Ettercap MITM

[antihaxer]

My linksys router is switched so I have to use mitm to get traffic from my other computers. However when I "poison" my "victims" they can no longer access websites and firefox times out when trying to load a site. I am use mitm on a wired laptop and the computer I have trying to capture packets from is my wired desktop computer. Thanks to all who help.

[-=Xploitz=-]

So your question is???? How can I prevent my victims browsers from timing out?? If so, do you see under Profiles in the ettercap menu, notice that the connections to https sites are killed.??

[antihaxer]

I do not see a profile option or tab in ettercap. One more thing, I just logged into this site on my wired computer and the password did not come up, why? Cain and able always captures all of my passwords.

[-=Xploitz=-]

I do not see a profile option or tab in ettercap. One more thing, I just logged into this site on my wired computer and the password did not come up, why? Cain and able always captures all of my passwords.

Sorry, I wasn't very clear...Profile is under the view tab after you do Ctrl S to scan the netmask. Then its the second option down.

Bare in mind unless you know what your doing with ettercap...you wont capture every username / password you type in on a website. But I just have to ask...did you un-comment these lines in the ....

nano /usr/local/etc/etter.conf

# if you use iptables:
#redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT %rport"
#redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT %rport"

to this

# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT %rport"

that will take care of "most" SSH secured sites like gmail and hotmail.

***EDIT***

You are associated to the AP as well right??

[antihaxer]

I am on a lan, and I have those lines uncommented. All is working now, but it is not capturing passwords.

[-=Xploitz=-]

I am on a lan, and I have those lines uncommented. All is working now, but it is not capturing passwords.

Do you have a gmail account?? If so try going there and try capturing the user / pass.. you are capturing on your wireless device on your laptop right?? And you might wanna consider a reboot cause it sounds like you have a damaged arp cache. So the network will be unavailable after X amount of time while. Also, the targets will have to reboot to fix their arp cache as well.

***EDIT***

I have heard several complaints concerning a router or a switch with timeouts. Although I have not read any fix for this. I know that if a hub is being used there is little or no problem..but sometimes routers and switches get confused on where to send the data and this causes the timeouts...hence what I said about arp damage.

[antihaxer]

Ya, I have a gmail account. I am using a wired connection on my laptop because my alfa will not connect to my ap my some reason. Btw bought a big thick book today. "HACKING Wireless EXPOSED:Wireless Security Secrets & Solutions" :-) Just tried logging into gmail and no pws came up. How come ettercap does not capture as well as cain and able in windows?

[-=Xploitz=-]

Btw bought a big thick book today. "HACKING Wireless EXPOSED:Wireless Security Secrets & Solutions" :-) Just tried logging into gmail and no pws came up. How come ettercap does not capture as well as cain and able in windows?

Better book....

Code:

http://rapidshare.com/files/11399451...cks_3rd_Ed.rar

ESPECIALLY....Ch 3 "Network Monitoring"

• Section 3.1. Hacks #20-42
  Hack 20. Find All Available Wireless Networks
  Hack 21. Network Discovery Using NetStumbler
  Hack 22. Network Detection on Mac OS X
  Hack 23. Detecting Networks Using Handheld PCs
  Hack 24. Passive Scanning with KisMAC
  Hack 25. Establishing Connectivity
  Hack 26. Quickly Poll Wireless Clients with ping
  Hack 27. Finding Radio Manufacturers by MAC Address
  Hack 28. Rendezvous Service Advertisements in Linux
  Hack 29. Advertising Arbitrary Rendezvous Services in OS X
  Hack 30. "Brought to you by" Rendezvous Ad Redirector
  Hack 31. Detecting Networks with Kismet
  Hack 32. Running Kismet on Mac OS X
  Hack 33. Link Monitoring in Linux with Wavemon
  Hack 34. Historical Link State Monitoring
  Hack 35. EtherPEG and DriftNet
  Hack 36. Estimating Network Performance
  Hack 37. Watching Traffic with tcpdump
  Hack 38. Visual Traffic Analysis with Ethereal
  Hack 39. Tracking 802.11 Frames in Ethereal
  Hack 40. Interrogating the Network with nmap
  Hack 41. Network Monitoring with ngrep
  Hack 42. Running

and don't forget ....

http://rs61.rapidshare.com/files/38695588/Wi-Fi-Toys.rar

Has a lot of cool antenna mods.

[antihaxer]

Ya, I saw that one at the book store, I read it there though. No need to buy it since it was just some kool antena mods. Btw, could you pm your aim xploitz so we could talk?

[-=Xploitz=-]

Ya, I saw that one at the book store, I read it there though. No need to buy it since it was just some kool antena mods. Btw, could you pm your aim xploitz so we could talk?

Believe it or not, I have no AIM or yahoo messenger. (Relationship reasons) However you can PM me here anytime.