Secondary Categories: 02-Credential Access, 02-Information Gathering

MITMsmtp

This tool works like a charm. I usually use this when I find a printer that has default credentials set and the printer has email or scanning configured. Once you login to the printer you can change the SMTP server and send a test page, wait for someone to scan, or my favorite social engineer an employee to scan a document.

PCredz

# Installation
sudo apt install python3-pip && sudo apt-get install libpcap-dev && pip3 install Cython && pip3 install python-libpcap && git clone https://github.com/lgandx/PCredz
 
# Live capture with PCredz
sudo python3 Pcredz -i eth0 -v
 
# Parse a PCAP file with PCredz
python3 Pcredz -f NetworkCapture.pcap
 
# Parse a directory of PCAPs with PCredz
python3 Pcredz -d /tmp/PCAPs/

TCPDump

# Capture eth0, all ports, and write to capture.pcap
sudo tcpdump -i eth0 -w capture.pcap

Resources:

Also Check Out:

  • PLACEHOLDER