27 August 2012 | 3,948 views

XMPPloit – A Tool to Attack XMPP Connections

XMPPloit is a command-line tool to attack XMPP connections, allowing the attacker to place a gateway between the client and the server and perform different attacks on the client stream.

The tool exploit implements vulnerabilities at the client & server side utilizing the XMPP protocol.

The main goal is that all the process is transparently for the user and never replace any certificate (like HTTPS attacks).

Features

  • Downgrade the authentication mechanism (can obtain the user credentials)
  • Force the client not to use an encrypted communication
  • Set filters for traffic manipulation

Filters that have been implemented in this version for Google Talk are:

  • Read all the the user’s account mails
  • Read and modify all the user’s account contacts (being or not in the roster).

You can download XMPPloit here:

XMPPloit.7z

Or read more here.


Tags: , , , , , , ,
# Posted in: Hacking Tools, Network Hacking | * Comments Off


Recent in Hacking Tools:
- Web-Sorrow v1.48 – Version Detection, CMS Identification, Enumeration & Server Scanning Tool
- CrowdRE – Crowdsourced Reverse Engineering Service From CrowdStrike
- XMPPloit – A Tool to Attack XMPP Connections

Related Posts:
- Slowloris – HTTP DoS Tool in PERL
- Apple Fixes ‘Misleading’ Leopard Firewall Settings
- SSLyze v0.4 Released – Scan & Analyze SSL Server Configuration

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,794,796 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 992,583 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 587,714 views


Comments are closed.