Hacking Challenges

Episode 20 – Ettercap

August 3rd, 2008 by Patchy
For this episode of Full Disclosure, we illustrate the many features of Ettercap. Ettercap is a program designed to sniff passwords on a LAN. It can recognize several different packets that contain passwords including Http, Telnet, Ftp, Pop, Rlogin, SSH1, ICQ, SMB, MySql, NNTP, X11, IRC, IMAP, VNC, SNMP, MSN, YMSG, etc. Furthermore, Ettercap can utilize Man in the Middle Attacks to hijack packets and redirect them to the attacker computer allowing it to extract passwords. In this episode, we show you how to use Arp Poisoning, DHCP Spoofing, and Port Stealing MITM Attacks and explain how they work. Also, we explain how to configure Ettercap to sniff encrypted passwords over the Secure Sock Layer (SSL and HTTPS). Moreover, Ettercap can be easily programmed to modify network traffic with the use of Filters. We demonstrate how to make many different Ettercap Filters. Ettercap comes with numerous plugins to advance Ettercap’s abilities; we explain how to use the Check Poison, Re-Poison, DNS Spoofing, Isolate, DoS Attack, Find IP, Gateway Discover, Search Promisc, Arp Cop, and Scan Poisoners Plugins. Lastly, we demonstrate how to use Ettercap’s Passive OS Fingerprinting feature. Ettercap supports passive dissection of many protocols allowing it to identify a host’s Operating System and Services.

Live Stream Here
Download Here

This Full Disclosure episode is very lengthy, almost 50 minutes, so if you have any questions feel free to ask them on the forums

Download Ettercap (Linux)
Download Ettercap (Windows)

Irongeek’s Image Altering Filter
Patchy’s WordPress Filter
Patchy’s Myspace Filter

Posted in Videos | 8 Comments »

8 Responses

  1. Copy Says:

    grats on 20th video :P watchin it now

  2. CrashOverron Says:

    yay i was wondering if it was really going to get released over the weekend =P d/l’ing it now large file size should be good

  3. User links about "ettercap" on iLinkShare Says:

    [...] | user-saved public links | iLinkShare 4 votesEpisode 20 – Ettercap>> saved by priscilald 1 days ago2 votesRe: wenn ich WLAN hab – WLAN-Studie: Unternehmen [...]

  4. saad Says:

    well that was really interesting, but i m having a problem in capturing encrypted traffic over the wired lan.
    Can you help me to decrypt.

  5. Futurix Says:

    everything is fine but….1 thing …. can arp poisoing mitm work on adhoc networks (internet connection sharing )

  6. Websites tagged "infinity" on Postsaver Says:

    [...] – Episode 20 – Ettercap saved by HowlingWingedWolf2009-07-25 – Infinity saved by shadowwolf63892009-07-23 – Comment on [...]

  7. How to Hack a LAN Computer | Semongko Group Says:

    [...] Well we have monitored few sites which Lisa visits, and may be we got username and password of some sites, but we have a problem in Hacking Lisa’s Hotmail, Yahoo, Facebook etc, and that is because Cain and Abel doesnt sniff packets sent over SSL, but dont worry this is not end of the world, We can still sniff SSL packets by using some other tools, the best tool i would recommend is Wireshark and Ettercap, Wireshark outputs a bunch of logs which a newbie would find hard to understand, and Ettercap one of the best and my favourite tool which has a bunch of features, plugins and unlike Cain, Ettercap is also availabe for Unix system. To learn How to use Ettercap I would recommend you all to watch Ettercap Video from [...]

  8. crashburn1294 Says:

    awesome work… to good ..very nice presentation mate

You must be logged in to leave a comment.