1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

not sure if this is the right forum, but - wifi keylogging?

Discussion in 'General Programming Chat' started by mollah, Oct 1, 2009.

  1. mollah

    mollah Power Member

    Joined:
    Feb 11, 2009
    Messages:
    674
    Likes Received:
    548
    This was the closet forum to "computer stuff" that I could find, and I wanted to ask bhw cuz you guys are smart.

    I remember reading a few years ago about a program that would sort of keylog the computers on your wireless network. It couldn't keylog them exactly because it has no way of knowing what you type, but it could keep a record of anything that was entered in a field that was submitted as that information has to go through the router, so it could get usernames and passwords and stuff.

    Does anyone know what this program is called? You'd have to run it on the computer that is connected to the wireless router and it would grab the transmitted data from other computers in the network.

    Just to be clear, I'm not talking about cracking Wifi passwords or anything. This is to monitor computers that are already on your network.

    Thanks.
     
  2. minute80

    minute80 Regular Member

    Joined:
    Dec 3, 2008
    Messages:
    310
    Likes Received:
    81
    For sniffing web traffic which is not SSL encrypted you can use tcpdump, which shows you all traffic received by your network interface. And for getting SSL encrypted stuff you need to set up a proxy which will apply MITM attack (man in the middle). However, this will manifest in suspicious behaviour, so I think it is better for you to install software or hardware keylogger.
     
  3. mollah

    mollah Power Member

    Joined:
    Feb 11, 2009
    Messages:
    674
    Likes Received:
    548
    What about for a home network? For example, I'm running a wireless network in my house from my router and I want to "packet sniff" (I guess that's what it's called?) data from my other household computers.

    How difficult is that to set up?
     
  4. minute80

    minute80 Regular Member

    Joined:
    Dec 3, 2008
    Messages:
    310
    Likes Received:
    81
    That is what I was talking about. Teoretically you can only sniff traffic on your own network, and not on others.
    Two tools to capture are: ethereal (found at ethereal.com) and wireshark (found at wireshark.org). They will enable you to capture unencrypted traffic, like google searches etc. For SSL traffic (passwords) you should do MITM attack, which can be done with ARP posioning. For that it is best to use ettercap. You can pm me with your concrete problem.