Main / GroupTwoDriftnet
Wireless Sniffing
Tools like ngrep, tcpdump, etc, are listed in UsefulSoft and SecurityLinks.
Our previous challenge was to find a cleartext string, which was easy with kismet's "dump strings" functionality, and optionally further decoded with tethereal.
The next challenge was to find a string which was in a picture, and so kismet and ngrep didn't help. Actually ngrep showed rob fetching a picture repeatedly from his website. Fetching this straight from his website leaves a log in his webserver, but using Driftnet one can sniff the traffic locally.
- Join the wireless network
- Put the interface in promiscuous mode
- Start driftnet and watch the JPEG and GIF images come by.
Unwittingly, Rob used a PNG which forced an upgrade to Ubuntu 6.10 (Dapper), which contains a newer release of drifnet which supports PNG as well.
Hacking is doing the best that you can with whatever you've got