Net-creds Tool to sniff sensitive data from interface or pcap

Net-Creds is a python script that you can use during penetration testing to find sensitive information in network traffic or pcap files. information may include passwords or hash. this regardless on the service or ports used by the application.

The tool works with scapy/wsgiref and allows to sniff the following data:

  • URLs visited
  • POST loads sent
  • HTTP form logins/passwords
  • HTTP basic auth logins/passwords
  • HTTP searches
  • FTP logins/passwords
  • IRC logins/passwords
  • POP logins/passwords
  • IMAP logins/passwords
  • Telnet logins/passwords
  • SMTP logins/passwords
  • SNMP community string
  • NTLMv1/v2 all supported protocols like HTTP, SMB, LDAP, etc
  • Kerberos

netcredsNet-Creds sniffing network traffic

The tool is simple to install and run on your system and user can add features against any application traffic he is looking to pentest. you can download the tool over this link: https://github.com/DanMcInerney/net-creds

Share
  • Yu Tao

    Advertising Inquiry

    Hi,

    This is Bennie from EaseUS Software Company.

    We’re recently looking for sponsored reviews. And it occurred to me
    that you might be interested in.

    How do you quote for writing one review?

    Giveaway is also available. In this way, you can offer only one link
    to our homepage.

    How does it sounds to
    you?

    Please reply to bennie@easeus.com


    Best regards
    Bennie
    Chengdu Yiwo Tech Co., Ltd.
    http://www.easeus.com
    http://www.partition-tool.com
    http://www.todo-backup.com