{"id":13475303,"url":"https://github.com/r00t-3xp10it/morpheus","last_synced_at":"2025-03-05T09:29:45.207Z","repository":{"id":50972119,"uuid":"77020139","full_name":"r00t-3xp10it/morpheus","owner":"r00t-3xp10it","description":"Morpheus - Automating Ettercap TCP/IP (MITM-hijacking Tool)","archived":false,"fork":false,"pushed_at":"2018-12-28T12:05:38.000Z","size":1230,"stargazers_count":851,"open_issues_count":14,"forks_count":236,"subscribers_count":71,"default_branch":"master","last_synced_at":"2025-01-15T22:39:37.891Z","etag":null,"topics":["ettercap","metasploit","mitm-attacks","on-the-fly","tcp-udp-manipulation"],"latest_commit_sha":null,"homepage":"","language":"HTML","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/r00t-3xp10it.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2016-12-21T05:18:30.000Z","updated_at":"2025-01-04T17:12:33.000Z","dependencies_parsed_at":"2022-09-11T17:12:02.760Z","dependency_job_id":null,"html_url":"https://github.com/r00t-3xp10it/morpheus","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/r00t-3xp10it%2Fmorpheus","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/r00t-3xp10it%2Fmorpheus/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/r00t-3xp10it%2Fmorpheus/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/r00t-3xp10it%2Fmorpheus/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/r00t-3xp10it","download_url":"https://codeload.github.com/r00t-3xp10it/morpheus/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":241999763,"owners_count":20055549,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ettercap","metasploit","mitm-attacks","on-the-fly","tcp-udp-manipulation"],"created_at":"2024-07-31T16:01:19.223Z","updated_at":"2025-03-05T09:29:45.134Z","avatar_url":"https://github.com/r00t-3xp10it.png","language":"HTML","readme":"[![Version](https://img.shields.io/badge/MORPHEUS-2.2-brightgreen.svg?maxAge=259200)]()\n[![Stage](https://img.shields.io/badge/Release-STABLE-brightgreen.svg)]()\n[![Build](https://img.shields.io/badge/Supported_OS-Linux-orange.svg)]()\n[![AUR](https://img.shields.io/aur/license/yaourt.svg)]()\n\n# Morpheus - automated ettercap TCP/IP Hijacking tool\n![morpheus v2.2-BETA](http://i.cubeupload.com/SpNvM5.png)\n\n    Version release: v2.2 - STABLE\n    Author: pedro ubuntu  [ r00t-3xp10it ]\n    Codename: oneiroi phobetor (The mithologic dream greek god)\n    Distros Supported: Linux Ubuntu, Kali, Debian, BackBox, Parrot OS\n    Suspicious-Shell-Activity© (SSA) RedTeam develop @2018\n\n\u003cbr /\u003e\n\n# LEGAL DISCLAMER\n    The author does not hold any responsibility for the bad use of this tool,\n    remember that attacking targets without prior consent it's illegal and punished by law.\n\n# Framework description\n    Morpheus it's a Man-In-The-Middle (mitm) suite that allows users to manipulate\n    tcp/udp data using ettercap, urlsnarf, msgsnarf and tcpkill as backend applications.\n    but this tool main objective its not to provide an easy way to exploit/sniff targets,\n    but ratter a call of attemption to tcp/udp manipulations technics (etter filters)\n\n    Morpheus ships with some pre-configurated filters but it will allow users to improve them\n    when launch the attack (morpheus scripting console). In the end of the attack morpheus will\n    revert the filter back to is default stage, this will allow users to improve filters at\n    running time without the fear of messing with filter command syntax and spoil the filter.\n    \"Perfect for scripting fans to safely test new concepts\"...\n\n    HINT: morpheus allow you to improve filters in 2 diferent ways\n    1º - Edit filter before runing morpheus and the 'changes' will be permanent\n    2º - Edit filter using 'morpheus scripting console' and the changes are active only once\n\n\n\u003cbr /\u003e\n\n# What can we acomplish by using filters?\n    morpheus comes with a collection of filters writen be me to acomplish various tasks:\n    replacing images in webpages, replace text in webpages, inject payloads in webpages,\n    denial-of-service attacks (drop,kill packets from source), redirect browser traffic\n    to another domain and gives you the ability to build compile your filter from scratch\n    and run it through morpheus framework (option W).\n\n    \"filters can be extended using browser languages like: javascript,css,flash,etc\"...\n\n\n\u003e In this example we are using \"\u003chead\u003e HTML tag\" to inject an rediretion url into target request\n![morpheus v1.6-Alpha](http://i.cubeupload.com/jn83zh.png)\n\u003e In this example we are using 'CSS3' to trigger webpage 180º rotation\n![morpheus v1.6-Alpha](http://i.cubeupload.com/XSWm0P.png)\n\n\u003cbr /\u003e\n\n# Framework limitations\n    1º - morpheus will fail if target system its protected againt arp poison atacks\n    2º - target system sometimes needs to clear the net cache for arp poison to be effective\n    3º - many attacks described in morpheus may be dropped by the target HSTS detection sys.\n\n\n\u003e 4º - morpheus needs ettercap to be executed with higth privileges (uid 0 | gid 0). \u003cbr /\u003e\n\u003e correct ettercap configuration display (running as Admin without ssl disectors active)\n![morpheus v1.6-Alpha](http://i.cubeupload.com/RIq2yO.png)\n\n    By default morpheus (at startup) will replace the original etter.conf/etter.dns files\n    provided by ettercap. On exit morpheus will revert those files to is original state..\n    [ ITS IMPORTANTE TO EXIT THE TOOL PROPER TO REVERT THE CHANGES MADE (press 'E' to exit) ]\n\n\u003cbr /\u003e\n\n# Dependencies\n    required: ettercap, nmap, zenity, apache2\n    sub-dependencies: driftnet, dsniff (urlsnarf,tcpkill,msgsnarf), sslstrip-0.9, dns2proxy\n\n# Credits\n    ettercap (alor\u0026naga) | nmap (fyodor) | apache2 (Rob McCool) | dsniff (Dug Song)\n    filters: irongeek (replace img) | seannicholls (rotate 180º) | TheBlaCkCoDeR09 (ToR-Browser-0day)\n\n\u003cbr /\u003e\n\n# Download/Install\n      1º - git clone https://github.com/r00t-3xp10it/morpheus.git\n      2º - cd morpheus\n      3º - chmod -R +x *.sh\n      4º - chmod -R +x *.py\n      5º - nano settings\n      6º - sudo ./morpheus.sh\n\n\u003cbr /\u003e\u003cbr /\u003e\u003cbr /\u003e\n\n## Nmap scans available [option S]\u003cbr /\u003e\n![morpheus v2.2-Alpha](http://i.cubeupload.com/O2h9Hd.png)\n\n      Morpheus v2.2 allows is users to scan with nmap sending one fake User_Agent [ IPhone ]\n      Activate this special funtion in [ settings ] file under morpheus main folder.\n      HINT: This setting its only available in morpheus [ scan LAN for live hosts ]\n\n![morpheus v2.2-Alpha](http://i.cubeupload.com/hp9r2u.png)\n\n      HINT: we can edit morpheus http.lua lib and input other user_agent,before run the tool.\n      HINT: My http.lua lib modified also allows diferent user_agent inputs at run-time like:\n      nmap -sV --script-args http.useragent=\"Apache-HttpClient/4.0.3 (java 1.5)\" Target-Ip\n\n\n![morpheus v2.2-Alpha](http://i.cubeupload.com/v1aIGd.png)\n\n\u003cbr /\u003e\n\n## Detecting DHCP requests to access local lan [option 17]\u003cbr /\u003e\n![morpheus v2.2-Alpha](http://i.cubeupload.com/EKAYLP.jpg)\n\n\u003cbr /\u003e\n\n## Detecting-blocking crypto currency connections [option 18]\u003cbr /\u003e\n![morpheus v2.2-Alpha](http://i.cubeupload.com/cbAoeY.png)\n\n\u003cbr /\u003e\n\n## Redirect all devices in LAN to google prank [option 19]\u003cbr /\u003e\n![morpheus v2.2-Alpha](http://i.cubeupload.com/ZE4Cy5.png)\n![morpheus v2.2-Alpha](http://i.cubeupload.com/xxmyex.png)\n`HINT: This module depends of .im domain not beeing redirected`\u003cbr /\u003e\n\n\u003cbr /\u003e\n\n## firewall filter screenshots [option 1]\u003cbr /\u003e\n\n    firewall [option 1] pre-configurated filter will capture credentials from the follow services:\n    http,ftp,ssh,telnet (facebook uses https/ssl :( ) report suspicious connections, report common\n    websocial browsing (facebook,twitter,youtube), report the existence of botnet connections like:\n    Mocbot IRC Bot, Darkcomet, redirect browser traffic and allow users to block connections (drop,kill) \n    \"Remmenber: morpheus gives is users the ability to 'add more rules' to filters befor execution\"\n\n    [morpheus] host:192.168.1.67   [ -\u003e ]  port:23 telnet  ☆\n               Source ip addr      flow    destination     rank good\n\n    [morpheus] host:192.168.1.67   [ \u003c- ]  port:23 telnet  ☠\n               Destination ip      flow    source port     rank suspicious\n\n\n![morpheus v2.2-Alpha](http://i.cubeupload.com/nbgSuj.png)\n\n![morpheus v2.2-Alpha](http://i.cubeupload.com/Hx0JV4.png)\n\n![morpheus v2.2-Alpha](http://i.cubeupload.com/LzqZGc.png)\n\n![morpheus v2.2-Alpha](http://i.cubeupload.com/z8M94O.png)\n\n\u003e Basically firewall filter will act like one offensive and defensive tool analyzing the\n\u003e tcp/udp data flow to report logins,suspicious traffic,brute-force,block target ip,etc.\n\u003cbr /\u003e\n\n---\n\n\n_EOF\n\n","funding_links":[],"categories":["Uncategorized","Tools","\u003ca id=\"79499aeece9a2a9f64af6f61ee18cbea\"\u003e\u003c/a\u003e浏览嗅探\u0026\u0026流量拦截\u0026\u0026流量分析\u0026\u0026中间人","HTML","Network Tools","HTML (177)","\u003ca id=\"42f9e068b6511bcbb47d6b2b273097da\"\u003e\u003c/a\u003e未分类","Network"],"sub_categories":["Uncategorized","Network Tools","\u003ca id=\"11c73d3e2f71f3914a3bca35ba90de36\"\u003e\u003c/a\u003e中间人\u0026\u0026MITM","Proxies and Machine-in-the-Middle (MITM) Tools","\u003ca id=\"3bd67ee9f322e2c85854991c85ed6da0\"\u003e\u003c/a\u003e投毒\u0026\u0026Poisoning"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fr00t-3xp10it%2Fmorpheus","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fr00t-3xp10it%2Fmorpheus","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fr00t-3xp10it%2Fmorpheus/lists"}