HHTP Decoding On WiFi
Results 1 to 5 of 5

Thread: HHTP Decoding On WiFi

  1. #1
    Member
    Join Date
    Sep 2001
    Posts
    37

    HHTP Decoding On WiFi

    Hi all,

    I'd like to demonstrate to some of my users the vulnerabilities of WiFi Wireless LANs. A particularly graphic way to do this to non technical users would be to sniff their web browsing session.

    I've set up two laptops, connected via WiFi. One of them has a dial-up connection to the internet. The other laptop web browses via the WiFi connection and Internet Connection Sharing on the first laptop.

    I'd like to use a third laptop to "sniff" this web browsing session off the WiFi connection and replay the user's web browsing session to them. Iris can do this off a regular RJ45/Cat5 connection, but not over WiFi.

    does anyone know of any (preferrably shareware/freeware) products that can sniff HTTP from a WiFi network and replay the HTTP session back?

    This presentation is for non-technical users so regular packet sniffing using, say, ethereal, will not have the required impact.

    Thanks everyone,

    Alan Mott

  2. #2
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    Ettercap. Create a dummy hotmail account before the presentation. Then, while in the presentation, start ettercap, have someone log into the dummy account and log out, then end ettercap session. You should have the password from that account. I think it'd be quite the learning experience.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  3. #3
    er0k
    Guest
    hehehe its good to see that me and msmittens agree on something, i love the way ettercap somehow manages to get mentioned in 30-50% of your posts msm :P

    but ettercap will sniff wifi?

  4. #4
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    Ya. One of my students did it on a bus ride home.

    And no, I don't intentionally mean to mention it in every post, well near every post.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  5. #5
    Senior Member
    Join Date
    Nov 2002
    Posts
    382
    I found an http sniffer (trial may be downloaded) called EffeTech HTTP Sniffer at
    http://www.effetech.com/sniffer/. for windows platform.

    It does not seem to have any WiFi restriction. It should work at the IP level.

    It worth a try
    [shadow] SHARING KNOWLEDGE[/shadow]

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •