Ettercap is a comprehensive suite for man in the middle attacks. It features sniffing of live connections, content filtering on the fly and many other interesting tricks. It supports active and passive dissection of many protocols and includes many features for network and host analysis.
Ettercap supports active and passive dissection of many protocols (even encrypted ones) and includes many feature for network and host analysis.
Data injection in an established connection and filtering (substitute or drop a packet) on the fly is also possible, keeping the connection synchronized.
Many sniffing modes are implemented, for a powerful and complete sniffing suite. It is possible to sniff in four modes: IP Based, MAC Based, ARP Based (full-duplex) and PublicARP Based (half-duplex).
Ettercap also has the ability to detect a switched LAN, and to use OS fingerprints (active or passive) to find the geometry of the LAN.
Project information
- Maintainer:
- Gianfranco Costamagna
- Driver:
- Not yet selected
- Licence:
- Apache Licence, GNU GPL v2, GNU GPL v3
View full history Series and milestones
trunk series is the current focus of development.
All packages Packages in Distributions
-
ettercap source package in Xenial
Version 1:0.8.2-2ubuntu1.16.04.1 uploaded -
ettercap source package in Trusty
Version 1:0.8.0-11ubuntu0.3 uploaded -
ettercap source package in Squeeze
Version 1:0.7.3-2.1+squeeze1 uploaded -
ettercap source package in Sid
Version 1:0.8.3.1-13 uploaded -
ettercap source package in Precise
Version 1:0.7.4.2-1 uploaded