HISTORY
上传用户:nilegod
上传日期:2007-01-08
资源大小:220k
文件大小:12k
- 0.4.0 -- 20010409 + full duplex SSH man-in-the-middle support !!
- our inizial goal was reached... ;)
- + new startup mode (--broadping).
- it is an half way between arp storm and silent.
- this mode sends a broadcast ping and watches the replies.
- (some hosts will not respond on this)
- + new sniffig metod (PublicARP)
- now you can arpsniff by selecting only one host
- + Injector now supports escape sequences. (as requested by DaCool)
- you can now make multiline injection.
- (remember to terminate your injection with nr if you
- want to inject command to the server)
- + netmask switch added. (as requested by Tego)
- + added support for getopt_long even on *BSD
- + NEW password collector for :
- - SSH (oh yeah !!)
- - SMB (Server Message Block) (samba)
- - RLOGIN (rlogin, rexec, rsh)
- - HTTP (Authorization: Basic)
- - ICQ (ICQ 2000 v5)
- - MySQL (the pass is encrypted in one way)
- 0.3.1 -- 20010323 + !! fixed a nasty bug sniffing/sending big packets
- + !! fixed telnet dissector
- 0.3.0 -- 20010319 + Ported on OpenBSD 2.7
- + UDP support
- + OS Fingerprint
- + Network Adapter Fingerprint
- + Password collector for: FTP, POP, TELNET
- + Injection interface redesigned
- + Connection list speeded up
- + Possibility to check if you are in a switched lan or not.
- + Changed installation path for plug-ins.
- now the default is ${prefix}/share/ettercap/
- + Improved make process for plugins
- + !! various bugfix
- 0.2.4 -- 20010309 + Ported on FreeBSD 4.x
- + Enhancement of Inet_Forge_icmp()
- + Plugin version control
- + Added -x option for hex mode in command line
- + Removed -1 and -2 options (better getopt parsing)
- + Ability to sniff in all direction (no more two hosts limit)
- + Silent mode (--silent or -z) (no arp storm on start up)
- if you already know the ip and/or mac of the host you
- want to sniff, you can bypass the host list creation
- + !! Connection status visualization -- bugfix
- 0.2.1 -- 20010223 + Scrolling window for plugin output
- + Detailed packets view in hex mode (SEQ, ACK and FLAGS)
- + Identification of connections type (FTP, telnet, ecc)
- + Ability to kill a connection from connection list
- + ARP poisoner (doppleganger) tuned up.
- - force an entry in the arp cache before poisoning it.
- + !! sigfault hitting return and no plugin were found -- bugfix
- 0.2.0 -- 20010219 + Inet module totally rewritten and redesigned.
- - New API for Packet Socket
- - modularization of architecture-dependend functions
- - Ready for BSD porting
- - Downported to 2.0.x Linux Kernels (EXPERIMENTAL)
- - Added support for glibc 2.0.x 2.1.x 2.2.x
- + Illithid rewritten and fixed
- - after injection the connections are cleanly RSTted
- + Doppleganger rewritten
- + Scroll back in sniffing window (*very* *very* usefull !!)
- + Plug-In support ( very cool... )
- + Buffer in shared memory
- - !! data loss when sniffing -- bugfix
- + Code cleanup.
- 0.1.1 -- 20010209 + !! too much bugfix to be listed here...
- + !! with openwall it sigsegv on start -- bugfix
- + this is a candidate stable release. on all the machine
- we tested it works. but there are out there tons of different
- configurations and distros... so if you get an error, please
- notify it to us. thanks all !!
- 0.1.1.beta -- 20010129 + !! kernel version miss-detected by configure -- bugfix
- + !! possible sigfault making host list -- bugfix
- + default network interface is now the first up
- and running, no more hardcoded eth0
- + detect if there is another man-in-the-middle in the LAN
- 0.1.0.beta -- 20010125 + first public release
- + Documentation (README and ettercap.8)
- + !! set/unset the promisc mode -- bugfix
- + !! set/unset ip_forwarding -- bugfix
- 0.0.9 -- 20010122 + characters injection in an established connection !
- + !! ACS_ visualization on console -- bugfix
- + !! Illithid_ARPBased_GetConnection -- bugfix
- + !! Doppleganger_ReARP mac source -- bugfix
- + various Illithid and Doppleganger function moved
- to the more appropriate module Inet
- + better error handling (ec_error.c)
- 0.0.8 -- 20010108 + dinamyc list of connection between source and
- destination host
- + connection attribute (ACTIVE or silent)
- + !! bogus interface aliasing (eth0:x) -- bugfix
- + !! buffer overflow in Datadecode -- bugfix
- + !! evil wprintw(..., NULL) sigsegv -- bugfix
- + IP based sniffing
- - filter support, U can select only source, only
- dest, or nothing (to sniff all connections)
- + MAC based sniffing (for connection with gateway)
- - only between two host (must use -1 and -2)
- + ARP based sniffing now fully working
- - only between two host (must use -1 and -2)
- + Simple interface totally re-designed
- - better visualization
- - host:port selection ( host:0 for all port )
- - ascii & hex view (key 'a' & 'x')
- - stop/cont sniffing (key 's')
- + Enhanched Hex data dumping
- happy new year 20010101 + welcome to the 3rd millennium !
- 0.0.7 -- 20001227 + Modularization & integration of Illithid
- + Doppleganger is no more a separate executable, now
- it forks from ettercap
- + !! bad args parsing in Doppleganger -- bugfix
- + !! 100% CPU usage on sniffing -- bugfix
- + Data Sniffer interface (ec_interface_sniff_data.c)
- - simultaneous source-dest sniffing
- - log to file feature
- - sniff data in ascii or hex mode
- + enhancements in ec_simple.c module
- + config.h to avoid huge command line for gcc
- + ettercap.spec file for RPM building
- uh oh... -- 20001217 + Shit happens !!
- Dug Song has released dsniff-2.3
- It does ssh intercept/sniffing...
- Our "revolutionary" idea is now obsolete...
- + We'll continue to code our project, because
- ettercap is going to have more feature and a more
- confortable interface than sshmitm !
- 0.0.6 -- 20001215 + Illithid (the sniffer) was born but still unstable
- + Doppleganger (arp poisoner) was born
- + !! corrupted visualization -- Bugfix
- + Sniffer interface (ec_interface_sniff.c)
- 0.0.5 -- 20001212 + Host_In_Lan is now dinamic, no more upper limit.
- + !! ARP pinging doesn't work properly -- Bugfix
- + Address resolution added
- + U can now select the network interface (eth)
- + Check on start up
- - at least 25x80 screen
- - UID must be 0 (root)
- + updated configure.in
- 0.0.4 -- 20001209 + !! Huge memory usage on refresh -- Bugfix
- + Code optimization in ec_interface.c
- + Debug_msg supports va_list
- + On line help with 'h' key
- 0.0.3 -- 20001208 + Interactive mode is now the default option
- use -N for NON interactive mode (without ncurses)
- + Interface now supports vertical scrolling in order
- to handle number_of_hosts_in_lan > main_window lines
- + Hosts are now numbered
- + !! number_of_hosts_in_lan is incorrect -- Bugfix
- + Selection with return key
- + Connection with 'c' key
- 0.0.2 -- 20001204 + MAX_HOST_IN_LAN = 255
- + Ncurses Interface now rulez ;) (ec_interface.c)
- - now U can select an IP with arrow keys and
- switching between panel with TAB
- - support for CTRL+L refresh and SIGwinch
- + Added the Inet module (ec_inet.c)
- (the real code begins to view the light...)
- + Default debug file is ./ettercap_debug.log
- (use tail -f ./ettercap_debug.log for live view)
- + Added support for NON-ncurses systems
- - getopt & getopt_long
- - Simple module (ec_simple.c)
- + configure.in improvements (for non-ncurses)
- 0.0.1.alpha -- 20001127 + First attempt to write an ncurses interface
- + Added Debugging module (ec_debug.c) with IP tracing
- + Now SIGTERM & SIGSEV are caught by a signal handler
- + First version of configure.in for autoconf
- 0.0.0 -- 20001125 + The idea was born.
- the goal is to make an ssh sniffer-interceptor.
- to do so, we need to implement the man-in-the-middle
- technique. so our first goal is the arp-poisoning.
English
