Alternate MITM motives
There are a ton of MITM attack approaches that we can implement with Kali Linux as our base. If you are looking for HTTP-only MITM (some internal sites might still use unprotected HTTP), or if you are looking for something pretty specific, take a look at Driftnet (http://www.ex-parrot.com/~chris/driftnet/ ) and Urlsnarf. Each of these use the same IP forwarding and arpspoof configurations, but offers some different capabilities than SSLstrip. Driftnet focuses on pulling images and multimedia from HTTP streams passing through your Kali VM, which can be helpful in intercepting corporate training. Urlsnarf simply pulls all of the websites visited by a host, which can help you map internal sites that are explicitly visited ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access