-
Extract HTTP Passwords in POST Requests
$ sudo tcpdump -s 0 -A -n -l | egrep -i "POST /|pwd=|passwd=|password=|Host:" View this command to comment, vote or add to favourites View all commands by wuziduzi Diff your entire server config at ScriptRock.com Article Source.
-
Capture FTP Credentials and Commands
$ sudo tcpdump -nn -v port ftp or ftp-data View this command to comment, vote or add to favourites View all commands by wuziduzi Diff your entire server config at ScriptRock.com Article Source.
-
Capture all plaintext passwords
$ sudo tcpdump port http or port ftp or port smtp or port imap or port pop3 or port telnet -l -A | egrep -i -B5 'pass=|pwd=|log=|login=|user=|username=|pw=|passw=|passwd=|password=|pass:|user:|username:|password:|login:|pass |user ' View this command to comment, vote or add to favourites View all commands by wuziduzi Diff your entire server config at...