Sniffing SSL traffic using MITM attack / ettercap, fragrouter, webmitm and dnsspoof.

**ipndrmath** · 06-30-2008, 07:09 PM

Sorry, I completely missed the gateway connection. Late Night post. So yes you are right; you don't have a choice on Gateways. I read that in ettercap's man just the other day. LOL.

Edit: Well wait. If you need it to be offensive, then I think just use ettercap. Ettercap doesn't detect if you're on a gateway, so you have to tell it not to forward. This is unoffensive. I'm not a pro at ettercap, but I think this is true. Does this sound right?

**ranlr** · 07-01-2008, 06:03 AM

Originally Posted by ipndrmath

Sorry, I completely missed the gateway connection. Late Night post. So yes you are right; you don't have a choice on Gateways. I read that in ettercap's man just the other day. LOL.

Edit: Well wait. If you need it to be offensive, then I think just use ettercap. Ettercap doesn't detect if you're on a gateway, so you have to tell it not to forward. This is unoffensive. I'm not a pro at ettercap, but I think this is true. Does this sound right?

True, if you use it in unoffensive mode, it's okay. But for unoffensive mode, might as well just use wireshark...

**RadarG** · 07-13-2008, 02:57 PM

Anyone know where I can get a version of fragrouter that will work on BT3

**Abracadabra** · 07-21-2008, 07:36 PM

This worked fine yeah, i capped myself signing into googlemail and hotmail just for fun i saved all the ssl data as a cap file in wireshark and following the instructions made a file called through ssldump called out.....it didnt literatlly decrypt it, my password or mail address never showed up at all....is it sposed to or am i missing somthing here ?

**danathane** · 07-22-2008, 10:22 AM

I don't think this is supposed to show you the mail address and the password.

**Abracadabra** · 07-22-2008, 10:32 AM

In that case it worked perfectly and it was decrypted in plain text......

**ipndrmath** · 08-03-2008, 09:39 PM

Originally Posted by Abracadabra

In that case it worked perfectly and it was decrypted in plain text......

If you didn't get the password or login, what was the point? Just use ettercap, in fact I did it just today for fun (ah, how nerdy).

Off of memory:

edit etter.conf (use locate)
set UID and GID to 0
look for iptables under "Linux" and uncomment both lines
ettercap -T -q -i whateverinterface -M arp:remote // //

Use ettercap -I to find out what interface you can use.
This will print any passwords that are captured to stout.

Read a tutorial on ettercap, you can do some crazy things.
Try here http://www.iljya.com/projects/SSLVideo/

P.S. Some one correct me if I'm wrong above.

**imported_=Tron=** · 08-04-2008, 03:01 AM

Originally Posted by ipndrmath

Off of memory:

edit etter.conf (use locate)
set UID and GID to 0
look for iptables under "Linux" and uncomment both lines.

No need for these steps in BT3 Final.

**ipndrmath** · 08-04-2008, 07:36 AM

Originally Posted by =Tron=

No need for these steps in BT3 Final.

Oh, beautiful. I had lost my BT3 cd, so I was using BT2. Thanks for the heads up.

BackTrack Linux - Penetration Testing Distribution

Thread: Sniffing SSL traffic using MITM attack / ettercap, fragrouter, webmitm and dnsspoof.

Thread Tools

Search Thread

Display

Yep, your right

No plain text passwords ... what's the point

Thanks

Posting Permissions