You are the security analyst working for a private company out of France. Your current assignment is to obtain
credit card information from a Swiss bank owned by that company. After initial reconnaissance, you discover
that the bank security defenses are very strong and would take too long to penetrate. You decide to get the
information by monitoring the traffic between the bank and one of its subsidiaries in London. After monitoring
some of the traffic, you see a lot of FTP packets traveling back and forth. You want to sniff the traffic and
extract usernames and passwords. What tool could you use to get this information?
A.
Airsnort
B.
Snort
C.
Ettercap
D.
RaidSniff
Ettercap is a comprehensive suite for man in the middle attacks. It features sniffing of live connections, content filtering on the fly and many other interesting tricks. It supports active and passive dissection of many protocols and includes many features for network and host analysis.
Snort: open source NIDS, packet sniffer that monitors network traffic in real time, scrutinizing each packet closely to detect a dangerous payload or suspicious anomalies.
AirSnort: WLAN tool which cracks encryption keys on 802.11b WEP networks, operates by passively monitoring transmissions, computing the encryption key when enough packets have been gathered.