Arpy is an easy-to-use ARP spoofing MiTM tool for Mac.It provides 3 targeted functions:
- Packet Sniffing
- Visited Domains
- Visited Domains with Gource
Each function will be explained below.
Tested OS (to date)
Mac MakeUp let’s you change the MAC address of any of the interfaces present on your Windows 2000/XP/2003/Vista box. Sometimes this is referred as MAC address spoofing. You can choose a new address of your choice, or get the new one with the help of the tool. ArpON (ARP handler inspection) is a portable handler daemon that make ARP protocol secure in order to avoid the Man In The Middle (MITM) attack through ARP Spoofing, ARP Cache Poisoning, ARP Poison Routing (APR) attacks. It blocks also the derived attacks by it, which Sniffing, Hijacking, Injection, Filtering & co attacks for more complex derived attacks, as: DNS Spoofing, WEB Spoofing, Session Hijacking and SSL/TLS Hijacking & co attacks.
- Darwin 14.3.0 Darwin Kernel Version 14.3.0 (Mac OS X)
Requirements
- Python 2.7
- Gource
- Scapy
- libdnet
Installation
Gource
Scapy
libdnet
Sample Commands
Packet Sniff
This is the packet sniffer, it allows you to see your target's traffic.
DNS Sniff
This function allows you to see domain names that your target is currently requesting.
DNS Sniff With Gource
This function is more or less the same as the above, however it provides the functionality to pass it through Gource to get a live feed of what your target is viewing.
Sample Gource footage
Contact
@viljoenivan
To-do
- Look at adding sslstrip.
- Port it too kali.