Thanks micole for this awesome tutorial. I was successful in sniffing SSL passwords but could someone tell me what's the difference between this howto and g0tmi1k's ( http://www.backtrack-linux.org/forum...-sslstrip.html ) who uses sslstrip, arpspoof and ettercap to do the same thing ? Thanks
Nice work !!! i think better to use CMD in shell that is the most suitable and for beginner and we will see the Ettercap ARP poisoning flow. Thanks to the Alor & Naga!!! Happy hunting........
Hi, nice tut . I was testing that on my home network and the outcome was part successful: edited etter.conf, run ettercap ok. On victim pc using Firefox logged into yahoo mail which worked fine however when trying to log in on other services a security certificate could not be confirmed. On Internet Explorer could not even get to login page as of "Page cannot be displayed" any ideas?