Security Basics mailing list archives

Re: Network Sniffer

From: "Jesus A. Perez D." <japd06 () gmail com>
Date: Thu, 3 Nov 2011 16:14:11 +0000

You can get remote pcap files from the host if you got an aplication installed in that pc or in a pc from that network 
that is actually capturing the traffic. You can use metasploit with meterpreter payload and exploit the host and then 
capture all the traffic that see that host and send it to you in pcap format.

Take a look at metasploit unleshed.

The hard part is to get a vulnerability in the remote machine, if  the host is not public on the internet or if you 
dont have direct access to it, it would be a step by step job. First you would have to get to the firewall or the 
router that is NAT'n that host and make a static nat from the outside to the inside, then you can check for 
vulnerabilities on the remote host and if you get one, then send a payload with meterpreter. 

Easier aproatch, is just apply soccial engineering and get a hacked pendrive into the remote pc with a payload of 
reverse tcp meterpreter to your pc.

Good luck! 

    

-- 
Ing. Jesús A. Pérez D.
Oficina: +58 212 2088721
Móvil: +58 414 0968895

-----Original Message-----
From: Javier Alfonso Valdés <jalfonso () uci cu>
Sender: listbounce () securityfocus com
Date: Thu, 03 Nov 2011 08:40:49 
To: <security-basics () securityfocus com>
Subject: Network Sniffer

Hello,
I'm wondering if there is a way to sniff a remote computer's traffic, 
that computer would be on a different lan, and how could that be 
blocked. as far as i know, wireshark sniffs only my computer and 
ettercap only on the same lan.

-- 
Regards
Javier Alfonso Valdés
Data Technology Center  (DATEC)
University of Informatics Sciences.


Fin a la injusticia, LIBERTAD AHORA A NUESTROS CINCO COMPATRIOTAS QUE SE ENCUENTRAN INJUSTAMENTE EN PRISIONES DE LOS 
EEUU!
http://www.antiterroristas.cu
http://justiciaparaloscinco.wordpress.com

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

Network Sniffer Javier Alfonso Valdés (Nov 03)
- Re: Network Sniffer Curt Shaffer (Nov 03)
- RE: Network Sniffer Nick Schroedl (Nov 03)
- Re: Network Sniffer Mateusz Marzantowicz (Nov 03)
- Re: Network Sniffer Jesus A. Perez D. (Nov 03)
- RE: Network Sniffer William Baltas (Nov 03)
  - Re: Network Sniffer synja (Nov 03)
  - RE: Network Sniffer Apurva Dhanwantri (Nov 03)
  - RE: Network Sniffer Apurva Dhanwantri (Nov 03)
- Re: Network Sniffer John Mason Jr (Nov 03)
- <Possible follow-ups>
- Re: Network Sniffer andrewhaynes (Nov 03)