gEEEk Posted October 14, 2008 Share Posted October 14, 2008 Quick question, in the latest Hak5 episode. Darren talked a lot about packet manipulation.. They used Wireshark or Ettercap but all they did in this episode was looking closely on the packages.. So what software or (wireshark filter?!) to use for maybe changing the google logo to something more intresting? Preferably Windows software :) Or maybe something in the BT3 suite.. Quote Link to comment Share on other sites More sharing options...
digip Posted October 14, 2008 Share Posted October 14, 2008 Quick question, in the latest Hak5 episode. Darren talked a lot about packet manipulation.. They used Wireshark or Ettercap but all they did in this episode was looking closely on the packages.. So what software or (wireshark filter?!) to use for maybe changing the google logo to something more intresting? Preferably Windows software :) Or maybe something in the BT3 suite.. Wireshark GUI is for packet sniffing. If you want to manipulate something or create custom filters, use Ettercap. Ettercap requires you to be in the middle between your target user and their router though and you can use Ettercap to set all this up. Some pointers: http://www.go4expert.com/forums/showthread.php?t=11842 I think Irongeek also has some videos on using ettercap so if you want more details, check out his site. Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted October 15, 2008 Share Posted October 15, 2008 Ive used WPE-Pro and it has worked great. I don't think you can send crafted packets to a specific IP, but it does allow them to be modified and replayed. Quote Link to comment Share on other sites More sharing options...
dr0p Posted October 15, 2008 Share Posted October 15, 2008 I use ettercap for editing packets on other PCs on your network, however if you're just looking to tamper with one connection (EG: for a game) I use WPE-PRO. Quote Link to comment Share on other sites More sharing options...
ls Posted October 15, 2008 Share Posted October 15, 2008 scapy : http://www.secdev.org/projects/scapy/ Quote Link to comment Share on other sites More sharing options...
m0u53 Posted October 15, 2008 Share Posted October 15, 2008 creating ettercap filters are good using WPE-PRO is another good way i belive wireshark does allow you to change them...with a plugin..not sure Quote Link to comment Share on other sites More sharing options...
vector Posted October 17, 2008 Share Posted October 17, 2008 you can do this in windows using comm view for wifi, create your own packets, edit/change captured packet data, create custom filters, rules, and formulas for capturing, editing, and resending specific packets to specific ip's, mac addresses, ports etc. but dont think that youre just gonna capture someones packets and copy paste some funny lolpic into a window and press PWN. you need to understand how to edit raw packet data. Quote Link to comment Share on other sites More sharing options...
metatron Posted October 17, 2008 Share Posted October 17, 2008 Your want a Ettercap filter, I think irongeek has what your looking for on his site. http://www.irongeek.com/i.php?page=security/ettercapfilter Also Scapy/Scapy6 ftw, although I will say I like Packeth too. Quote Link to comment Share on other sites More sharing options...
ne3jedi Posted October 27, 2008 Share Posted October 27, 2008 Well there is AirPWN in BT3. Do a quick google on that i think thats on the lines of what your talking about but it mainly wireless but im sure you could get it working on the wire. Quote Link to comment Share on other sites More sharing options...
gEEEk Posted October 27, 2008 Author Share Posted October 27, 2008 Awesome, thanks for all the tips and responses :) Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.