Page 9 of 23 FirstFirst ... 789101119 ... LastLast
Results 81 to 90 of 222

Thread: Script for sniffing traffic.

  1. #81
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re : Script for sniffing traffic.

    Hi guys ! I added DNS spoofing, and even though I think I didn't make any mistake since it works, it's very buggy and will work one time in four...
    So, any help would be appreciated ! If you think it's better to start a new thread, I'll do !

    Meanwhile, you can grab the last version there : http://comax.fr/yamas.php

    Btw, a friend from maemo's forums did a very good demo video, you should check it out !
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  2. #82
    Senior Member
    Join Date
    Dec 2010
    Posts
    127

    Default Re: Re : Script for sniffing traffic.

    Have you check SSLStrip since the BT5r1 update. It's not playing nice with ettercap and I wanted to see if your script is ok. I get nothing but L3 errors when SSLStrip is fired up with ettercap. I haven't narrowed it down, but everything was cool in BT5, only the kernel changed.

    Best Regards,
    JB

  3. #83
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re : Re: Re : Script for sniffing traffic.

    Quote Originally Posted by ericmilam View Post
    Have you check SSLStrip since the BT5r1 update. It's not playing nice with ettercap and I wanted to see if your script is ok. I get nothing but L3 errors when SSLStrip is fired up with ettercap. I haven't narrowed it down, but everything was cool in BT5, only the kernel changed.

    Best Regards,
    JB
    Nope, I only tried with arpspoof, and everything's alright ! I'll try with ettercap and report back.

    Any idea regarding dns spoofing issues ? I'm using dnsspoof by the way.

    Cheers !
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  4. #84
    Just burned his ISO Carnacior's Avatar
    Join Date
    Apr 2010
    Location
    Romania
    Posts
    11

    Default Re: Script for sniffing traffic.

    +1 for the L3 errors with SSLstrip...

  5. #85
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re : Script for sniffing traffic.

    After a quick try on different sites, I didn't get any error. I believe to be fully up to date since I updated just a few days ago with
    Code:
    apt-get update
    apt-get upgrade
    apt-get dist-upgrade
    I didn't get 5r1 from the image, as you understood.

    Edit : I just tried all those commands again, and I was in deed fully up to date !

    Edit 2 : DNS spoofing with ettercap seems steadier than with dnsspoof. Both are available form the script though. Waitin for some feedback
    Last edited by comaX; 08-26-2011 at 12:48 PM.
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  6. #86
    Just burned his ISO
    Join Date
    Aug 2011
    Posts
    1

    Smile Re : Script for sniffing traffic.

    Hello very very very thanks for you project I see this with more option : http://code.google.com/p/e asy-creds/and Mod Edit: No links which require registration. Can you include more option in your future release please :-)


    thanks a lot
    Last edited by sickness; 08-31-2011 at 11:22 AM.

  7. #87
    Just burned his ISO
    Join Date
    Sep 2011
    Posts
    5

    Lightbulb Re: Script for sniffing traffic.

    Hi comaX,

    Firstly, I would like to congratulate you for the very good work with this script.

    Secondly, and whether you allow me to say, until version 0.9 there is no need to use wget in this script. The idea of self-update doesn't sound good. You should use a repository, instead. However, worst is the idea of downloading and injecting code in the script on the fly. This is a great security flaw.

    Concluding, try to use more the function feature, it'll make your code clearer, less repetitive, easier and safer to be maintained.

  8. #88
    Senior Member VulpiArgenti's Avatar
    Join Date
    Sep 2011
    Location
    lost
    Posts
    174

    Default Re: Script for sniffing traffic.

    Hi comaX,

    You might be pleased to know there is someone out here using your script to learn bash. The heavy commenting is very helpful.

    I notice a small problem running nmap. On my set-up, I get these results:

    Code:
    root@bt:~# ip route show
    default via 192.168.0.254 dev wlan0 
    192.168.0.0/24 dev wlan0  proto kernel  scope link  src 192.168.0.102 
    
    root@bt:~# ip route show | awk '(NR == 1) { print $1}'
    default
    Therefore the value "default" is passed to nmap, stopping the script. Not sure if other people have this problem, but the fix for me is to change line 332 to:

    Code:
    search=$(ip route show | awk '(NR == 2) { print $1}')
    Regards
    Vulpi

  9. #89
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: Script for sniffing traffic.

    Please do ! Regarding security issues, I'm the only one uploading anything, and anyone's free to look at the code before executing it. And I have no interest whatsoever in modifying the code to do some 3v17 haXXor stuff. Yet, I understand your concern ! If I could use some repo I would, but I never bothered trying to be honest... That could be very nice though. About making the code clearer, be my guest ! I've been meaning to do that for a while, but I keep running out of time, or adding new stuff and thinking I'll clean later, when I believe I won't add anything else.

    For instance, the whole part concerning sslstrip may now be useless. I just put that regarding migration to BT5, but now it has been a while and I don't think it's necessary anymore.

    Don't hesitate to mail, I'd be glad to work on it with you !
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  10. #90
    Senior Member ShadowMaster's Avatar
    Join Date
    Jul 2011
    Location
    /root
    Posts
    189

    Default Re: Script for sniffing traffic.

    First, amazing script, really cool. Second, when I ran it with arpspoof, the captured password was missing a letter. When I ran it with ettercap, the captured password was fine. Is this an issue with the realtime parsing? Just curious. Also, is there anyway to have the script use ettercap's fake ssl and padlock option as opposed to sslstrip?
    World Domination is such an ugly phrase. I prefer the term World Optimization.

Page 9 of 23 FirstFirst ... 789101119 ... LastLast

Similar Threads

  1. Sniffing SSL Traffic on any application?
    By mortalz in forum Beginners Forum
    Replies: 3
    Last Post: 01-02-2011, 03:36 AM
  2. Replies: 10
    Last Post: 07-12-2010, 03:04 PM
  3. sniffing traffic
    By samer in forum OLD Pentesting
    Replies: 3
    Last Post: 03-27-2009, 01:39 PM
  4. Sniffing traffic between AP and Client.
    By cool_recep in forum OLD Newbie Area
    Replies: 8
    Last Post: 11-11-2008, 09:33 AM
  5. Sniffing Webcam traffic? How to do it?
    By Back|Track_user in forum OLD BackTrack v2.0 Final
    Replies: 2
    Last Post: 12-06-2007, 06:30 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •