dsniff为网络审计和渗透工具集合:
抓取网络上内容:dsniff filesnarf mailsnarf msgsnarf urlsnarf和webspy
前提: 本地转发
欺骗工具:arpspoof dnsspoof和macof:
中间人攻击:sshmitm和webmitm, sslstrip。
以下摘自:http://www.monkey.org/~dugsong/dsniff/
dsniff is a collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.). arpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions by exploiting weak bindings in ad-hoc PKI.
I wrote these tools with honest intentions - to audit my own network, and to demonstrate the insecurity of most network application protocols. Please do not abuse this software.
3340
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
