Well I successfully sniffed HTTPS password (rapidshare / megaupload) but I was hoping I could sniff HTTP passwords too (msn, forums, etc.), is it possible?
Purely ethical, I mean no harm to my sisters accounts. xD
Am i doing something wrong?
I open ettercap in GTK mode with the WEP key, I click Set Netmask and set it to "255.255.255.0", I then go to sniffing > unified sniffing and scan hosts, I add the router (192.168.2.1) to host 1 and the victim (192.168.2.101) to host 2, I then click mitm > arp poisoning and tick "sniff remote connections", I then start the sniffing, but as said, it is only sniffing https. :S
Unless you mean a web based client?
Now for sites that ettercap doesn't pick up, you could try and make your own filter! An example (Yahoo Web Based Email)
Ettercap :: View topic - HowTo do filters (Yahoo example)
Any of that help?
~ Have you, g0tmi1k? ~
:rolleyes: <(^^,)> :p d[-_^]b (= =D-->--< :eek:
Thanks for the help guys, it's appreciated.
Its ssl thats why its not working, how are you planning on sniffing encrypted traffic ??
I probably shouldn't say it as i hate to be a spoonfeeder, but just google yourself sslstripm and yes it works nicely with ettercap.
Using backtrack for the first time is like being 10 years old again with the keys to a Ferrari.