Jump to content

I'm having problems getting Ettercap running.


grs

Recommended Posts

I've got Ettercap installed on my Ubuntu PC but I think there is something wrong with it. I start it the following

sudo ettercap -G -n 255.255.255.0

It starts fine then I select Sniff/Unified Sniffing and select the interface I want to monitor, nothing happens and after a few moments the window fades to grey. Any ideas what is causing this, and how to overcome it?

Link to comment
Share on other sites

I've got Ettercap installed on my Ubuntu PC but I think there is something wrong with it. I start it the following

sudo ettercap -G -n 255.255.255.0

It starts fine then I select Sniff/Unified Sniffing and select the interface I want to monitor, nothing happens and after a few moments the window fades to grey. Any ideas what is causing this, and how to overcome it?

RTFM pretty please... From the question you ask, it seems like you have no clue what Ettercap does and haven't tried to learn anything about it on your own... And no, this is not a flame, you just need to do more research before coming here. I will give you a hint though... Sniffing will do nothing without a man in the middle

Link to comment
Share on other sites

Agreed a sniffer wont do stuff all without a man in the middle, the only exception would be if you are situated on a hub seeing as packets are sent on all ports unlike switches, only the computer with the corresponding MAC address to the header information in the packet accepts it all others simply drop it. These days it's rare for anyone to use a hub, I have only ever came across them in some internet cafe's seeing as they dislike paying money for infrastructure.

I am not to familiarized with ethercap (only read a bit here and there) but if you where after something with a purdy gui and a lot of documentation and video tutorials it may pay to check out Cain & Abel (windows). I know windows makes one feel slightly less 1337 to the nix apps but meh you are only interested in poisoning the ARP table.

if your interested http://www.irongeek.com have some really good tutorials and youtube also has a nice collection.

Link to comment
Share on other sites

I thought I was setting up man in the middle, after I select the interface shouldn't I get a list of devices I can connect to?

My NIC is connected to a switch with two other PC on it and on the WIFI there are several wireless PC's and wireless access points in the area.

Link to comment
Share on other sites

Sniffing doesnt have to have a man in the middle. It can be used to see if a program is calling a server and other useful things.

The OP

Lawl, its a bit harder than that. Google; ARP poisoning, MITM, Port Spanning, Monitor Mode v. Passive, ect.

Install ettercap ng or wireshark if you want a gui or use tcpdump if you want awesomeness

Link to comment
Share on other sites

Those are the tutorials I am following!!

and as I have said before, when I get to step two of Arp Spoofing (from the first link in that google search) the program freezes.

Dingle,

I have wireshark installed too, but rfom my understanding its not capable of mitm. I have not looked at it fully as I'm still trying to work out Ettercap.

Link to comment
Share on other sites

Those are the tutorials I am following!!

and as I have said before, when I get to step two of Arp Spoofing (from the first link in that google search) the program freezes.

Dingle,

I have wireshark installed too, but rfom my understanding its not capable of mitm. I have not looked at it fully as I'm still trying to work out Ettercap.

Actually... You never mentioned when it froze, or even that you knew how to start the MITM, and the information given above is still not enough for somebody to really help you. Give us more info about what you do and at what point it "freezes". Also make sure you're running Ettercap as root...

Link to comment
Share on other sites

Well, i think it freezes, it certainly in not doing what its supposed to. I have being using it as root and I have tried all combinations of options from the menus, all with the same effect.

Once again... Where exactly does it freeze? What do you do before it freezes? Put every step taken up until the point it freezes and we'll be able to help more.

Link to comment
Share on other sites

I open terminal and type the command

sudo ettercap -G -n 255.255.255.0

That starts it GUI mode and sets the netmask to 255.255.255.0. Once ettrecap opens I select Sniff/Unified sniffing a window opens for me to select the interface to monitor, I select eth1 the WIFI interface card, once selescted that window closes and nothing happens and after a few moments the ettercap windows fades to grey.

The same thing happens when I choose the other interfaces.

On this Ettercap Guide I get to the second image in the Arp Spoofing section when it seems to freeze.

Link to comment
Share on other sites

The Ubuntu is a fresh install, just downloaded, and updated fully. The Ettercap is a fresh download and install.

I will get a few screen shot when I'm at the PC next but the windows are coming up exactly as shown in the guide I posted the link to.

When I type the command to launch ettercap the only info that comes up is the copyright and designers names

grs@ubuntu:~$ sudo ettercap -G -n 255.255.255.0
[sudo] password for grs: 

ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA

When the program is running and stops there is no more output on the command line.

Link to comment
Share on other sites

i used to have a similar problem and the only thing i had to change was from amd and broadcom to intel and atheros. oh the headaches i could have saved myself... if only i had known i would have broken that presario sooner

Link to comment
Share on other sites

I just recently experienced Ettercap freezing in windows while I was scanning a pretty big network (more than 150 comps) and set it to resolve IP addresses. Once I unselected 'resolve IP addresses' it worked fine. Maybe this could be your problem?

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...