Results 1 to 2 of 2

Thread: wireless, both sniffing question

  1. 06-26-2008, 01:32 AM #1
    ViaoV
    ViaoV is offline
    Just burned his ISO
    Join Date
    Mar 2008
    Posts
    1

    Default wireless, both sniffing question

    I'm trying to setup a box to record web visits across my network, both by log file and real time. I am trying to use Dsniff, urlsnarf, and webspy to accomplish it, but I am having an issue.

    Both urlsnarf and webspy sniff the traffic on the host machine but are unable to anything else from the network itself. All machines are wireless so I shouldnt need to ARP poison or MitM correct? I cant seem to find an answer on the forums anywhere, the only threads I can find that are similar are people on switched networks where they would need to MitM,
  2. 06-26-2008, 01:47 AM #2
    imported_=Tron=
    imported_=Tron= is offline
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    All machines are wireless so I shouldnt need to ARP poison or MitM correct? I cant seem to find an answer on the forums anywhere, the only threads I can find that are similar are people on switched networks where they would need to MitM correct?
    Yes that is correct, you will have to perform a MITM attack to get the webpages accessed on other computers within the network to show up in a live fashion. You can easily do this with ettercap using the following command:
    Code:
    ettercap -Tq -M ARP // // -i interface
    Another way of collecting the visited URLs would be to save all the sniffed traffic to a cap file and later replaying this on the lo interface and sniff on this interface using urlsnarf.

    The above process also applies to mailsnarf and msgsnarf.
    -Monkeys are like nature's humans.
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules