Network Sniffing
Concept: Interception of traffic (packets), then packets analysis, decoding of packets if necessary. Information retrieval, browsed URL, username, passwords...
Tools
Ettercap
Tools for Man in the Middle attacks on a LAN. Ettercap is able to perform attacks on the ARP protocol to position itself as a 'Man in the Middle'. This subsequently allows:
- infect, replace and delete data in a connection
- discover passwords for protocols such as FTP, HTTP, POP... Every protocol that is not secure.
- Provide victims with fake SSL certificates in HTTPS sessions
Bettercap
The Swiss Army knife for WiFi, Bluetooth Low Energy, wireless HID hijacking and IPv4 and IPv6 networks reconnaissance and MITM attacks. ベッターキャップ!
Wireshark
Free packet analyzer. It is used for troubleshooting and analysis of computer networks, protocol development, education and reverse engineering.