Never Ending Security

It starts all here

MITMf – Framework for Man-In-The-Middle attacks


MITMf is a Framework for Man-In-The-Middle attacks

MITMf V0.8 has been released- Framework for Man-In-The-Middle attacks


This is a python based tool with several plugins that add more functionality ( and flexibility ) to your penetration testing routine and thus make you faster and more productive.

Availible plugins:

  • Spoof – Redirect traffic using ARP Spoofing, DNS Spoofing or ICMP Redirects
  • BeEFAutorun – Autoruns BeEF modules based on clients OS or browser type
  • AppCachePoison – Perform app cache poison attacks
  • BrowserProfiler – Attempts to enumerate all browser plugins of connected clients
  • CacheKill – Kills page caching by modifying headers
  • FilePwn – Backdoor executables being sent over http using bdfactory
  • Inject – Inject arbitrary content into HTML content
  • JavaPwn – Performs drive-by attacks on clients with out-of-date java browser plugins
  • jskeylogger – Injects a javascript keylogger into clients webpages
  • Replace – Replace arbitary content in HTML content
  • SMBAuth – Evoke SMB challenge-response auth attempts
  • Upsidedownternet – Flips images 180 degrees

How to install on Kali

Run as root to install all submodules and python libraries.

More information can be found at:

Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s