10..x.x.x.x ? but yours starts at 192
siR thEre is a ProbLem when I started sniff and terminal open show could not determine target mac address
Nothing happened … I've been waiting for a long time ….
The Command prompt still empty on my machine
hi when i scan i cant find any pcs.. i pick all and pick move and nothing moves on my other pc
yplay option is not playing any bground song
hey I get bettercap error what to do
bash: xerosploit: command not found
..
what is solution ?/
Where can we download the "Defcon" folder with all those tools inside? Thanks
When I run sniff and it opens exorsploit terminal I get this error
[E] error, executing LAG=en && ifconfig help
I've the same problem as Faustino50. What is the solution?
Very good video, thank you! I have one question though if you do not mind me asking? I can succesfully perform the sniff attack using Xerosploit, but the password is not visable in the second terminal like yours is. How do you get the password to show up in the Xerosploit terminal please?
I've a problem, when I start, for example, sniff or yplay, the victim(my father in this case) can't load any webpage…The connection doesn't work if there is a MITM
Any solution?
when i start sniff > run:
[E] Invalid name parser CREDITCARD'
please help me
BTW amazing video
hey can we target whole LAN..
without specifying particular ip
amazing video bro ,but why do you take a long time making it ?
BTW amazing video!!!!😊😀☺