Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Newer
Older
100644 411 lines (334 sloc) 15.981 kb
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
1
2 Legenda:
3 + new feature
4 - old feature removed
b467e1f offline sniffing does not bind to any NIC
alor authored
5 !! bug fixed
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
6
7 =========================================
8
35f9ea8 etterlog is almost done and the passive logging got fixed
alor authored
9 NG-0.7.0 ????????
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
10
98c75de new mitm attack: dhcp spoofing
alor authored
11 + Rewrite from scratch (the code is now cleaner and well commented)
705f330 enhancement in etterfilter (libpcre support)
alor authored
12 + etterlog utility for logfiles parsing
13 + etterfilter utility to compile advanced content filters
b467e1f offline sniffing does not bind to any NIC
alor authored
14 + root privs dropped after initialization
c50daeb prepared for the cursed GUI and some fixes
alor authored
15 + big endian arch support (sparc64)
b467e1f offline sniffing does not bind to any NIC
alor authored
16 + layer 3 routing (forwarding packets)
17 + wifi support
1550266 token ring and fddi support
alor authored
18 + token ring support
19 + fddi support
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
20 + unified sniffing (you can use external hijacker)
d81a935 added the ICMP redirect attack
alor authored
21 + new MITM methods:
5677afa fixes
alor authored
22 + advanced ARP poisoning engine (with many-to-many support)
d81a935 added the ICMP redirect attack
alor authored
23 + ICMP redirect
98c75de new mitm attack: dhcp spoofing
alor authored
24 + DCHP spoofing
8e3f1a9 fixes
alor authored
25 + port stealing
b467e1f offline sniffing does not bind to any NIC
alor authored
26 + multiple target selection
b73e9e4 autoupdate feature (client side)
alor authored
27 + pcap filter on capture
28 + regex packet matching
d81a935 added the ICMP redirect attack
alor authored
29 + hook points per packet type (TCP, UDP... )
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
30 + quiet mode (don't print packet content)
b467e1f offline sniffing does not bind to any NIC
alor authored
31 + enhanced passive open port discoverer
32 + randomized ARP scan
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
33 + cached dns resolution (increase speed and stealth)
5b085c9 new packet_create interface (no need to alloc the packet every time)
alor authored
34 + enhanced statistics on ettercap performances
d0dc5f8 packet visualization for console UI and various bug fix
alor authored
35 + extended headers for every packet
c787db1 fixed host resolv in ec_log
alor authored
36 + passive DNS answer caching
403c560 added global conf (etter.conf) support
alor authored
37 + global conf file always loaded to tweak internal variables
d3582de dissectors can be configured via etter.conf
alor authored
38 + etter.conf supports dissectors on multiple ports
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
39 + possibility to sniff on loopback
b73e9e4 autoupdate feature (client side)
alor authored
40 + autoupdate from website for passive databases
d0bed80 connbuf functions added
alor authored
41 + non root users can use ettercap to read from files
a4ce769 sync with local CVS (too many things to list)
alor authored
42 + unoffensive mode (doesn't forward packets)
0e8a93e logging option for user messages
alor authored
43 + user messages can be logged
5ad5120 new telnet dissector
alor authored
44 + dissector enhancements in:
f984d1c pop AUTH PLAIN support
alor authored
45 + POP (APOP and AUTH LOGIN/PLAIN support)
5ad5120 new telnet dissector
alor authored
46 + X11 (banner discovery)
47 + TELNET (collect even failed attempts)
e49dab7 irc and snmp dissectors + various dissector fixes
alor authored
48 + SNMP fixes
c239cb0 filter_op encoding
alor authored
49 + MySQL fixes
3d7aa9f new dissectors: RCON and NAPSTER
alor authored
50 + HalfLife and Quake3 were unified
30043db little update
lordnaga authored
51 + SMB
52 + SSH
4580a5a possibility to load a plugin at runtime (from curses gui)
alor authored
53 + HTTP has gained performance overhaul
30043db little update
lordnaga authored
54 + ...many others
dfacfb6 etterfilter update
alor authored
55 + new dissectors:
0d20ffd added the smtp dissector
alor authored
56 + SMTP
dfacfb6 etterfilter update
alor authored
57 + CVS
58 + OSPF, VRRP
10cb5b1 unified plugins (standalone and hooking were merged)
alor authored
59 + plugins were unified, no more distinctions between standalone and hooking
a08f033 enhancement in plugins and user interfaces
alor authored
60 + new plugins:
48811f7 fixed the set_forwardable_flag calling
alor authored
61 + finger (SYN+ACK fingerprinting on remote hosts)
d939e0d support for mouse events
alor authored
62 + smb_clear, smb_down (attacks against the SMB protocol)
63 + curses interface improvements:
64 + resizable under X11
65 + mouse event are supported
4580a5a possibility to load a plugin at runtime (from curses gui)
alor authored
66 + customizable colors
30043db little update
lordnaga authored
67 + A lot of new bugs!
b467e1f offline sniffing does not bind to any NIC
alor authored
68 !! offline sniffing actually does not bind to any NICs
69
f1b7fdd various fix and improvement after another developer meeting
alor authored
70 +++ too many other improvements to be listed here +++
71
b467e1f offline sniffing does not bind to any NIC
alor authored
72
d939e0d support for mouse events
alor authored
73 0.6.b 20030710
74
75 + Plugins now works with GTK+ interface
76 + Updated the passive OS fingerprint database (1279 records)
77 !! Fixed internal refreshing (for huge traffic loads)
78 !! Fixed wifi-dump support
79 !! Fixed doppleganger re-arp
80 !! Fixed a problem with signed char under mac G3
81 !! Fixed some possible buffer overflows
82
83
b467e1f offline sniffing does not bind to any NIC
alor authored
84 0.6.a 20030505
85
86 + Buffered Data Connections (only for ncurses)
87 + New Sniffing method (Port Stealing)
88 + Updated the passive OS fingerprint database (1189 records)
89 + enhanced smb dissector
90 + enhanced troll plugin against request caching
91 + NEW PLUGIN: Confusion,Hunter, SMB suite
92 + partial wifi-dump support (experimental)
93 !! Fixed demonization problem
94 !! Fixed StateMachine problem
95 !! a bouch of bug fix
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
96
97
98 0.6.9 20030125
99
100 + GTK+ 2.0 interface (experimental) (--enable-devel)
101 + Windows Plugins porting
102 + Updated the passive OS fingerprint database (1093 records)
103 + Dissector Proxy 8080
104 + NTLM auth
105 + Enhanced poisoning method (solaris issue)
106 + NEW PLUGIN: troll, PPTP suite
107 + text and ebcdic view from command line
108 + lc-convert utility (share dir)
109 !! Fixed a LIBS problem under MacOSX (-lpoll)
110 !! Fixed the VNC dissector
111 !! A bouch of bug fix (too many to list here)
112
113
114 0.6.7 20020702
115
116 + Updated the passive OS fingerprint database (853 records)
117 !! Fixed the strlcpy bug in the the telnet dissector (oops alor mistake)
118 !! Fixed a possible sigfault in the rlogin dissector
119 !! Fixed the exit_func for Mac OS X
120
121
122 0.6.6.6 20020603
123
124 + Solaris porting
125 + Sparc architecture support even for all other OSes
126 + Windows 9X porting
127 + Increased the speed of arp storm under windows
128 + Added the ability to bind a port on which ettercap forwards the sniffed trafic
129 + The -H option now supports range ip
130 + NEW PLUGIN: lamia (become root of a switches spanning tree)
131 + Updated the passive OS fingerprint database (825 records)
132 !! Fixed the pthread_join problem under MacOSX
133 !! Fixed the -w options (openssl path related bug)
134 !! Fixed the conflicting options -Y and -a
135 !! Fixed the FindIface function under BSD
136
137
138 0.6.5 20020423
139
140 + Windows (CYGWIN) porting
141 + Dumping to and sniffing from tcpdump file format is now supported
142 + Sniffing from command line now capture UDP+TCP packet by default
143 + Logging engine doesn't log the same user/pass/ip twice
144 + Under *BSD and MacOSX ettercap now uses only one bpf
145 + Added the -J options (onlyposion) to allow multitarget arp sniffing
146 + NEW PLUGIN :
147 - roper (Tries to stop ISAKMP for IPSEC traffic)
148 + NEW password collector for: QUAKE 3, ICQ v7, MSN, YMSG
149 + DISSECTORS enhanced: HTTPS - IMAP - NAPSTER (opennap) - IRC
150 + PLUGIN enhanced:
151 - leech (now it rearps the victim after isolation)
152 + DOCUMENTATION translated in Polish and Dutch
153 !! Better handling of CTRL+C
154 !! Fixed a bug the the dlsym on OpenBSD 3.0 (plugin related)
155 !! Fixed a bug in the handling of debug file
156 !! Fixed the "not scrolling" JOINED visualization
157
158
159 0.6.4 20020212
160
161 + You can sniff traffic from a romote cisco router
162 and make mitm attacks on it using GRE tunnels.
163 + Added some bits for the passive OS fingerprint database.
164 Now even the length of the packet make sense.
165 + The sniffing interface now supports JOINED view
166 + NEW PLUGIN :
167 - thief (dumps all files from HTTP)
168 - zaratan (redirect GRE tunnels)
169 + ICQ dissector now searches for passwords on all ports
170 + Updated the passive OS fingerprint database (675 records)
171 + Changed arg 2 of Plugin_HookPoint for PCK_RECEIVED_RAW
172 !! Under OpenBSD the pflog interface is ingored
173 !! Fixed the DATA_PATH issue in the phantom plugin
174 !! Fixed an unsigned short in state_machine
175 !! Fixed some plugins that don't recognize the 'yes' answer
176 !! Fixed the plugins symbol problem on Mac OS X (strip -x)
177 !! Fixed the possibility of remote exploitation on interface with MTU > 1500
178
179
180 0.6.3.1 20011213
181
182 !! Fixed the truncation of passwords in some dissectors
183 !! Fixed the -undefined error problem for Mac OS X (darwin 1.4.x / 5.1)
184
185
186 0.6.3 20011212
187
188 + Grell dissector (HTTPS) now handles proxy auth
189 + Grell dissector (HTTPS) now correctly handles SSL & TLS
190 + Better connection status handling
191 + Updated the passive OS fingerprint database (530 records)
192 - Removed the --enable-suid option, so it is clear that ettercap is only for root
193 !! Fixed a bug that implied to send on the net every packet sniffed from it (introduced in ettercap 0.6.2)
194 !! Fixed the ENOBUFS error on BSD
195 !! Fixed a bug for the compilation with --disable-plugins
196 !! Fixed a bug for the compilation on Mac OS X without dlcompat libs
197 !! Fixed the configure script to handle the -bundle_loader option under Mac OS X
198 !! Fixed the command line format bug exploit (`ettercap %x%x%x%x%x`) !!
199 !! Fixed many security threats in the code
200
201
202 0.6.2 20011112
203
204 + Ettercap is now a multi-thread single process.
205 + The connection handling engine was enhanched and speeded up
206 + Now filtered (replaced) data can exceed the MTU
207 + Completely new plugin conception (hooking plugin)
208 + Better handling for unknown passive fingerprints
209 + Possibility to load/save the hosts list from/to a file (-j -k options)
210 - the -k (newcert) options was renamed to -w
211 + Updated the passive OS fingerprint database (501 records)
212 + Updated the active OS fingerprint database (2001/10/14)
213 + New 'TEXT only' view on sniffed data
214 + NEW password collector for: HALF LIFE, NFS, SNMP, LDAP
215 + ENHANCEMENT in the password collector for: MySQL
216 + NEW PLUGIN : dwarf (logs all POP and SMTP activity)
217 !! Fixed a bug when recognizing HUB or SWITCH
218 !! Fixed a bug in the banshee plugin
219 !! Fixed a bug in the filtering engine from command line
220 !! Fixed a sigfault in the HTTP dissector
221 !! Plugins are now installed in {prefix}/lib/ettercap, not in share/ettercap
222 !! ettercap is now installed in the more appropriate {prefix}/sbin/
223 !! now the configure script doesn't require root privledges to run
224 !! configure now handles correctly the --datadir=DIR and --libdir=DIR directive.
225
226
227 0.6.0 20010917
228
229 + Passive scanning of the LAN
230 + Plugins ported to Mac OS X (darwin)
231 + Doppleganger now uses the new REQUEST ARP POISON (see readme)
232 + Grell (HTTPS) now supports virtual hosts
233 + The Logging engine for the simple mode was rewritten from scratch
234 + Now MAC sniffing can have only one parameter
235 + Updated the active OS fingerprint database
236 + Updated the MAC fingerprint database
237 + NEW PLUGIN : beholder and basilisk
238 + PLUGIN enhanced: imp and triton
239 !! configure script tuned up. now it compiles missing libs only if needed
240 !! Fixed a bug preventing SSL sniffing
241 !! Fixed a problem in illithid related to the smart arp sniffing
242 !! Fixed a compilation problem for FreeBSD 4.0 (getifaddrs related)
243 !! Fixed a compilation problem for MacOsX (termios related)
244 !! Fixed a ioctl() problem in phantom plugin on *BSD and MacOsX
245
246 0.5.4 20010726
247
248 + Porting for Mac Os X (darwin 1.3.x)
249 + Reverse IP matching (-R option)
250 + Spoofing of the source ip on start up
251 + Customizable delay between arp request on startup
252 + Added the Inet_CloseRawSock API (for debugging purpose)
253 + Better handling of SIGSEGV and SIGBUS (for debugging purpose)
254 + Updated the OS fingerprint database
255 + ENHANCEMENT in the password collector for: IRC
256 + PLUGIN enhanced: triton
257 + NEW PLUGIN : arpcop, phantom, imp
258 !! Fixed the "make_label" compilation problem
259 !! Fixed a sigfault on OS fingerprinting
260 !! Fixed ip_forwarding restoring bug
261 !! Fixed some ncurses visualization errors
262
263 0.5.2 20010707
264
265 + Plugins ported to OpenBSD
266 + Porting for NetBSD 1.5
267 + Added FreeBSD 4 support for source MAC address spoofing
268 + Illithid (the sniffer engine) totally rewritten and tuned up
269 + Doppleganger (the arp poisoner) totally rewritten and tuned up
270 + New programmable filtering engine (see README for details)
271 + Filter can be used in command line mode (-F option)
272 + Possibility to scan only chosen IPs (-H option)
273 + Possibility to select the delay between arp replies (-D option)
274 + Checking for the latest ettercap version (-v option)
275 + More accurate and faster start up host scanning
276 + Connection killing method enhanced
277 + New and more detailed man pages
278 + ENHANCEMENT in the password collector for: HTTP (<form> parsing)
279 + NEW PLUGIN : spectre, triton
280 !! Fixed the interface shutdown bug... yeah !
281 !! Fixed "can't find grell_ssl.crt" error message in the rpm version.
282
283
284 0.5.0 20010611
285
286 + Full-duplex HTTPS man-in-the-middle support
287 + Support for HTTPS through a proxy
288 + SSH sniffing even from command line
289 + Enable/Disable dissectors via conf file
290 + Public ARP in simple mode
291 + Smart Public arp (all but the target)
292 + Dump of the pass to a file from interactive mode
293 + Packet Factory enhancement (now the payload can be loaded from a file)
294 + The newest config.guess and config.sub are now included
295 + Updated the OS fingerprint database (2001/06/04 09:40:50 fyodor)
296 + NEW password collector for: HTTPS, PROXYHTTPS
297 + ENHANCEMENT in the password collector for: SMB, HTTP, MySQL
298 + FIXED password collecor for: IRC
299 + DOCUMENTATION translated in : French, Italian
300 ! Fixed many many bug... but some still persist... ;)
301
302
303 0.4.3 20010511
304
305 + Added a Protocol State Machine for dissectors
306 + Added the rule "Log" to the filtering form
307 + Packet Factory (create and send packets on the fly)
308 + Configuration file
309 + Code cleanup !!
310 + Plugins can be launched from connection list
311 + NEW plugin : banshee
312 + ENHANCEMENT in the password collector for: SOCKS 5, IMAP, VNC, SMB, MySQL
313 + FIXED password collecor for: SOCKS 5
314
315
316 0.4.2 20010429
317
318 + You can specify the IP "ANY"
319 + Logging all data to specific file(s)
320 + Added the "demonization" feature (--quiet)
321 + Packet filtering/dropping/search/replace
322 + Improved the user/password hunting in datadecode module
323 + Tuning of Doppelganger poison/rearp
324 + NEW plugin : lurker
325 + NEW password collector for: NNTP, X11, NAPSTER, IRC, RIP, BGP, SOCKS 5, IMAP 4, VNC
326 + ENHANCEMENT in the password collector for: POP, SMB, MySQL
327 ! fixed a bug in the fingerprint for *BSD
328 ! fixed the handling of eth aliases
329 ! fixed the activation/deactivation of Active Dissectors
330
331
332 0.4.0 20010409
333
334 + Full duplex SSH man-in-the-middle support !!
335 + new startup mode (--broadping -b).
336 + new sniffig metod (PublicARP)
337 + Injector now supports escape sequences
338 + netmask switch added
339 + added support for getopt_long even on *BSD
340 + NEW password collector for : SSH1, SMB, RLOGIN, HTTP, ICQ, MySQL
341 ! fixed the "sendto() 1518 byte" bug
342
343
344 0.3.1 20010323
345
346 ! fixed a nasty bug sniffing/sending big packets
347 ! fixed telnet dissector
348
349
350 0.3.0 20010319
351
352 + Ported on OpenBSD 2.7
353 + UDP support
354 + OS Fingerprint
355 + Network Adapter Fingerprint
356 + Password collector for: FTP, POP, TELNET
357 + Injection interface redesigned
358 + Possibility to check if you are in a switched lan or not.
359 ! various bugfix
360
361
362 0.2.4 20010309
363
364 + Ported on FreeBSD 4.x
365 + Plugin version control
366 + Added -x option for hex mode in command line
367 - Removed -1 and -2 options (better getopt parsing)
368 + Ability to sniff in all direction (no more two hosts limit)
369 + Silent mode (--silent or -z) (no arp storm on start up)
370
371
372 0.2.1 20010223
373
374 + Scrolling window for plugin output
375 + detailed packets view in hex mode (SEQ, ACK and FLAGS)
376 + identification of connections type (FTP, telnet, ecc)
377 + ability to kill a connection from connection list
378 ! sigfault when no plugin found and press return
379
380
381 0.2.0 20010219
382
383 + Plug-In support
384 + Inet module totally rewritten and redesigned.
385 + Downported to 2.0.x Linux Kernels (EXPERIMENTAL)
386 + Added support for glibc 2.0.x 2.1.x 2.2.x
387 + Scroll back in sniffing window (*very* *very* usefull !!)
388 ! after injection the connections are cleanly RSTted
389
390
391 0.1.1 20010209
392
393 + detect if there is another man-in-the-middle in the LAN
394 + full telnet injection support
395 ! ettercap defaults to the first up and running iface
396 ! removed possible sigfault making host list
397 ! now works with openwall
398 ! various bugfixing
399
400
401 0.1.0.beta 20010125
402
403 * Initial public release...
404
405 + Easy to use ncurses interface
406 + Command line mode (without ncurses)
407 + IP based sniffing (old style sniffing)
408 + MAC based sniffing (for traffic between hosts and gateways)
409 + ARP based sniffing (with arp poisoning for switched lan)
410 + Characters injection in an established connection
Something went wrong with that request. Please try again.