Post Reply

[APP]DroidSheep : ARP-Spoofing App for Android

OP virus786

11th April 2012, 04:02 PM   |  #1  
OP Senior Member
Cape Town
Thanks Meter: 143
 
165 posts
Join Date:Joined: Feb 2012
More
DroidSheep is an Android app for Security analysis in wireless networks and capturing facebook, twitter, linkedin and other accounts.

DroidSheep requires ROOT!
Please note:
DroidSheep was developed as a tool for testing the security of your accounts.
This software is neither made for using it in public networks, nor for hijacking any other persons account.
It should only demonstrate the poor security properties network connections without encryption have.
So do not get DroidSheep to harm anybody or use it in order to gain unauthorized access to any account you do not own! Use this software only for analyzing your own security!

How does this work?
As already announced DroidsSheep supports almost every website – also “big” webservices like facebook and Yahoo.
How does that work this simple?
There are many users that do not known that air is the transmission medium when using WiFi.
Therefore information is not only transfered to its receiver but also to any other party in the network within the range of the radio waves.



Usually nothing special happens because the WiFi users discard packets that are not destined to themselves.
DroidSheep does not do this. It reads all the packets looking at their contents.
Is a website sending a clear recognition feature within a message’s content, which can identify a user (“SessionID”), then DroidSheep is able to read it although it is not intended to external users.
Moreover DroidSheep can use this token to use it as its own.
The server can’t decide whether the authorized user or DroidSheep has sent the request.



How can I protect myself?
The only satisfying answer is: SSL respectively HTTPS.
Many providers already offer HTTPS, even facebook, however it must often be enabled in the settings first.
When using HTTPS the data are still sent to alle participants in the WiFi-network, too, but because the data has been encrypted it is impossible for DroidSheep to decrypt the contect of a message - remaining only a complete mess of letters, with which an attacker can’t do anything.
The real problem is that not every website provides SSL. What to do when you are in a public network (hotel, airport, etc.), you also want to use this and the site does not offer HTTPS though?
You can use a VPN-connection
For this the computer sets up an encrypted channel to a confidential computer which again transfers the data to the website.
Please note this is NOT my work I am simply sharing this and giving a direct link to the APK (it was removed from droidsheep.de because of German rules).


Source: http://droidsheep.de

Build 14: http://www.iuptech.com/public/SD/dow...ep-current.apk <-- Thanks mbirth for build 14 link.

Build 15: Attached to this post - compiled by mbirth <-- Thanks

All credit goes to Andreas Koch for this amazing app! - Thanks a million!
Attached Files
File Type: apk de.trier.infsec.koch.droidsheep-15.apk - [Click for QR Code] (302.4 KB, 160244 views)
Last edited by virus786; 16th June 2012 at 10:06 PM.
The Following 93 Users Say Thank You to virus786 For This Useful Post: [ View ]
12th April 2012, 03:26 PM   |  #2  
Senior Member
Thanks Meter: 123
 
938 posts
Join Date:Joined: Mar 2007
build 13 is the latest? not 15
16th April 2012, 01:14 AM   |  #3  
OP Senior Member
Cape Town
Thanks Meter: 143
 
165 posts
Join Date:Joined: Feb 2012
More
If there is a newer version, please post a link of the apk here and I will add it to the OP.
The Following User Says Thank You to virus786 For This Useful Post: [ View ]
3rd May 2012, 01:16 AM   |  #4  
Senior Member
Berlin
Thanks Meter: 101
 
233 posts
Join Date:Joined: Nov 2006
More
There's build 14: http://www.iuptech.com/public/SD/dow...ep-current.apk

Build 15 is nowhere to be found for now…
The Following 4 Users Say Thank You to mbirth For This Useful Post: [ View ]
3rd May 2012, 01:20 AM   |  #5  
OP Senior Member
Cape Town
Thanks Meter: 143
 
165 posts
Join Date:Joined: Feb 2012
More
OP updated with build 14
The Following 3 Users Say Thank You to virus786 For This Useful Post: [ View ]
9th May 2012, 12:35 AM   |  #6  
Senior Member
San Francisco, Ca
Thanks Meter: 20
 
122 posts
Join Date:Joined: Feb 2012
More
Im having no luck with this app on my nexus s 4g. Which is a shame. I can post debugging info if somebody could help me out.
10th May 2012, 03:39 PM   |  #7  
Senior Member
Berlin
Thanks Meter: 101
 
233 posts
Join Date:Joined: Nov 2006
More
The v15 is in the official SVN: https://code.google.com/p/droidsheep...idManifest.xml

And since there's no official APK, you have to compile it yourself. Thus the different signature.

Attached is v15 compiled by myself.
Attached Files
File Type: apk de.trier.infsec.koch.droidsheep-15.apk - [Click for QR Code] (302.4 KB, 13278 views)
The Following 13 Users Say Thank You to mbirth For This Useful Post: [ View ]
15th May 2012, 02:05 PM   |  #8  
Senior Member
Thanks Meter: 14
 
121 posts
Join Date:Joined: Oct 2010
Does it work on ICS?

I want to be sure if it works befor im rooting my Note
15th May 2012, 09:03 PM   |  #9  
Senior Member
Thanks Meter: 351
 
1,359 posts
Join Date:Joined: May 2011
Yes
21st May 2012, 05:02 AM   |  #10  
Senior Member
Lower Caloocan
Thanks Meter: 94
 
392 posts
Join Date:Joined: Feb 2012
More
not working xperia neo cant search for anything i leave it for about 10min still nothing i also done what youtube tells me to do still nothing im using my home router with password....

Post Reply Subscribe to Thread
Previous Thread Next Thread