Sniffing SSL secured logins with Ettercap
April 13, 2010 by Bendigo Web Hosting
Filed under SSL Certificates
A security video illustrating how easy it is to intercept traffic on a subnet. This demonstration uses oneway ARP poisoning on only the victim (TARGET 1) and issues a fake SSL certificates. This attack was mounted on a switched Ethernet network. Full Res xvid encoded AVI avaliable at twilightfantasy.org
to arppoison an entire wlan into thinking you’re the router you can use: “ettercap -TqM arp:remote // //” just found that out.
hah, i wouldn’t call the user an unsuspecting user.
Hi, i was wondering if someone could help me in solving this problem i have with SSLstrip
When i run the SSLstrip script it gives me the following error:
ImportError: No module named StrippingProxy
I’m using Linux Ubuntu
thanks in adavance
Cheers. Song is Fuck Authority by Pennywise
what is the song ?? GROUP ? title ?? thanks
VERY GOOD post !
No, you are incorrect. Google is smart about security it would be the end user that would be the fault of this attack. In this case the user was presented with a warning about self signed certificate and possible security risk, but chose to ignore it as most people would. SSL3/TLS1 is employed on the google server.. Websites using SSL2 and users can be victimzed in a more silent way by focing weak encryption… That is a security issue with the company not the end user.
Damn. Thanks
I thought google was smart about security, and you just jacked your own password.
Never tried this with ettercap. I’ve used arpspoof for my local network, with tcpdump / and ssl strip.
Will give it a crack now.
ETTERCAP 4TW ! and this guy/girl’s using backtrack 3.0 Upwards =)
no
to say in an easy way…. ettercap says hello iam a switch and the whole traffic is reachable!!! nice prog 
thank you for the answer ..:)
I used Slackware for both boxes in this video. With that said I don’t recommend Slackware as a security OS (or in general) due to the paranoia of stability and lack of support for proprietary software. Debian or FreeBSD would be my first picks
which distro are you using?
Should work on switched networks and hubbed ones afaik
I wonder if being on a switched network it works or you must be connected using a hub.
I’d rather use sslstrip, because you have to accept the SSL Certificate on the victims machine. Which makes it look suspect to those who knows wtf’s going on. ;o)
crazy how simple this is…kind of scary in fact
Cheers. For SSL support make sure you set in the etter.conf file both ec_uid and ec_gid to 0 (root) and uncomment the appropriate redir_command_on and redir_command_off for your system. (my distro was shipped with iptables)
Hope this helps
Hey Why this video is not rated yet?! it great! =] However when I try I mine MITM attack using ettercap, it is not using fake etherecap’s ssl, don’t know why :/