Dsniff

[[ Description ]]

Dsniff is a collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.). arpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions by exploiting weak bindings in ad-hoc PKI.

Dsniff is used to sniff passwords on a network. Should be used in a MITM configuration.

Other Tools in this suite:
mailsnarf
urlsnarf
webspy

[[ Example ]]

dsniff -i [net interphase]
dsniff -i eth0

[[ Tip ]]

IP forwarding must be set to 1. Or use 'fragrouter' with the -B1 switch.

To enable IP forwarding:
echo 1 >> /proc/sys/net/ipv4/ip_forward