Electronic Books

From a terminal session on the Linux machine, start an FTP connection to
the Windows server by typing ftp 172.16.1.60 and pressing Enter.
In this lab, when asked for a username, anonymous is used.
564
Practical Hacking Techniques and Countermeasures
The password for the anonymous user is entered and the user has successfully
logged in via FTP to the Windows 2000 machine.
The traffic between the two computers is monitored back on the attacker??™s
machine. By highlighting each line of traffic, any usernames and/or passwords
will be displayed in the lower part of the application. In this example, the username
of anonymous with the password of virtually@hacking.com was detected.
Wireless
565
Sniffing traffic on a switch and intercepting username/password combinations
is bad enough; what about changing the data on the wire as it occurs?
Ettercap allows an attacker this option as well with the use of filters.
First, ensure that the Linux machine can actually get to the Web site on
the Windows 2000 server.
Back on the attacker??™s machine, select the Linux machine as the source
computer.
566
Practical Hacking Techniques and Countermeasures
Select the Windows 2000 server as the destination machine.
Begin the ARP poisoning by pressing the A key.
Wireless
567
Bring up the Ettercap Filters screen by pressing the F key. In this example,
we want to edit the traffic on the source computer. Press the W key.
Initially there will be no Filters.


Pages:
172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196