Capture Login Information from the Captive Portal with SEToolkit
A captive portal is a customized login page that is displayed to newly connected users of a Wi-Fi network before they are granted access to the network.
Captive portals are often used in public places, such as airports, hotels, schools, and other places that offer free Wi-Fi hotspots for Internet users. If you don’t know how to set up a basic captive portal page, read this tutorial here.
What is Social Engineering Toolkit?
The Social-Engineer Toolkit (SET) is an open-source penetration testing framework designed to automate social engineering attacks. SET can be found in Kali Linux and comprises tools for gathering credentials such as usernames and passwords from targets.
Start the Social Engineering Toolkit
Open the terminal window and type ‘setoolkit’ in the command line.
I will select option 1 for ‘Social-Engineering Attacks’.
Select the Type of Attack
Select the option ‘Website Attack Vectors’, so type 2, and press [Enter] to continue.
In this step, choose the option for ‘Credential Harvester Attack Method’.
Now, you have a choice to import a custom web page or just clone an existing website. I will type 3 for ‘Custom Import’.
Then you are asked to provide an IP address. You can use ifconfig command to find your IP address.
Here, you need to put the path for the captive portal page. This is where the captive portal files are located. In my case is ‘/root/Basic-portal’.
I will use the second option to copy the entire folder.
Type the URL of the website. This is the address of your server hosting the captive portal page.
Now the credential harvester is running…
So, I will switch to a different computer and connect to the ‘Airport-Free-WiFi-v2 network.
And I have been automatically redirected to the captive login page. In the login form, I will type ‘test’ for the username and ‘setoolkit’ for the password and click “Login”.
Let’s go back to the credentials harvester on setoolkit.
And here you can see the login credentials.
Thank you for reading!
