09-06-2011, 11:49 PM
Quote:(09-06-2011, 12:07 PM)akitta Wrote:[To see links please register here]
Quote: (09-06-2011, 03:26 AM).LiT Wrote:[To see links please register here]
Quote: (09-04-2011, 11:23 PM)akitta Wrote:[To see links please register here]
Excellent tutorial .LIT i'm going to give you rep i think you deserve it for this. ettercap and sslstrip do work across wifi aswell,
Thanks! Hmm really you got it to work well with wifi? I've never got it to work correctly wireless for some reason. How do you do it? Do you just specify your wireless interface when you run ettercap? -i wlan0 or something like that?
Yeh just specify which interface your using (ie -i wlan0) then you have to put in the router and target ip-add (like this 'ettercap -T -Q -M arp:remote -i wlan0 /192.168.1.254/ /192.168.1.89/ -P remote_browser') OR if your using ettercap -G (GUI) just search HOSTS
i've just seen this aswell for configuring ettercap to not throw up fake certificates (don't know if it works)
Ettercap has been capable of sniffing HTTPS usernames and passwords for years. It uses a fake certificate that's easy to spot when visiting 'important' sites like online banking etc. There are two lines you need to uncomment in ettercaps config file.
So, don't accept new certificates ('add exception' in Firefox) without reading them!
This could be useful beacause the only reason i don't use ettercap is because of it throwing up certificates when sniffing.
Thanks for the help man. Yes that worked I tested it today on my wireless network!