Article: Fun with Ettercap - Pentestmag

Article: Fun with Ettercap

Feb 28, 2017

Fun with Ettercap


Introduction


Ettercap is a tool made by Alberto Ornaghi (ALoR) and Marco Valleri (NaGA) and is basically a suite for man in the middle attacks on a LAN. It supports active and passive dissection of many protocols and includes many features for network and host analysis. It is capable of intercepting traffic on a network segment, capturing passwords, and conducting active eavesdropping against a number of common protocols.

Ettercap uses four models:

  • IP: The packets are filtered based on source and destination.
  • MAC: Packet filtering based on MAC address.
  • ARP: ARP poisoning is used to sniff/hijack switched LAN connections (full-duplex).
  • Public ARP: ARP poisoning is used to allow sniffing of one host to any other host.

To see a list of plugins installed in your system, run this command:
ettercap -P list


March 3, 2017
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

0 Comments
Inline Feedbacks
View all comments
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023