Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/DanMcInerney/net-creds
Sniffs sensitive data from interface or pcap
https://github.com/DanMcInerney/net-creds
Last synced: 2 months ago
JSON representation
Sniffs sensitive data from interface or pcap
- Host: GitHub
- URL: https://github.com/DanMcInerney/net-creds
- Owner: DanMcInerney
- License: gpl-3.0
- Created: 2015-01-07T18:47:46.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2023-11-02T10:46:03.000Z (8 months ago)
- Last Synced: 2024-01-24T00:45:00.636Z (5 months ago)
- Language: Python
- Size: 7.83 MB
- Stars: 1,593
- Watchers: 116
- Forks: 451
- Open Issues: 8
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Lists
- awesome-scapy - net-creds - Sniff and catch all sensitive data on an interface. (Tools)
- awesome-stars - net-creds
- awesome-stars - DanMcInerney/net-creds - Sniffs sensitive data from interface or pcap (Python)
- awesome-repositories - DanMcInerney/net-creds - Sniffs sensitive data from interface or pcap (Python)
- awesome-stars - net-creds - Sniffs sensitive data from interface or pcap (Python)
- awesome-hacking-lists - net-creds - Sniffs sensitive data from interface or pcap (Python (1887))
- awesome-privacy-chinese - net-creds - 网络数据识别 (相关工具 / 隐私相关领域法规/条例)
- awesome-hacking-lists - DanMcInerney/net-creds - Sniffs sensitive data from interface or pcap (Python)
- awesome-hacking-lists - net-creds - Sniffs sensitive data from interface or pcap (Python)
README
Thoroughly sniff passwords and hashes from an interface or pcap file. Concatenates fragmented packets and does not rely on ports for service identification.
| Screenshots |
|:-----:|
|  |
|  |
### Sniffs
* URLs visited
* POST loads sent
* HTTP form logins/passwords
* HTTP basic auth logins/passwords
* HTTP searches
* FTP logins/passwords
* IRC logins/passwords
* POP logins/passwords
* IMAP logins/passwords
* Telnet logins/passwords
* SMTP logins/passwords
* SNMP community string
* NTLMv1/v2 all supported protocols: HTTP, SMB, LDAP, etc.
* Kerberos
### Examples
Auto-detect the interface to sniff
`sudo python net-creds.py`
Choose eth0 as the interface
`sudo python net-creds.py -i eth0`
Ignore packets to and from 192.168.0.2
`sudo python net-creds.py -f 192.168.0.2`
Read from pcap
`python net-creds.py -p pcapfile`
#### OS X
Credit to [epocs](https://github.com/epocs):
```bash
sudo easy_install pip
sudo pip install scapy
sudo pip install pcapy
brew install libdnet --with-python
mkdir -p /Users//Library/Python/2.7/lib/python/site-packages
echo 'import site; site.addsitedir("/usr/local/lib/python2.7/site-packages")' >> /Users//Library/Python/2.7/lib/python/site-packages/homebrew.pth
sudo pip install pypcap
brew tap brona/iproute2mac
brew install iproute2mac
```
Then replace line 74 '/sbin/ip' with '/usr/local/bin/ip'.
#### Thanks
* Laurent Gaffie
* psychomario