Umm, could be because you're attempting to monitor traffic on a switched network?Originally Posted by BigMac
wireshark... confused
freewebs.com/onedayillpay/mylan.gif
desktop 192.168.254.1
labtop 192.168.254.2
this is my simple setup. i have a linksys router and adsl modem.
when running wireshark on my labtop (promiscuous mode on or off) if there is any activity on the desktop i get some red packets.
I dont understand why i cant log the desktop's traffic.Code:192.168.1.235 -> 239.255.255.250 SSDP NOTIFY * HTTP/1.1 192.168.256.2 -> 239.255.255.250 SSDP M-SEARCH * HTTP/1.1
Umm, could be because you're attempting to monitor traffic on a switched network?
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.
Do yourself a favor and download the docs for wireshark located here:
http://www.wireshark.org/docs/
They are in several different formats.
This will help you tremendously in the long run
To be successful here you should read all of the following.
ForumRules
ForumFAQ
If you are new to Back|Track
Back|Track Wiki
Failure to do so will probably get your threads deleted or worse.
Plus you have to be arp poisoning on a switched network in order to capture.
are there any programs for vista that can perform a man in the middle attack?
Not sure. I know cain & able does not work in vista yet but I bet ettercap does.
I have had no problem with Cain and Able in Vista.
ettercap does not work for me in vista. . . ill try cain and abel. . .
Or, you could connect you're laptop to a multi-port repeater between the switch and the modem.
<EeePc 1000HA BT4/W7 USB boot Alfa500 GPS BlueTooth>
haha can't say hub?
Posting Permissions