Ettercap not capturing HTTP or HTTPS

[falseteeth]

This is all being done on my own home network.

Ok, I've done the following things:

A. Uncommented the iptables part of etter.conf.
B. Done "echo 1 > /proc/sys/net/ipv4/ip_forward" and I've seen that the value is set to 1.
C. Opened ettercap, began sniffing, added all hosts to target 1, began ARP spoofing Mitm, checked "Sniff remote connections."

First off, nothing appears at the bottom of my ettercap window. If I use etterlog to view the log as it's sniffing though, almost every packet is random SSDP traffic. If I try to view a page on my main computer (the victim), the DNS query will appear in the log, and it'll display the name of the page, but if I login or submit a post or anything, nothing appears. Nothing is seen as coming in on port 80.

If I view Wireshark, it's the same result. Nothing from HTTP. Also, if I send an MSN message, some sort of ACK packet appears with the name of the person I'm talking to, but nothing that I've said appears.

So, what am I doing wrong? I seem to be getting some but not all packets from the victim.

Thanks.

[amorandi]

You forgot to tell iptables to redirect traffic. After enabling ip_forward as you did, type:

"iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 10000"

After that, run "sslstrip -a -k" and then ettercap with your options.
I recommend not adding all hosts (// //) to the hosts list cause it might crash the network or cause errors in the captures/replies. It's best to target a specific host when sniffing.

Let us know if it worked =]