Page 24 of 25 FirstFirst ... 1422232425 LastLast
Results 231 to 240 of 248

Thread: Sniffing Tutorial:

  1. #231
    Junior Member
    Join Date
    Jun 2008
    Posts
    25

    Default lol noooob

    Quote Originally Posted by peithan View Post
    I've an onto some trouble with sniffing my other computers password through ssl.

    I've forwarded the traffic : echo 1 /proc/sys/ipv4/ip_forward
    Also i have edited the etter.conf file, removed the # at ip tables.

    When i start ettercap i sellect sniff, uniffied sniffing. Do a scan, ctrl plus S.
    Randomizing 63 hosts for scanning...
    Scanning the whole netmask for 63 hosts...
    60 hosts added to the hosts list...

    Then Mitm and sellect ARP poisoning. Ok.

    These hosts i can choose from:
    My workstations ip are in the list, being 213.114.108.124
    And this gateway i got is not in the list. when i use the ifconfig to check the gateway ip it says *.65 but that one isnt in the list. This gateway is provided from my isp and is not connectable, it just forwards the traffic.

    So how should i set up the sniffing? And when i just scan the hosts then start sniffing my internet kind of dies, til i cancel the arp poisoning. Shed some light on this please!

    Somehow i managed to sniff my password on my workstation yesterday, but i cant for the love of god remember what i did, and it is so frustrating. Been trying this for 3 hours soon.



    (if you do sumit right pres ctrl c (to stop process not exit) and press up arrow and last command you typed is displayed). this will not help if you close window and restart maybe (or maybey sum does) but remember this trick for futer ppl when you get it right you wont expect it!!!!.

  2. #232
    Just burned his ISO prozac88's Avatar
    Join Date
    Apr 2008
    Posts
    10

    Default

    wow guys this has turned out to be a huge thread. i am running bt3f in vmware on a vista machine and i am having troubles with ettercap, i have a wg111 v2 and a zydas zd1211rw usbs.

    i have both interfaces set to monitor mode:
    when i try to start sniffing in the gui with the wg111 i select interface and ettercap just closes.

    when i try to start with the zydas i get an error "Interface 'eth1' not supported (802.11 plus BDS radio information header)

    if anyone knows the fix or can point me into the direcection of a program that may be better for my setup it would be much apreciated.

    thanx, prozac88

  3. #233
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    Quote Originally Posted by prozac88 View Post
    i have both interfaces set to monitor mode:
    when i try to start sniffing in the gui with the wg111 i select interface and ettercap just closes.
    Well there is your problem. In order for ettercap to work you need to have your card in managed mode and properly connected to the network you wish to sniff on.
    -Monkeys are like nature's humans.

  4. #234
    Just burned his ISO prozac88's Avatar
    Join Date
    Apr 2008
    Posts
    10

    Default

    ok so i got it capturing however i dont understand any of it, ive logged in and out fo these forums, hotmail, yahoo, got the security pop up but its all jibberish, is there something i need to do to "decode it".

    and jsut for experimental sake i turned off all security so its an open network while im doin this

  5. #235
    Just burned his ISO
    Join Date
    Jul 2008
    Posts
    14

    Default

    How could I use Ettercap to sniff the packets of my own computer or a computer I ssh into instead of a remote computer with arp poisoning?

  6. #236

    Default

    Quote Originally Posted by prozac88 View Post
    ok so i got it capturing however i dont understand any of it, ive logged in and out fo these forums, hotmail, yahoo, got the security pop up but its all jibberish, is there something i need to do to "decode it".
    Don't be looking for the packets captured in wireshark - look in the ettercap window; they'll be in plaintext there.

    Quote Originally Posted by shady
    How could I use Ettercap to sniff the packets of my own computer or a computer I ssh into instead of a remote computer with arp poisoning?
    You don't need Ettercap to sniff your own packets - just open up wireshark. If you SSH into a computer, it's like it's a local computer (cause you have that command prompt up), so just run ettercap as per normal and you'd be sniffing that network.

    ~phoenix910

  7. #237
    Just burned his ISO
    Join Date
    Nov 2008
    Posts
    1

    Default

    EDIT:

    Never mind, the issue turned out to be my firewall.

    :-p

    I am using ettercap on Ubuntu 8.04

  8. #238
    Junior Member mRM3e's Avatar
    Join Date
    Oct 2008
    Posts
    28

    Default

    This is a good tute for noobs, but it can get alot more advanced. Try playing with filters and plugins DNS spoofing is my personal fav!

    Ettercap does MORE than just sniff web accounts

    The only thing that is annoying the crap out of me is the warning the users get in IE7 with SSL. I wish I knew a way to aviod such messages to the user just incase the user is not ignorant.

    mr_me
    I feel sorry for them - those who take authority as the truth and not truth as the authority -- Zeitgeist

  9. #239
    Just burned his ISO
    Join Date
    Jul 2008
    Posts
    14

    Default

    I was told these attacks can be performed over the internet, not just LANs. Is there a tutorial somewhere on the forum for that?

  10. #240
    Junior Member
    Join Date
    Feb 2008
    Posts
    44

    Default

    Quick quesion, does ettercap automatically start arp poisoning a new host? Say i started the man in the middle and had the entire group as a target. Then a brand new host joins in the network after i started. Does this person also get poisoned?

    Maybe there is something i'm not doing right, but what if i start the arp poison and the person is already logged their username and password? There is no way to gain access if they are not entering anything in correct?

Page 24 of 25 FirstFirst ... 1422232425 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •