ettercap – Page 3 – WindowsTechs.com

Spoofing ip webserver with Ettercap

Posted on September 19, 2018 by Haus

I have an apache2 server with my test website running on my host machine, which is accessible by the victim. I am using Ettercap to perform an arp poisoning man-in-the-middle attack, and I need to display my website when the … Continue reading Spoofing ip webserver with Ettercap→

ettercap filters – drop the packet and inject packet

Posted on August 20, 2018 by user2143063

if (ip.proto == TCP) {
if (tcp.src == 2404 || tcp.dst == 2404) {
if (DATA.data+6 == 0x64 && DATA.data+8 == 0x07) {
msg(” pos activation – drop \n”);
… Continue reading ettercap filters – drop the packet and inject packet→

How to "Scan for hosts" only using ettercap CLI?

Posted on June 8, 2018 by Shuzheng

I’ve been looking for a command to “Scan for hosts” in the terminal with ettercap CLI.

How can I scan the local subnet from the ettercap terminal?

The graphical ettercap has the options (see below):

Continue reading How to "Scan for hosts" only using ettercap CLI?→

Ettercap man in the middle – ARP poison

Posted on April 18, 2018 by Edge7

I am experimenting a bit with Ettercap in my local Wifi Lan.
I have a router (R), my pc (P) with Ettercap running on it and my smarthphone (S).
In particular am testing the ARP poison MIM attack and it seems to work, but I ha… Continue reading Ettercap man in the middle – ARP poison→

What is wrong with my pcap file?

Posted on April 12, 2018 by Sohan Arafat

I installed a version of ettercap on my Android. It is working fine but when I am trying to read a processed pcap file from the ettercap, software like Wireshark or any other pcap reader can’t read it. It is giving a message … Continue reading What is wrong with my pcap file?→

Where is the data for ettercap -T -i wlan0 saved?

Posted on April 11, 2018 by Sohan Arafat

I executed this comand out of curiosity:

ettercap -T -i wlan0

After a couple of seconds, it started flooding my terminal emulator with loads of data.(Sniffed data I guess). I think this data is going into some kind of cach… Continue reading Where is the data for ettercap -T -i wlan0 saved?→

Replacing HEX data with ettercap filters

Posted on December 19, 2017 by user3046771

I am trying to intercept TCP traffic and alter the data in the packet using an ettercap filter.

I am man-in-the-middling communication and have set up the following filter for use with ettercap:

if (search(DATA.data, “\x32\… Continue reading Replacing HEX data with ettercap filters→

Is it possible to perform ARP/DNS poisoning throught meterpreter?

Posted on November 19, 2017 by kikos897

I am looking for a technique to perform ARP poisoning and DNS poisoning attacks through a meterpreter session of a victim but without success. The victim has Windows OS running and everything should be silent for him.

Any … Continue reading Is it possible to perform ARP/DNS poisoning throught meterpreter?→

How to steal a HTTP packet, change and re-send

Posted on October 31, 2017 by Gabriel Oraboni Carvalho

I’m doing a project to my college and I have this scenario:

Arduino (192.168.0.113): Receiving packets and send response
My router (192.168.0.2): WPS from my gateway
My gateway (192.168.0.1): Receive the internet and has DH… Continue reading How to steal a HTTP packet, change and re-send→

Where to add ettercap filter script?

Posted on October 23, 2017 by Han

I just want to add filter hrf.ef to my ettercap to run these command:

sudo ettercap -T -q -F hrf.ef -M arp:remote /// ///

Where should I place the ettercap filter script?

Continue reading Where to add ettercap filter script?→