Ettercap,short for Ethernet Capture,Is an open source app that creates an fake connection to your victim and the router,captures and send’s data to its destination.It features sniffing of live connections, content filtering on the fly and many other interesting tricks. It supports active and passive dissection of many protocols and includes many features for network and host analysis.
1-Get the installer from Here
2 -Install it by using the on-screen steps.
Setting Up ETTERCAP –
1 – Run the application.
2 – Click “Sniff -Unified Sniffing”,then choose the network from the drop-down list you want to attack.
3 – Once you have chosen the interface the something like this will open:
4 – Now go to – “Hosts->Scan for Host”,now it will scan the network for other computers.
5 – When completed,click on “Hosts-> Host List”,it will show up the available computers.
6 – Now select the computer you want to attack (example 192.168.0.5) as TARGET 1,And the ip of router (example 192.168.0.1) as TARGET 2.
7 – Now go to “MITM -> Arp Poisoning,and select the “Sniff Remote Connection” and click “ok”.
8 – Click “Start” and choose “Start Sniffing”.
How Could the Attacker use this data –
The captured data can be easily used for sniffing password for Google Facebook,yahoo etc and they can also use it as a monitoring device.