Description: easy-creds is a bash script that leverages ettercap and other tools to obtain credentials. It allows you to easily attack with basic arp poison, oneway arp poison and DHCP spoofing or a Fake AP. Includes sslstrip log file parser.
source : http://easy-creds.sourceforge.net/
this video is simple demo of tool easy-creds to Gathering Credentials after Poisoning.
following are the steps of video. when we start this tool it gives various options. for this demo
we need to select option 4 (data review) then select 1 (parse sslstrip log for accounts. this will further ask for full path of sslstrip log file and also full path for definition file.
Tags: easy-creds , Poisoning ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
very good demo for parsing log for accounts. this tool already included sslstrip.
In this tool, Fake AP attack is very good feature.
If you like the FakeAP attack, I'm coding up the FreeRadius attack as well... v3.7 should be out around Black Hat/DefCon.
Happy hunting!