Page 14 of 23 FirstFirst ... 41213141516 ... LastLast
Results 131 to 140 of 222

Thread: Script for sniffing traffic.

  1. #131
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Script for sniffing traffic.

    Regarding saving the images, I had more success with 'tcpxtract', however am not
    sure whether this is included in the stock BT5 ..

    Might be an option to look into though.
    It rings a bell, I'll see if it's included or not. Thanks for the suggestion !

    comaX, why not grep through the /tmp files and pull out drift-........ or whatever? copy them all into [pwd]/driftnet/ if the users says so? Like the other options...
    Also, even thoug I love ascii art, maybe you should update the current header?..
    I thought about that... And was thinking that before "killall driftnet" I should add something like "cp /tmp/driftnet/* /anydir".
    That should do the trick right ?
    And it's funny you should mention the header, I feel like changing too !

    Xplico is worth a look too.
    I'll give it one then !

    Thank you guys !

    I'll probably push an update today
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  2. #132
    Senior Member VulpiArgenti's Avatar
    Join Date
    Sep 2011
    Location
    lost
    Posts
    174

    Default Re: Script for sniffing traffic.

    "cp /tmp/driftnet/* /anydir" Should be: cp /tmp/driftnet* /anydir

    I know you'd have worked it out - thought I would save you the trouble http://www.backtrack-linux.org/forum...lies/smile.png
    Last edited by VulpiArgenti; 02-02-2012 at 07:39 AM.

  3. #133
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Script for sniffing traffic.

    It wasn't a mistake, I planned on saving temp files to /tmp/driftnet/ so I could just select everything in the folder. But you are right, since the names all begin with "driftnet", it's simpler your way, and it makes it useless to create another folder.

    Since both are valid, I decided to use driftnet *and* tcpxtract (that is way better imho, segmentation faults apart). The user can choose !

    I hardcoded the destination folder as /root/capture_$(date +%d%m%y). What do you think about that ?

    I also changed the ASCII

    Edit : oh, by the way, Xplico doesn't seem to be present for me (xplico: command not found), so I didn't dig much...
    Last edited by comaX; 02-02-2012 at 08:07 AM.
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  4. #134
    My life is this forum Snayler's Avatar
    Join Date
    Jan 2010
    Posts
    1,418

    Default Re: Script for sniffing traffic.

    AFAIK, Xplico needs to be installed first.

  5. #135
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Script for sniffing traffic.

    It's in fact already installed under /opt/xplico/bin/xplico, but there are no symlinks for it. I however don't understand what it does nor what is should do... And there is no man entry for it. If someone could give me a little explanation, I'd be glad !
    (Yeah I googled it... but a simple user-point-of-view and how it could be used would be nice ! )
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  6. #136
    My life is this forum Snayler's Avatar
    Join Date
    Jan 2010
    Posts
    1,418

    Default Re: Script for sniffing traffic.

    Quote Originally Posted by comaX View Post
    It's in fact already installed under /opt/xplico/bin/xplico, but there are no symlinks for it. I however don't understand what it does nor what is should do... And there is no man entry for it. If someone could give me a little explanation, I'd be glad ! (Yeah I googled it... but a simple user-point-of-view and how it could be used would be nice ! )
    Thanks for the pointer. Then it's a question of creating a symlink inside the /bin folder. From what I remember from 1/2 years ago (when I first/last used the app), it extracts data from a capture file (maybe also from a real-time capture, not sure). Data can be images, http contents, e-mails, sound files,...

  7. #137
    Senior Member ShadowMaster's Avatar
    Join Date
    Jul 2011
    Location
    /root
    Posts
    189

    Default Re: Script for sniffing traffic.

    Xplico seems to be completely stand-alone. I'm not sure how you would allow for the automation that the rest of the script thrives on...
    World Domination is such an ugly phrase. I prefer the term World Optimization.

  8. #138
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Script for sniffing traffic.

    Yeahp, from what I read on the internet about it, it's nice to have it to analyse further packets captures but I don't see how it would be relevant here. Anyway, it's always nice to have propositions of some tool.

    What's your take on urlsnarf ? I don't quite see the point of having a list of GET HTTP blah blah www.mywebsite.com/folder/ressource.ext
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  9. #139
    My life is this forum Snayler's Avatar
    Join Date
    Jan 2010
    Posts
    1,418

    Default Re: Script for sniffing traffic.

    Quote Originally Posted by comaX View Post
    What's your take on urlsnarf ? I don't quite see the point of having a list of GET HTTP blah blah www.mywebsite.com/folder/ressource.ext
    It's always interesting to demonstrate that an attacker can study your browsing habits and use that knowledge to exploit a computer/steal passwords (dns poisoning/phising/etc...).

  10. #140
    Senior Member VulpiArgenti's Avatar
    Join Date
    Sep 2011
    Location
    lost
    Posts
    174

    Default Re: Script for sniffing traffic.

    Xplico is an interesting (and powerful) tool. It's best run on a dump (live capture mode is not as useful). It's easiest used through its web GUI so I agree wouldn't integrate well with yamas - just mentioned it while we were discussing image extraction.

Page 14 of 23 FirstFirst ... 41213141516 ... LastLast

Similar Threads

  1. Sniffing SSL Traffic on any application?
    By mortalz in forum Beginners Forum
    Replies: 3
    Last Post: 01-02-2011, 03:36 AM
  2. Replies: 10
    Last Post: 07-12-2010, 03:04 PM
  3. sniffing traffic
    By samer in forum OLD Pentesting
    Replies: 3
    Last Post: 03-27-2009, 01:39 PM
  4. Sniffing traffic between AP and Client.
    By cool_recep in forum OLD Newbie Area
    Replies: 8
    Last Post: 11-11-2008, 09:33 AM
  5. Sniffing Webcam traffic? How to do it?
    By Back|Track_user in forum OLD BackTrack v2.0 Final
    Replies: 2
    Last Post: 12-06-2007, 06:30 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •