|
Register | FAQ | Members List | Calendar | Today's Posts | Search |
Thread Tools | Display Modes |
#1
|
|||
|
|||
Sniffing Tutorial:
Simple Sniffing Tutorial Tools: Ettercap nano 1. For SSL Dissection support (hotmail,gmail), you need to do this: Open a shell, type: "nano /usr/local/etc/etter.conf", use the down arrow until you reach "redir_command_on/off", look at the linux part, your gonna need to uncomment: Code:
# if you use iptables: #redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport" #redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport" Code:
# if you use iptables: redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport" redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport" Now boot Ettercap: Menu --> Backtrack --> Spoofing --> Ettercap Go to: Sniff --> Unified Sniffing -->ethX(what interface you want to sniff). Then Press: Ctrl+S to scan hosts. Then Go to: Mitm --> ARP poisoning, select sniff remote connections, and press ok. Then Go to: Start --> Start Sniffing. For an Example, Walk to another pc, go to your internet email account (Hotmail, Gmail), and log in, you will be asked to trust the certificate, Trust it, and watch your sniffing computer, the username and password should appear. When your done, go to Start --> Stop Sniffing, And go to Mitm --> Stop mitm attack(s) Yeehaw Last edited by yeehaw : 02-07-2006 at 11:50 AM. |
#2
|
|||
|
|||
Thanks for the nice tutorial!
I have another question to webmitm. I once was reading in the old forum that there is a other tool which fills the certificate automatically !? |
#3
|
||||
|
||||
Quote:
Code:
# if you use iptables: #redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport" #redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport" Thx |
#4
|
|||
|
|||
Remove the hash marks ( # ) at the beginning of the two lines following "# if you use iptables:".
|
#5
|
||||
|
||||
Quote:
|
#6
|
|||
|
|||
Quote:
Yeehaw |
#7
|
|||
|
|||
Very well done. Thanks alot for using Ettercap! Hahaha
__________________
TiSnetworks vX.2 (Security Website) - http://www.tisnetworks.net \|,,,,,,,,,,,,,,\|/,,,,,,,,,,,,,,|/ -(o)===(<(O)>)===(o)- /|''''''''''''''''`/|\'''''''''''''''''''|\ |
#8
|
|||
|
|||
TheGreatVirus, are you the author?
|
#9
|
|||
|
|||
what about a small video tutorial hosted by rapidshare?
|
#10
|
|||
|
|||
dunno wich tools for linux and windows i should use, enlighten me
|