Results 1 to 4 of 4

Thread: ettercap - LAN Sniff

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Oct 2010

    Default ettercap - LAN Sniff

    Hi, i am new to BT I tried to use ettercap but i think it doesn't work: i have a LAN with 3 PC: the first is a server where a created a login page, the second is the client and the third is yìthe attacker pc. When i execute these commands

    echo "1" > /proc/sys/net/ipv4/ip_forward and ettercap -T -q -i wlan0 -M ARP / /

    ,where is the router IP and is the victim IP, i don't get any error, but it seems that nothing happens while the victim pc is connecting to the server login page.
    The only thing that i can sniff is when the victim pc connects to the router page ( and enter the user and the password (admin-admin).

    Where is the problem? It's something with ettercap or BT or with the server and login page?

  2. #2
    Member m0j4h3d's Avatar
    Join Date
    Jan 2010

    Default Re: ettercap - LAN Sniff

    why don't you put the fake page in your system and spoof the victim into it ? ..better to u .. on the other hand .. if you want to do as you are doing .. try to put the victim ip before the router ip
    if not solved >>> try to explain your problem more
    ---> 3v3RY D4y P4ss3S 1 f0uNd N3W th1NGs <---
    Knowing how 2 use BT dsnt mean that u r hacker

  3. #3
    Junior Member
    Join Date
    Sep 2008

    Default Re: ettercap - LAN Sniff

    Off the top of my head, I believe that running Ettercap sets ip_forward to 0. I believe this is in the man page.

    But for the simple task that you are trying to accomplish, I don't believe setting ip_forward is necessary.

    If you want to see the traffic passing through the gateway, you must specify "arp:REMOTE" - again, this is in the man page.. might be worth the 3 minutes to read it.

    -- Tom
    Last edited by StriperTS; 10-19-2010 at 12:36 PM.

  4. #4
    Just burned his ISO
    Join Date
    Oct 2010

    Default Re: ettercap - LAN Sniff

    I tried with ettercap GTK using arp remote but nothing changes...

    Where is the problem?

Similar Threads

  1. Doing a ssl sniff on a lan
    By Mutchako in forum Beginners Forum
    Replies: 2
    Last Post: 09-30-2010, 01:34 AM
  2. ettercap sniff hashed passwords, how to use them?
    By 0biwan in forum Beginners Forum
    Replies: 7
    Last Post: 07-18-2010, 03:30 AM
  3. Ettercap can't sniff
    By giomax in forum Beginners Forum
    Replies: 1
    Last Post: 06-15-2010, 11:29 PM
  4. is there any software that can sniff SSL3,TLS like ettercap
    By sieger007 in forum OLD Newbie Area
    Replies: 0
    Last Post: 01-24-2010, 05:19 PM
  5. Sniff SSL
    By Joseph69 in forum OLD BackTrack 4 (pre) Final
    Replies: 4
    Last Post: 09-05-2009, 02:11 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts