Networking :: Host Lists Of Ettercap Is Empty
Nov 29, 2010
My Host Lists of Ettercap is empty when I try to sniff my Lan. I modified /etc/etter.con, obtaining this:
Code:
# if you use iptables:
redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
and the error is this:
Code: iptables v1.4.6: can't initialize iptables table `nat': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded. I lunch ettercap as root.
View 2 Replies
ADVERTISEMENT
Mar 4, 2010
I have been playing with Ettercap on my home network, learning about packet forwarding and all such things. Recently, after doing some certificate stuff, Ettercap is performing the SSL attack where it sucks out the password of a user after it issues a fake certificate. How do I turn off the SSL attack in ettercap when I'm not interested in SSL information?
View 1 Replies
View Related
Mar 4, 2011
I have installed ettercap using apt. But, when I scan for hosts, Ettercap crashes. I've found on the Web that there's a solution, but I don't manage to solve this problem.
View 3 Replies
View Related
Jul 3, 2011
for dns spoofing in my local network (one laptop and a router switched), but that does not work. An access to a specified site does not redirect.If you need any details, The command I use is:
Code:
#ettercap -T -q -i eth0 -P dns_spoof -M arp // //
View 1 Replies
View Related
Aug 17, 2010
I used to have ettercap on backtrack 4 and everything was ok...But on ubuntu 10.04 I'm having this issue; it is not showing passwords (if i log in for example in a forum with a http link )and not sending false certificate (if i try to log in in https links, after uncommenting the redir ip tables in etter.conf).Other features seems to work alright (such as dns spoofing) and the arp poisonning is succesful. Besides, Wireshark gets the passwords.
View 9 Replies
View Related
Mar 4, 2010
I am working on a cluster for a molecular dynamics class and I have to edit my FORTRAN code (only the newest and best for me!). In order to get through to the cluster I have to ssh in. The network on which the cluster resides is behind a firewall, so I have to ssh through the firewall into the network first.
this is fine, I can login and move files and folders as needed, including sftp-ing into host 1, then into the cluster so I can transfer files from cluster to host and then host to me. This gets rather tiresome, so it would be nice to edit the files in place.
The problem is that when I access my code with emacs it launches the emacs client on Host 1, with no mouse support. I know the purists will howl about how I should be using keyboard shortcuts, but I am a chemist and not a programmer, so the mouse is very nice for me. Is there any way I can perhaps mount the cluster using sshfs so that when I open my code it launches a local instance of emacs? Sorry if this is the wrong forum, but I thought it was network related.
View 3 Replies
View Related
Oct 12, 2010
I got a bunch of machines (~10) that I share with my co-workers. I have appropriate .ssh file(s) set up so I don't get prompt for password when I try to ssh.Currently I ssh into these hosts and then do a top to check the load before I start using the machine. Because I don't want to be on a busy host.Can someone show me how to write a script that find a least-busy host given a list of hosts to check? (hardcoded is fine)
View 1 Replies
View Related
Jan 27, 2009
The internal network is behind nat done by the PC Router.The TP Link is recieving wireless signal from outdoors and it has switching and basic routing capabilities. I'm using the PC router for better routing options.PC Router (or R for short) is a triple-booting machine - Linux, FreeBSD and Windows. It has two lan cards - external (ext_if) - 100Mbps Realtek 8139 and internal (int_if) - 1Gbps integrated Realtek 8169.The problem is that all traffic from R to the network is slow - about 5-20K, while the traffic in the oppoiste direction is all right - about 10MB that is fine for 100Mbps cables, NICs and switches. The problem persist no matter the OS the pc R is running.I've tried some debugging on the situation as follows:
- put another PC at the place of R - everything is fine. That exclude the possibility of damaged cables, RJ-45s, switches and etc.
- connected both of the NICs to the Internet while the internal network is being disconnected and they both work fine (no delays)
- traffic shaping is not running
- there is nothing in firewalls except NATing the internal network (and it is working fine). Actually these firewall rules have been operational for more than months and everything was fine untill a week or two ago.
- changed the internal NIC with another
- connected the internal network directly to the TP and all of the PCs are getting good network performance. Then connected the R machine to the TP as well and there was good performance between the internal network PCs and R.
- R has good performance to the TP. In fact everything has good performance directly to the TP (when not connecting trough R).
- the problem persist only between R and machines from the internal network.
View 2 Replies
View Related
Jul 24, 2009
i finished installing CentOS 5 and managed to connect to the Internet. My Network Interface Card (NIC) is "Atheros L2 Fast Ethernet" and it is not in the device list. anybody can tells me what i should do now to be connected to the Internet?
View 8 Replies
View Related
May 19, 2010
So here's the setup:
Ubuntu 10.04 host inbound port 22 open
FreeBSD 8.0 host no inbound ports open
Both hosts are running sshd currently. What would you do for the Ubuntu host to be able to ssh to the FreeBSD host? A tunnel?
View 6 Replies
View Related
Aug 6, 2011
I goggled a lot on how to get ettercap working on ubuntu, but unfortunately wasn't able to find anything good.
So, i decided to make a new post about it.
1. The GUI mode crashes after scanning for hosts.[ Fixed by downloading the version by timothy]
2. After Scanning, When you start Sniffing, and run the chk_poison plugin it says no poisoning at all . Why, i am not able to poison it at all?
3. Running the original ettercap in text mode(-T), also gives the error , if you uncomment the two lines required for SSL sniffing, then you are met with error saying that you don't have enough permission to and suggest that i should either upgrade iptables or my kernel[I am sudo]. O.o?
View 1 Replies
View Related
Jun 23, 2011
I can not manage to get any passwords on my network with Ettercap.I have followed several tutorials but I still seem to have no luck in getting them.I have BT5/KDE/32bit installed and using an alfa network adapter (RTL8187).First I configured etter.conf script to look as below:
ec_uid = 0 # root is the default
ec_gid = 0 # root is the default
# the command used by the remote_browser plugin
[code]...
View 2 Replies
View Related
Feb 25, 2011
How can I create an ettercap log ?, how can I read it with etterlog command ?.
And how different new version of etterlog and etterlog v0.6.6 ?. How can I get ettercap v0.6.6 manual ?
View 8 Replies
View Related
Jun 2, 2010
I've been using ettercap for awhile now for testing the security of the websites I manage for others along with home network stability and I've recently come across this issue:
When running:
Code:
ettercap -G
I get an error in the terminal saying:
Code:
Dissector "dns" not supported (etter.conf line 70)
I proceed to select my interface and scan for all hosts, then ettercap crashes, exits and outputs the infamous message:
Code:
This shouldn't happen...
Segmentation Fault...
recompile in debug mode, reproduce the bug and send a bugreport I took a look at line 70 in my etter.conf file and it looks like this:
Code:
dns = 53 # udp 53
I've searched online and it seems like others have this issue as well, but I can't seem to resolve it.
View 5 Replies
View Related
Dec 10, 2010
I have Ubuntu 10 installed.
I have installed ettercap using:
Code:
sudo apt-get install ettercap
But I cannot see it in any of the Ubuntu Menus(Aplications-->Network etc).
If I type
Code:
ettercap
[Code]....
View 1 Replies
View Related
Aug 3, 2010
I am using fedora 13 and have installed ettercap from Add/Remove Software in Fedora. But when it is starting(Application->Internet->ettercap), it is not able to detect any interfaces ( i am using eth0 interface, wired lan ).
View 4 Replies
View Related
Jul 30, 2010
i downloaded ettercap and wireshark but when i ever i press scan for hosts after doing the things before it doesn't scan it just gives me
Randomizing 16777215 hosts for scanning...
View 1 Replies
View Related
Aug 3, 2010
I am using fedora 13 when i am starting ettercap, i get following warning and when i clicked "scan host" , the program quit after scanning hosts due to some segmentation fault...here is warning
Code:
[piyush@localhost ~]$ sudo ettercap-gtk
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
(<unknown>:2315): GLib-GObject-WARNING **: gsignal.c:3079: signal name `depressed' is invalid for instance `0x9f9ee00'
[code]....
View 2 Replies
View Related
Jul 13, 2011
I am running KDE4 on Debian Squeeze. Networkmanager works fine, for both WEP and WPA. Connects automatically etc, no problem. The only problem exists when I want to connect to a WEP network which has an empty security key. I used to be able to connect before I used networkmanager using iwconfig and specify iwconfig wlan0 key off. I tried in networkmanager to specify both no security and WEP with an empty passkey. However, none works. Is there maybe somewhere a setting which precludes connecting because it is considered unsafe?
View 5 Replies
View Related
Nov 8, 2010
ettercap can see http request but not response
I'm trying to see regular http responses from my wireless ipad (victim) from my wired pc (attacker). Everything's working great but I can only see the http requests not the responses.
I've done much reading and googling and tried registering in more relevant forums but some forums were shutdown, so I've come here.
Code:
# setup ip forwarding
echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward
# use ettercap to do the mitm using only mitm
sudo ettercap --iface eth0 --text --plugin autoadd --only-mitm --mitm arp:remote /192.168.0.1/ /192.168.0.155/
[Code]....
View 2 Replies
View Related
Jan 19, 2010
Host - Fedora 12 64bit
KVM
VM - Windows Server 2008 64 bit
bridge-utils
VM can ping host and Internet but host can't ping VM.
I set VM static IP 192.168.0.205.
It turns out dynamic IP - 192.168.0.55
On host:
View 2 Replies
View Related
Mar 11, 2011
I was following the installation guide of SNMP client and server [URL], but when I do an apt-get install snmp scli tkmib the /etc/snmp/snmpd.conf is empty with nothing inside..
View 7 Replies
View Related
Aug 5, 2009
I have a strange problem with IpTables.after a server reboot, the complete rule-list of iptables is empty. After a manually start, all my old rules are there again.I checked chkconfig if autostart of iptables is enabled:chkconfig --list iptablesiptables 0:off 1:off 2:on 3:on 4:on 5:on 6:off
View 2 Replies
View Related
Mar 24, 2010
a client asked me to install ettercap on their linux gateway machine - two ethernet machine. I tried it in bridged mode, it but as soon as I start it, the traffic stops and no one can access anything. Did anyone ever succeed in running it on the gateway?
View 1 Replies
View Related
Jan 27, 2011
I am using unbuntu as root. I've made all the edits to my etter.conf file as follows:
[privs]
ec_uid = 0
ec_gid = 0
and:
remote-browser = "firefox -remote openurl (http://%host%url)"
I also turn on ipTables. I then start my attack as follows:
ettercap -T -Q -M arp:remote -i eth1 /client-ip/ // -P remote_browser
echo 1 > /proc/sys/net/ipv4/ip_forward
ettercap -T -Q -M arp:remote -i eth0 /target_ip/ /gateway_ip/ -P remote_browser
My problem is Firefox only shows https:// pages and not regular pages like google. I'm stumped. I have no clue why. I've tried other versions of linux. Different computers and still the same result. If I turn quiet off I see in my terminal all the traffic.
View 2 Replies
View Related
May 20, 2010
i installed kernel 2.6.34 to fix my lid closing issue, and that went great. but now when i go to reinstall my broadcom i get this error. Code: Reading package lists... Done Building dependency tree Reading state information... Done bcmwl-kernel-source is already the newest version. 0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded. 1 not fully installed or removed. After this operation, 0B of additional disk space will be used. Setting up bcmwl-kernel-source (5.60.48.36+bdcom-0ubuntu3) ... Removing old bcmwl-5.60.48.36+bdcom DKMS files...
[Code].....
View 9 Replies
View Related
Oct 5, 2010
I am a final year student doign Computer systems engineering and just been introduced to linux. While still strugling to catch up with the commands, I am now given an assignment under shell scripting.I seriously am strugling to understand this question, can you please assist me.Here follows the assignment:
Operating Systems III
Some tips
e.g. (test if a file is empty, if it is then display "file is empty" otherwise display
[code]....
View 10 Replies
View Related
May 13, 2011
This is my first use of Ubuntu, but I have previous decent experience on Centos & Mandriva. I've just installed Natty 11.04 on a box that was running a mandriva 2010 - and the network is acting quite strange. When I define a static IP for eth0 through the gui, along with route & dns, it sort of works: ssh is fine, vnc too. However, I have an asterisk running on the box, and it is wild: some packets get lost in the box.
An ngrep shows the packets reaching the interface, but they dont show in asterisk !!! I've done a ufw disable, iptables is empty (why cant I service iptable restart btw ?). ip route list show decent routes (eth0 default); When I switch to DHCP, it is better, but unstable... If i plug a wifi usb stick, it seems to be better... Is there some known issues that could explain this behaviour ? The nic is a: Ethernet controller: Marvell Technology Group Ltd. 88E8001 Gigabit Ethernet Controller
View 5 Replies
View Related
Sep 8, 2009
Many of mails sent from my mail server that are in Queue;The main reason is deffered by domains like yahoo,aol,etc.but there is one more error that i keep getting and that is Host Unknown,Below is an example from mail log,The catch is,test mail sent on the same email id sent from my personal mail from the same server i.e. url was deliveredHowever,another mail containing client information sent from customercare@mycompanysdomain ended up in queue.
There are more examples of the same,around 20 domain have the same problem.
Sep 7 14:33:46 server2 sendmail[24591]: n8793jiC024589: to=<abc@xyz.fi>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=163672, relay=xyz.fi., dsn=5.1.2, stat=Host unknown (Name server: xyz.fi.: host not found)
Sep 7 22:09:42 server2 sendmail[6407]: n87Gdffa006403: to=<abc@def-fgh.com>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=152474, relay=def-fgh.com., dsn=5.1.2, stat=Host unknown (Name server: def-fgh.com.: host not found)
View 2 Replies
View Related
Jan 4, 2011
I am quite new to Linux. Just some basic information, I am using windows xp but have installed vmwork station and am running Red Hat enterprise linux 4.
When i run ./configure it gives me this error. "configure: error: libnet >=1.1.2.1 not found "
View 8 Replies
View Related
