Editing Ettercap Password Sniffer Engine

I recently started using Ettercap as a Man-in-the-Middle (MITM) tool for testing and sniffing passwords. However, I encountered an issue where I was not able to capture the POST request data containing the ‘usuario’ (user in Spanish) and ‘clave’ (password in Spanish) fields.

After some research, I found a solution that allows me to add these fields to the Ettercap sniffing engine. Here’s how you can do it:

1. Open the etter.fields file. This file is located at /usr/share/ettercap/etter.fields on my system.

2. Inside the file, locate the section that contains the recognized form fields for user and password by the HTTP dissector.

3. Add ‘usuario’ to the ‘[USER]’ field and ‘clave’ to the ‘[PASS]’ field.

4. Save the file and restart Ettercap.

By making this simple modification, you will be able to capture the desired POST request data and sniff passwords effectively.

Remember to use this knowledge responsibly and only on systems that you have proper authorization to test.

Leave a Reply

Your email address will not be published. Required fields are marked *