Script for sniffing traffic.

[comaX]

That missing letter stuff never happened to me, maybe you made a typo while testing ?
As for the script using fake ssl, why not ! I'll dig into that and see what I can do, if I like it

[ShadowMaster]

That missing letter stuff never happened to me, maybe you made a typo while testing ?
As for the script using fake ssl, why not ! I'll dig into that and see what I can do, if I like it

Um. as I logged in to the account, not sure how I could have made a typo... not important I'll trouble shoot it again. As for the fake ssl, what I imagine is the user typing in 'yamas' and being presented with the same options as before, just instead of automatically defaulting to arpspoof, he chooses between arpspoof and ettercap, with the default being arpspoof. And if he chooses ettercap, let him choose if he wants to add both the Fake SSL option and the Fake padlock option. Thanks. looking forward to a great update to an already great script.

[destro23]

Hi comaX,

You might be pleased to know there is someone out here using your script to learn bash. The heavy commenting is very helpful.

I notice a small problem running nmap. On my set-up, I get these results:

Code:

root@bt:~# ip route show
default via 192.168.0.254 dev wlan0 
192.168.0.0/24 dev wlan0  proto kernel  scope link  src 192.168.0.102 

root@bt:~# ip route show | awk '(NR == 1) { print $1}'
default

Therefore the value "default" is passed to nmap, stopping the script. Not sure if other people have this problem, but the fix for me is to change line 332 to:

Code:

search=$(ip route show | awk '(NR == 2) { print $1}')

Regards
Vulpi

what kernel are you running? type "uname -a" that may have something to do with it.

with .38 and .39 i think it gives different format... maybe thats why. I remember trying the same command on 2 different VM's BT5 and BT5R1 and they were a little different. Looks like comaX is running .39

[comaX]

^ Yup, always up to date fellas !
The lines were inverted between BT5 and BT5r1.

[JUUJUU]

great scrip comaX. i use it on BT 5r1 and it work perfect.
i have few questions. have anybody (or you) try it on LAN network? and how to edit log file yamas.txt so it can see only pages visited with while sniffing?

[comaX]

Hmm, by definition, you run it on a lan network... Did you mean WAN ? (in that case, that's a no-go)

And I didn't get that part

how to edit log file yamas.txt so it can see only pages visited with while sniffing?

What did you mean ?

Thanks for your interest !

[JUUJUU]

i mean on local area network like it on school,office building...(more than 10 computers connected in lan).
after sniffing script asks if i wont to keep the whole log file for further use. well how can i use that file further? for example i wont see only pages visited not all other lines like "server header" and blab blab bb....

[comaX]

It will work on any LAN network, let it be home, professional or highschool. But if you're not authorized to do so, don't do it, it's illegal and I won't be responsible for whatever it is that you do.

"for further use" means that my script will only show you credentials, but there are a lot of stuff in the logs that could be useful... It's up to you to know what you want, and what can be found.

And yes you will have a lot of junk in those files, but with a little experience, you'll easily browse through it.

[comr4de]

i just watched the youtube , this looks like a realy nice auto script
i really enjoyed the youtube video
==
i have a problem running it
i am using BT5r1 and i installed yamas successfully
i ran it with the default inputs
BTW ,i am on mikrotik Lan
every time i ran it i got this error meesage in the passwords console

" egrep: invalid back refrence "

and that's not it , immediatly after i got that error , i got disconnected from the mikrotik server and i have been asked to login to MT again

any ideas ?

[JUUJUU]

It will work on any LAN network, let it be home, professional or highschool. But if you're not authorized to do so, don't do it, it's illegal and I won't be responsible for whatever it is that you do.

"for further use" means that my script will only show you credentials, but there are a lot of stuff in the logs that could be useful... It's up to you to know what you want, and what can be found.

And yes you will have a lot of junk in those files, but with a little experience, you'll easily browse through it.

ok, thanks for fast replay. dont worry it wont be use in any illegal activity