cover of episode Episode 4: 2 Ways to Use Wireshark to Find Passwords

Episode 4: 2 Ways to Use Wireshark to Find Passwords

2020/10/2
logo of podcast Cyber Security For All

Cyber Security For All

Frequently requested episodes will be transcribed first

Shownotes Transcript

Apetech Website: https://www.apetech.me/

Twitter:  @apetechda

Welcome to episode 4 of the Apetech Podcast.

We’ve also enabled voice messages on anchor, so if you want to call in your questions:

https://anchor.fm/apetech/message

In this episode, we are going to talk about using wireshark to find passwords.

Wireshark is an amazing tool that is typically used for monitoring network traffic.  Wireshark is such a powerful and capable tool that there are many books written on the tool.  The tool is completely free and and can help uncover many things about a network.  Since the topic of wireshark is so massive, I’m going to focus this episode on just talking about using Wireshark to find passwords.  If you are interested in wireshark, let me know in the comments or on social media and I’d be more than happy to do a deeper dive into this tool.  There are two different uses of wireshark that can help you find passwords.  First, sending sensitive information over a non-secure website is a simple way of seeing passwords using Wireshark.  The second method is to capture an image that contains a password.

Alright, let’s get into the details.

First, if you haven’t already, download wireshark.  It’s a free tool and it can be found at: wireshark.org.  I recommend getting the latest stable build, but if you are feeling lucky, get whatever version you want.  There’s lot of documentation and tutorials on wireshark available on the website.  Feel free to give them a watch.  I wont go into much details in this episode, but you should still be able to follow along even if you’ve never used wireshark

Fire up wireshark and start listening to your network of choice.

Make sure you hit capture and watch a bunch of information flood the screen.  You don’t have to pay special attention to any of this just yet.

But this traffic is traffic coming in and out of your computer.  If you want to see all the traffic on that network, then you want to enable promiscuous mode.

Open up your browser of choice and head on over to any website that doesn’t use encryption.  Since most websites use encryption, this is going to be harder to do.   Assuming you find a website that’s unencrypted, you can watch Wireshark as each character from your computer is passed through the network.

You’ll see something to the effect of:

W

Ww

he next way of capturing sensitive information is via pictures.  If you are transferring pictures over an unencrypted medium, then those images can be captured by wireshark.  The images aren’t immediately easy to see.  But once you are done capturing traffic, you can sort and search by JPEG.  From here, you can see a list of all the images captured during the traffic capture.

In order to find passwords, you’ll have to be patient.  You are looking for pictures of stickies or documents that have their passwords written on them.

If you are interested in wireshark, let me know in the comments section below, and I’ll make more episodes on wireshark.

https://www.instructables.com/id/How-to-Find-Passwords-Using-Wireshark/)

https://blog.packet-foo.com/2016/07/how-to-use-wireshark-to-steal-passwords/comment-page-2)


Support this podcast: https://podcasters.spotify.com/pod/show/apetech/support)