I now tested Ettercap GTK on BT4.
I joined my test wep network with one PC and on the other one I connected with BT4 to ettercap.
I choose MTM, netmask etc. like always and went on my PC to a website from which I know that the Password is shown in ettercap. (studivz.net]studiVZ | Bist Du schon drin?[/url])
But nothing happens in etterccap using BT4.
With BT3, no Problem. The Certificate Failure appears and if you try to load the website again, the password is shown in ettercap.
Are there Problems in BT4?
I`m even wondering wheres my MDK3 ?
looks like ettercap has problems sniffing the ssl password. I did try using the ettercap and with the following command:
ettercap -Tqi ath0 -l sslpasswd -M arp:remote /gateway-ip/ /victim-ip/
The ssl certificate warning does show up but no password was captured.
Note: i did modify the /etc/etter.conf
Use the write-up by g0tmi1k to use sslstrip to strip the certificate and leave it in plaintext.
Hope it will work fine in the final BT4 Version soon.
Good O'l Ettercap works fine in bt3 but not getting ssl data in bt4. If anyone finds a workaround please let me know! I will post if I find one myself.
I am having also the same problem with ssl
Let's hope they will fix it in the final version.