Airpwn TCP Hijack
TCP streams are 'protected' only in so much as the sequence number is not guessable. Wifi is shared media. Got your nose. Responses which do not begin with Header: Value assumed to be HTML only and will have Header:Value data prepended. Responses which do not include a Content-Length header will have one generated.
- ddz <ddz [at] theta44.org>
- hdm <hdm [at] metasploit.com>
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use auxiliary/spoof/wifi/airpwn msf auxiliary(airpwn) > show actions ...actions... msf auxiliary(airpwn) > set ACTION <action-name> msf auxiliary(airpwn) > show options ...show and set options... msf auxiliary(airpwn) > run