One utility that is used to see images captured during a man-in-the-middle attack is a program called Driftnet. There are better ways to find more interesting data; however, Driftnet can be useful if we are focusing on viewing images. Driftnet does not come preinstalled on Kali Linux ARM. We can download it by using the following command:
aptget install driftnet
Once installed, use the driftnet-i eth0
command to run it. This will open up a new terminal window that will be blank. Any images seen by a victim during the MITM attack will start populating in this window.
The following screenshot shows a host accessing www.cisco.com while Driftnet is capturing images:
The W3af is a web application auditing and attack framework. W3af is designed to identify and exploit any found vulnerabilities for the target host. Some have called this tool the Metaspoit of web applications, which definitely got us curious.
There is a graphical-based tool as well as a CLI-based tool. We had some issues...