bWAPP Man in the Middle Attack SMTP
Man-in-the-Middle Attack (SMTP) - Low Security Level
Solution:
Step 1. In the command prompt give command
sudo ettercap -G
*If required give the password
A new pop up for the application will open
Step 2. Select the check mark symbol
Step 3. In Ettercap application click on Scan for host - (Magnifying Glass symbol)
Step 4. In Ettercap application Click on the three dots - as shown in the video
Select Hosts - Host List
Step 5. Add your bWAPP/bee box IP to the Target 1
Add your local IP to Target 2
Note the details are displayed in the Ettercap application
Step 6. Click on MITM menu (Please refer video for more details)
Click on ARP Poisoning - Select Sniff remote connections - Click on Ok
Step 7. Start wireshark
Command: wireshark
Select eth0
Step 8. On the bWAPP lesson page click on secret button
Step 9. Go to wireshark - Filter on smtp - Check the results.
PseudoTime
