Tuesday, March 22, 2011

A demonstration of Middles new sniffing tool + installer for Ubuntu

This new script for Ubuntu based systems will install all of the tools necessary to perform a man in the middle attack that sniffs traffic being transferred across the network. This will allow you to view all POST and GET data in plain text even if it is being transfered over HTTPS. This is thanks to the usage of sslstrip by moxie marlinspike. The program then uses arpspoof from the dsniff package to redirect traffic.

This is all tied together with a nice script coded by me, it will automate everything you need to do, apart from reading the captured data, that bit is easy though.

You can download it here: