There are probably dozens of programs on any OS that don’t have any option for using proxies. Many common command line tools like ping, traceroute don’t work if the network you are on, forces you to use a proxy. Finally found a way to specify a proxy for these programs . ProxyChains  is one very good tool that enables you to use a proxy for not only specifying a path to outside networks but also use anonymous proxies for your privacy. 

 It’s quite simple to install and use. First download and install the script. 

Then navigate to /etc folder and open proxychains.conf file in any text editor of your choice. It should look like this.

# proxychains.conf VER 3.1
#
# HTTP, SOCKS4, SOCKS5 tunneling proxifier with DNS.

# The option below identifies how the ProxyList is treated.
# only one option should be uncommented at time,
# otherwise the last appearing option will be accepted
#
#dynamic_chain
#
# Dynamic – Each connection will be done via chained proxies
# all proxies chained in the order as they appear in the list
# at least one proxy must be online to play in chain
# (dead proxies are skipped)
# otherwise EINTR is returned to the app
#
strict_chain
#
# Strict – Each connection will be done via chained proxies
# all proxies chained in the order as they appear in the list
# all proxies must be online to play in chain
# otherwise EINTR is returned to the app
#
#random_chain
#
# Random – Each connection will be done via random proxy
# (or proxy chain, see chain_len) from the list.
# this option is good to test your IDS :)

# Make sense only if random_chain
#chain_len = 2

# Quiet mode (no output from library)
#quiet_mode

# Proxy DNS requests – no leak for DNS data
proxy_dns 

# Some timeouts in milliseconds
tcp_read_time_out 15000
tcp_connect_time_out 8000

# ProxyList format
# type host port [user pass]
# (values separated by ‘tab’ or ‘blank’)
#
#
# Examples:
#
# socks5 192.168.67.78 1080 lamer secret
# http 192.168.89.3 8080 justu hidden
# socks4 192.168.1.49 1080
# http 192.168.39.93 8080 
#  
#
# proxy types: http, socks4, socks5
# ( auth types supported: “basic”-http “user/pass”-socks )
#
[ProxyList]
# add proxy here …
# meanwile
# defaults set to “tor”
http 10.123.137.1 8080
socks4 111.44.45.31 80

Now depending upon your network configuration, you’ll need to add proxies to this file. If you’re on a network that routes all data through a proxy server, then replace the bold green text with the type of proxy (http, socks4,5 ), ip address and port number. Separate each field by a TAB. That’ll be enough for you to force your programs to use your network’s proxy.

But if  you want to use another proxy for any purpose including hiding your ip, you can add other proxies along with their type and port number same way as previous one. (Red bold text). Additionaly you may have to add username and password if the proxy server requires so.

Notice the options #dynamic_chain, #strict_chain and #random_chain . 
Removing the # sign from any one of these 3 specifies the order in which the proxies are to be used. In this example I’m using strict_chain option, though dynamic_chain will also work.

Save the file and exit from text editor. Now it’s time to see it in action. Open up your command line and type proxychains before the program name to force it to use your proxylist. 

user~# proxychains program

As simple as that :)

This is probably the easiest way to “hack” various passwords including email. All you need is ettercap.
It’s a easy to use GUI based sniffer. (Good news for people scared of command line).
Download and install the software on your PC from this link. Only source packages are available. Instructions for running on a Windows platform are here. I’ve not tried that yet.
For this hack to work, your PC needs to be on the network. You can’t do it from outside.

First click on Sniff –> Unified Sniffing

Then click on Hosts and input the list of hosts you want to snoop on. You can either feed a list of ips or let ettercap select online hosts in your subnet. I tried sniffing on hosts outside my subnet,(there is a reason why I had this idea of sniffing ) but that hasn’t worked well yet.

Click on Mitm (for newbies, MITM stands for Man In the Middle) and click on ARP poisoning. On next box, select Sniff remote connections

Click on Start –> Start Sniffing.

Now keep an eye on the output screen as the users login to websites. Their login details are displayed in plain text. :D

In case you don’t see anything, you may need to do a bit of work. Find the file ettercap.conf and remove the # sign from last two lines below.

# if you use iptables:
#redir_command_on = “iptables -t nat -A PREROUTING -i %iface -p tcp –dport $
#redir_command_off = “iptables -t nat -D PREROUTING -i %iface -p tcp –dport$

ettercap.conf file is placed in /usr/local/etc.

Here is a sample of what I captured on one of my networks. Details have been changed to protect the innocents. :P

Listening on eth0… (Ethernet)

eth0 -> 00:A2:81:99:BA:01 10.17.167.60 255.255.255.0

SSL dissection needs a valid ‘redir_command_on’ script in the etter.conf file
Privileges dropped to UID 65534 GID 65534…

28 plugins
39 protocol dissectors
53 ports monitored
7587 mac vendor fingerprint
1698 tcp OS fingerprint
2183 known services
Randomizing 255 hosts for scanning…
Scanning the whole netmask for 255 hosts…
26 hosts added to the hosts list…

ARP poisoning victims:

GROUP 1 : ANY (all the hosts in the list)

GROUP 2 : ANY (all the hosts in the list)
Starting Unified sniffing…

HTTP : 10.17.167.24:8080 -> USER: a23bb2-dc2d-4435-be54-cbf8a64431cb PASS: HTRnheQp INFO: http://online.speedbit.com/online/update.aspx?CV=1.1.0.6&
DHCP: [00:0D:60:9F:10:0E] REQUEST 10.17.167.188
DHCP: [10.17.167.1] ACK : 10.17.167.188 255.255.255.0 GW 10.17.167.1 DNS 10.17.172.2 “smtup.com”
POP : 10.17.166.21:110 -> USER: user.one PASS: mypass1234
HTTP : 116.143.123.122:80 -> USER: 4f3ab8b2-dc2d-c245-a654-0ca8a64431cb PASS: nRHh6Pq INFO: online.speedbit.com/
DHCP: [10.17.167.1] ACK : 10.17.167.169 255.255.255.0 GW 10.17.167.1 DNS 10.17.172.2 “mydomain.com”
HTTP : 202.137.234.20:80 -> USER: mantris PASS: yourpass INFO: http://www.rediff.com
DHCP: [00:23:E6:1B:FD:7F] REQUEST 10.17.16.69
DHCP: [10.17.16.1] ACK : 10.17.167.69 255.255.255.0 GW 10.17.167.1 DNS 10.17.172.3 “mydomain.com”
HTTP : 10.17.16.24:8080 -> USER: kaykay PASS: batman INFO: http://www.rediff.com/index.html

Do not misuse this information. I use this tool only to monitor traffic for illegal activities on my network.

Greets: remote-exploit.org

I installed BackTrack 3 on my PC at work. Installing it in a dual boot configuration along with XP proved to be a nightmare. Messed up my XP partition once and was unable to get dual boot working properly. It’d work fine for 2-3 days and then mess up.  At first it was LILO giving crazy errors and garbled text, so I  followed instructions posted by GoodGirl in Remote Exploit forums and installed GRUB.I don’t know if it really worked for people who posted there thanking her, but that tutorial has many errors.
 Using BackTrack 3 hasn’t proved to be a good experience either. It has quite a few bugs, or maybe its just the under powered PC I have here (256MB RAM only). My list of annoyances:
1) Linux is fast. Much faster than Windows with little lag times and programs almost never  hanging up. But BT 3 is an exception. Its very slow, running 2-3 programs simultaneously is sure way to slow down or crash everything. I’ve installed this OS 2 times with different images. (USB one)
2)  We have a proxy here.  I tried my best but was unable to get any program except browsers and chat clients to use the proxy for accessing external networks. Updating doesn’t work either. I’m unable to find a  proxy setting for system like there is one for Windows services.  Wise guys at RE forums had their own ethicaly White Hat views on this.
3) Compiz Fusion is a complete dud. Themes don’t work properly. Not to mention you can’t download new themes due to proxy restriction. Maybe its due to low RAM.
4) Mouse has gone crazy. It cannot differentiate between single and double clicks. I tried almost everything in Mouse settings, increasing/decreasing sentivity, lag time, changing themes. But its stuck. Sometimes my clicks get recognised as single at other times they are double. You can guess the results. Same mouse works fine in XP.
5) GUI installation has been removed. Now its back to command line installation. You can copy the installation script,  bt3.kmdr file from older distros for graphical intall though. Here is the file. Some senior members say that they prefer people to use thumbdrives for running BT 3. Why’d anybody use thumbdrives if they can install on HDD except in rare cases?
BT 3 Beta and even XP are a lot better than this (except for proxy). I’m still using BT 3 Beta on my home PC. No use taking chances with all that data there.

Using linux (BackTrack) is proving to be a real learning expereince. I always wanted to use Linux instead of Windows as my  primary OS. I tried shifting to linux many times in the past. tried using Xandros, Ubuntu, Red Hat and some more flavours. but couldnt get anything done with them. Not that they were particularly bad. Main reason was lack of a relable internet connection.
Nowadas with a good net connection, anytime am stuck with something I just search it on any search engine (Google mostly) and more often than not I have the solution within miniutes.
I was unable to do so earlier without internet.
Nowadays almost every Linux distro based on ny platform supports almost every hardware straight out of the box, but still many times you need to dowload some file  to make something work.
In my case, I havent been able to use my RTL8139 chpset NIC work :-|
Not that I particularly need it. Onboard card works well without a hitch..but still I’d like  it to work,. Just for the sake of challange

:D

I’ve downloaded and successfully installed many good software,
list includes
VMware (server and player , both free)
Opera Browser
Some misc system software including Wine, sqlite3, postgres and many more.
Currently downloading OpenOffice. I hope it’ll install fine without  givingmuch trouble now
Finally learnt to use multiple desktop option.
Still some stuff proves o be quite difficult

Games for one. No windows game will work  here.
Sometimes, some games seem to  work with Wine, but they crash soon. Updating the software to a newer version was of  no help.

Then  tried installing Cedega, but waas put off by their ridiculous  5 Euro per month subscription fee. Thats too much to pay  in any case.
Then I tried installing the free version, Cedega CVS. After going through numerous guides, installing dozens of packages am still unable to run any game.

To top that, BackTrack lacks support for multi-channel sound.

Enquiring about these issues in BT forum gives response, “This is a pen-testing distro. Not meant for games, music etc” :|
Well., I can understand that, but even with a pen test distro, a person sometimes will really like to use it as his/her primary OS.  This point aparently escaped the notice of the BT people.
Not much use of complaiing. They’vce made and released this excellent OS for free afterall.

My windows installation still stays..for games only.  :

Finally managed to install BackTrack 3 on my PC today. it was really hard work..but did it somehow. Don’t know if this text  is going to make sense to anybody or not.Anyhow..here are the details:

Configuration of my PC:

Intel Pentium 2.66Ghz
Asus P5RDVM Motherboard with X900 Chipset
XFX’s NVidia 6200TC Card
(But using 8400 currently)
512MB RAM
One 100MB NIC on PCI slot (Motherboard has another onboard but its faulty.)
Western Digital 160GB SATA
Seagate 20GB PATA

4 Windows partitions on WD dsik with WIndows XP Pro installed on 1st partition

Now I wanted to install BT3 without messing up my XP installation. Still a newbie to Linux and can’t just migrate to Linux as yet.

I installed Acronis disk director and made 3 more partitions. One 1Gb for Linux swap , one 12GB ReiserFS for BT3 and made one 6GB empty space

I also installed Acronis boot loader, just to be safe
Now my previous attempts to successfuly make my PC dualbootable failed with BT. So I thought of installing Ubuntu Linux too. First I booted from an Ubuntu CD and installed it on HDD. In installation process I selected use the largest available free space.
It used that 6GB free space to install itself. After installation I rebooted the PC and was promptly greeted with a GRUB menu with booting options for both XP and Ubuntu.

Now its time for BT3.
Booted using Backtrack 3 DVD. Since I had already made partitions I didnt need to make new using fdiask command.
Just used “Install BT to HD ” option from its start menu.

The 12Gb ReiserFS partition was /dev/sda5. Used that for installing BT and /dev/sda for installing MBR. Used full install and unchecked “remove from MBR” option. It took like 10-15 minutes for install.

Rebooted and bumped into LILO boot loader of BT.

Ubuntu and Windows nowhere visible.
:)

:)

Booted into BT and logged in using default password.
type “liloconfig” and selected new LILO installatiion
In next menu selected Add Windows Installation and added /dev/sda1
For Ubuntu added /dev/sda8 and “dev/sda5” for BT 
Note that these sda will differ for different PCs. Could be hda if you have PATA disk or sda 1,2,3 etc may differ.

Saved and rebooted

This time I got Acronis boot loader menu
:D
But with only 2 choices
One Windows XP and other Linux
Selected Linux and got LILO of BT3 . But this time with 3 options. Windows, Ubuntu and backTrack3
ALl working perfectly
:)

Well except for one small part
can’t access net from both linux distros. Actually, can’t even ping my gateway. I have a Sify connection. An ethernet cable plugging directly to ethernet card. Then I have to run a cleint program to login using my username and password.
A friend of mine who has installed Slackware faces the same problem
But thats for another day.

Tomorrow I’m going to fix that

Links 

BACKTRACK

http://www.remote-exploit.org/backtrack.html

DOWNLOAD

http://www.remote-exploit.org/backtrack_download.html

BACKTRACK Forums

http://forums.remote-exploit.org

UBUNTU

www.ubuntu.com

UBUNTU Download

http://www.ubuntu.com/getubuntu/download

ACRONIS

http://www.acronis.com/


Finally, I got Backtrack up in VMware witha wroking internet connection

Great

:D

Heres what happened. This is the stuff that I posted in BackTrack forums.

1st Post

MY PC config is

2.66GHz P-!V
512MB RAM
nVidia 6200TC (64MB onboard + 64 MB shared RAM)
Onboard ULi PCI Fast Ethernet Controller
Onboard Soundmax HD Audio COntroller
2 Hard discs (Both IDE PATA, one 40GB (master with XP installed) 2nd =20GB)
2nd HDD contains BackTrack image and all related files
Sony DVD combo as 2ndry master

Windows XP SP2 (+all patches)
Avast Antivirus
Comodo Personal Firewall (+ Windows Firewall On too)
VMware Player
VMX Builder
VMware Diskmount

After many trials and errors including Microsoft Virtual PC, booting from CD, I finally managed to get Backtrack running using VMware Player and a VMX script downloaded from Irongeek

Now the only problem that I am facing that I cant connect to the internet/network.
I have a standalone PC with DSL connection that requires authentication on ISPs site. It works fine with windows.
But I cant seem to connect while running backtrack in VMware
I tried all the commands
ifconfig eth0 ipaddrs subnet
dhcpcd
ifconfig eth0 up etc etc. listed in threads here
along with the IP address setting utility in BT.

At first I tried setting my IP , DNS and gateway etc to same as windows(ipconfig /all), then to other IP addresses in the subnet that were not occupied.
But I couldnt even ping the gateway. Though running ifconfig command showed some outbound packets, there were none inbound.

I tried modifying settings using vmnetcfg.exe utility in VMware player folder. modifying NAT for different interfaces,, setting DHCP same as my ISP etc etc.
Modifying VMware scripts to use modified interfaces.
Enabling/disabling different interfaces..NAT/DHCP/Bridge from VMware window have no effect either

Ping command runs well only for localhost
Also BT shows l0 as the listed ethernet interface

I’ve disabled my firewall too.

But still cant get it running.
I think I’m unable to configure vmnetcfg.exe utility properly..or is it something wrong with default config of BT that prevents network connections?

I’ve tried searching in VMware forums too without any success.
CAn anyone help me with this?
Sorry for this very long post. If am unclear somewhere, please tell me.

__________________


2nd Post

m using BT ver 2 and VMware ver2 Downloaded them fresh from the site

I cant use live CD. As soon as i get first boot prompt(unloading stuff), my screen goes black and stays that way. Using alt-ctrl- – doesnt work
May be it hates my graphics card or resolution is unsupported. Cant even get to login prompt

My monitor is a 15 inch Samtron. Max resolution supported is 1024×768 at 60Hz. I use it at 960×600 at 85Hz (max flickerfree) in windows,
While using VirtualPC, i couldnt use my mouse, and graphics were terrible.

Now for original query,
I have an ADSL modem with one ethernet interface. NAT is disabled.
I’ve tried setting my ip address as per one of the guides, using DHCPCD etc, but it didnt work. I cant even ping my gateway, that I set manually.
Am training for CCNA and so I have fair bit of idea about subnets etc. and am providing them correctly too.
Can anybody post me the link for proper usage of VMware ethernet adapters , VMX Builder and BackTrack ip config.
Theres nothing in help files either, and I could find only one tutorial about setting ip config in BackTack. But I suspect its more to do with VMware. But not sure .
__________________

3rd Post

This thread, additionally, I used GUI utility in BT too.
Also I read up linux commandline reference, nothing really special there too

ttp://forums.remote-exploit.org/showthread.php?t=1489&page;=3[/url]

I start it like this

First I boot into WIndowsXP. Connect to internet, as my DSL modem provides the PC with IP automatically. Only thing remains is to authenticate at the ISP’s site with my user id and password using a browser

Now I start VMware and load the modified vmx file that I got from irongeek site.
It all works fine till I get to connecting to internet.
Also I tried to make a “hard disk”
using VMX builder. Its same problem in both cases.
Can you point me to any step by step tutorial regarding ip configuration in Backtrack and VMware?
__________________

4th Post

Sorry to bother you again folks…but I just cant avoid it.

I’ve tried everything with VMware..that I could think of, editing various virtual network adapters, enabling disabling various settings etc etc.
But I can’t get my Backtrack session to connect to internet.
I tried using multiple ethernet cards (virtual) in BT too, but without any success

Then, I borrowed a friends laptop to run the Boot CD. Guess what, I got the same problem there. Bt boots up fine but still no internet connectivity
(CD wont run on my system, I just get a blank screen after boot: prompt)
So that leads me to think, theres some issue with my ISP.
Let me explain about my connection, all that I know

It uses a Chinese made UTStarcom ADSL router/modem
UT-300R2 WITH ONE ETHERNET CONNECTION.
Connection is provided through a CAT cable with 4 pairs. Only one pair is used to provide internet connection. This company provides telephone service too. In some cases, telephone shares the same pair as internet service (uses a splitter then) while in other cases phone and internet service are both on different pairs.

It has LEDs for PPOE, WAN, LAN and Power

The IP is dynamic and ipconfig command shows a single DHCP server, 2 DNS servers.
Subnet mask is 21.

Connection speed is 75kbps (yeah yeah, I know its very lame, but thats what I can currently afford )
To start using the internet, I have to first put in my user id and password in the login page of the isp.
That page comes on by default everytime I try to open any site.. (what else?)

I’ve tried putting in IP address(same as well as different unoccupied address in subnet), gateway IP and DNS server address manually but I cant even ping the gateway even when the BT accepts the IP I provided.

I cannot login to my router/modem whatever( it says ADSL modem ). I just get a class A ip in range 123
I tried calling customer care, but they said that it isnt possble to change settings by logging in, either through browser or telnet.
This thing doesnt have NAT either
Ip shown in ipconfig command and external tools like whatsmyip.com site are same.

I tried running ppoe setup // command(from this forum), but that didnt help either. I see some data traffic outgoing /incoming, but thats all theres to it.
I havent installed it on HDD yet. Just using Laptop and more often VMX builder to play around with various settings on my PC.
Can anybody tell me about
VMXnet
E100 and
AMD Lance
settings in Network Adapter Type drop box in that? Does it have any influence?
Attached Images ifcon.jpg

__________________

5th Post

I finally managed to get DHCP service running and got ip address and everything.

Got it by trying a lots of stuff at once, resetting my modem using a small reset button, turning it on and off and running dhcpcd command with -h and -r switches
Now I have a working ip config.
But theres another hitch
I now get to login page of ISP, but on entering password, it says, Authentication Failed

Has it something to do with following excerpt
3.10.7. I have followed all the steps but still my machine is not able to connect

The cable modem will usually memorize the ethernet address of your network card so if you connect a new computer or switch network cards you will somehow have to “teach” your cable modem to recognize the new computer/card. Usually you can turn of the modem and bring it back up while computer is on or you will have to call tech support and tell them that you have changed a network card in the computer.

from this page
Code:
http://tldp.org/HOWTO/DHCP/x74.html
I had same problem when I tried to use laptop (XP). But resetting and switching the modem on and off fixed it.
BUt its not working here.
I’ve done it 2-4 times.

One tiny bit more..
whats with multiple keystroke?
It just keeps on typing even if I just touch the keys
Happens sometimes. Though quite often.
Is it a bug?

6th Post

Guess hwat??
I got it fixed and to think of it, there was never any problem with Vmware settings.
It was my frigging modem afterall. All I had to do to get internet working on BT was to release IP from windows. Then switch off the modem and wair for 2-3 minutes to get rid of the binding with MAC that ISPs do
Then switch on the modem and run dhcpcd command.
I was able to logion to my ISP then and off to work

Finally, leant something.

Should’ve thought of it long time ago. Had smae problem in lab when I was once training for managing Windows Domains

Quote:Originally Posted by Funnyman
I think the reason why LiveCD didn’t boot on your PC is something to do with your Graphic Card. Because BT and Auditor did boot on my Laptop but did on my PC.

Ya..my card is N’Vidia 6200 made by XFX.
Screen goes blank after first boot prompt.

Whewww

;)

Heres the link of BackTrack forums..of my post

http://forums.remote-exploit.org/showthread.php?t=7485