Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Newer
Older
100644 470 lines (387 sloc) 18.175 kB
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
1
2 Legenda:
3 + new feature
4 - old feature removed
b467e1f offline sniffing does not bind to any NIC
alor authored
5 !! bug fixed
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
6
7 =========================================
8
69b48b4 version bump to _rc1
alor authored
9 NG-0.7.0_rc1 200405
10
873b71c added support for WEP encrypted traffic
alor authored
11 + added WEP decryption for WiFi packets
b141292 added the -I option to etterlog
alor authored
12 + added the -I search option in etterlog
6504aa6 filters on pcapfiles dumped to other pcap file
alor authored
13 + you can now apply filters on pcapfiles and dump the results
eceda4f fixed the log_close function
alor authored
14 !! log to file works again
7a79d62 fixed the log_close function
alor authored
15 !! fixed a segfault dumping profiles to file
e01412a fixed a problem with scandir in non-readable directories
alor authored
16 !! fixed a segfault when opening not-readable dirs from the curses GUI
c386fff fixed a segfault in the dhcp dissector
alor authored
17 !! fixed uninitialized data that caused segfault in the dhcp dissector
459a716 etterlog -c now respect -f specs
alor authored
18 !! etterlog -c respect the -f specification
e01412a fixed a problem with scandir in non-readable directories
alor authored
19
69b48b4 version bump to _rc1
alor authored
20
eb8a821 ready for the release
alor authored
21 NG-0.7.0_pre2 20040517
5a7f07c can collect telnet password from a cisco
alor authored
22
a9e718d added UTF-8 support
alor authored
23 + added support for UTF-8 strings
0f33ef9 added support for old openssl 0.9.6x
alor authored
24 + telnet collector enhacements (catches cisco login)
318b98a wifi enhancements
alor authored
25 + added new plugins:
c333e59 added a new plugin: autoadd
alor authored
26 + find_ettercap
27 + autoadd
78801c3 the connection list can be erased by the user
alor authored
28 + the live connections list can be purged by the user
4493b5b ssl support for various dissectors
alor authored
29 + SSL support for the following dissector:
ab9ce0f added the support for imaps and pop3s
alor authored
30 + imaps
4493b5b ssl support for various dissectors
alor authored
31 + ircs
32 + ldaps
33 + nntps
ab9ce0f added the support for imaps and pop3s
alor authored
34 + pop3s
4493b5b ssl support for various dissectors
alor authored
35 + ssmtp
318b98a wifi enhancements
alor authored
36 + telnets
990a1c5 added the support for vlan tagging (802.1q)
alor authored
37 + support for vlan tagging (802.1q header)
0e8c69a support for rawip file dumps
alor authored
38 + support for rawip file dumps
c333e59 added a new plugin: autoadd
alor authored
39 + multiple selections in the GTK ui for targets and hosts
3e0201b wifi decoder enhancements
alor authored
40 + wifi enhancements
2d60256 fixed some gliches
alor authored
41 !! fixed the $prefix issue in the configure
a41e505 bug fixes
alor authored
42 !! fixed a linking problem against openssl
43 !! some fixes in the man pages
78801c3 the connection list can be erased by the user
alor authored
44 !! compiles against old openssl 0.9.6x
76c22ee better error handling on file creation failure
alor authored
45 !! better error handling on file creation failure
5324b9b fixed the fingerprint submission
alor authored
46 !! fingerprint submissions works again
1bdf420 better check for functions in configure
alor authored
47 !! fixed the configure checks for libpcap and libnet
55cdf3b the ip_addr struct is now in network order
alor authored
48 !! ec[ip] files are now platform independent
1c95edd fixed the bug that prevented to find the etter.ssl.crt file
alor authored
49 !! fixed the "etter.ssl.crt not found" bug
85831d0 the targets are respected even logging to a eci file
alor authored
50 !! the arp_cop plugin now does not report the ettercap poisoning
51 !! the filters are respected even logging to a eci file
52 !! profiles in the eci file are not duplicated if arp poisoning
5a7f07c can collect telnet password from a cisco
alor authored
53
54
55 NG-0.7.0_pre1 20040415
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
56
f3c4f40 doc updates
alor authored
57 + rewrite from scratch (the code is now cleaner and well commented)
58 + it now requirese libpcap and libnet
b55b021 support for unconfigured network interfaces
alor authored
59 + support for unconfigured network interfaces
22ea719 started the new 'list' widget
alor authored
60 + automake and libtool are now used for the configuration process
705f330 enhancement in etterfilter (libpcre support)
alor authored
61 + etterlog utility for logfiles parsing
62 + etterfilter utility to compile advanced content filters
b467e1f offline sniffing does not bind to any NIC
alor authored
63 + root privs dropped after initialization
c50daeb prepared for the cursed GUI and some fixes
alor authored
64 + big endian arch support (sparc64)
b467e1f offline sniffing does not bind to any NIC
alor authored
65 + layer 3 routing (forwarding packets)
22ea719 started the new 'list' widget
alor authored
66 + new media support for:
67 + wifi
68 + token ring
69 + fddi
70 + ppp
71 + linux cooked interfaces
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
72 + unified sniffing (you can use external hijacker)
d81a935 added the ICMP redirect attack
alor authored
73 + new MITM methods:
5677afa fixes
alor authored
74 + advanced ARP poisoning engine (with many-to-many support)
d81a935 added the ICMP redirect attack
alor authored
75 + ICMP redirect
98c75de new mitm attack: dhcp spoofing
alor authored
76 + DCHP spoofing
8e3f1a9 fixes
alor authored
77 + port stealing
b467e1f offline sniffing does not bind to any NIC
alor authored
78 + multiple target selection
b73e9e4 autoupdate feature (client side)
alor authored
79 + pcap filter on capture
80 + regex packet matching
d81a935 added the ICMP redirect attack
alor authored
81 + hook points per packet type (TCP, UDP... )
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
82 + quiet mode (don't print packet content)
b467e1f offline sniffing does not bind to any NIC
alor authored
83 + enhanced passive open port discoverer
84 + randomized ARP scan
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
85 + cached dns resolution (increase speed and stealth)
5b085c9 new packet_create interface (no need to alloc the packet every time)
alor authored
86 + enhanced statistics on ettercap performances
d0dc5f8 packet visualization for console UI and various bug fix
alor authored
87 + extended headers for every packet
c787db1 fixed host resolv in ec_log
alor authored
88 + passive DNS answer caching
403c560 added global conf (etter.conf) support
alor authored
89 + global conf file always loaded to tweak internal variables
d3582de dissectors can be configured via etter.conf
alor authored
90 + etter.conf supports dissectors on multiple ports
d10d1e5 new dissectors (nntp, x11), profile handling and various bugfixes
alor authored
91 + possibility to sniff on loopback
b73e9e4 autoupdate feature (client side)
alor authored
92 + autoupdate from website for passive databases
d0bed80 connbuf functions added
alor authored
93 + non root users can use ettercap to read from files
a4ce769 sync with local CVS (too many things to list)
alor authored
94 + unoffensive mode (doesn't forward packets)
0e8a93e logging option for user messages
alor authored
95 + user messages can be logged
5ad5120 new telnet dissector
alor authored
96 + dissector enhancements in:
f984d1c pop AUTH PLAIN support
alor authored
97 + POP (APOP and AUTH LOGIN/PLAIN support)
5ad5120 new telnet dissector
alor authored
98 + X11 (banner discovery)
99 + TELNET (collect even failed attempts)
e49dab7 irc and snmp dissectors + various dissector fixes
alor authored
100 + SNMP fixes
c239cb0 filter_op encoding
alor authored
101 + MySQL fixes
3d7aa9f new dissectors: RCON and NAPSTER
alor authored
102 + HalfLife and Quake3 were unified
30043db little update
lordnaga authored
103 + SMB
60d88f4 ssh porting for OpenBSD (it has separated includes)
alor authored
104 + SSH (blowfish support)
2f7fb0e documentation updates
alor authored
105 + SSL (totally reworked, runs on all platforms)
4580a5a possibility to load a plugin at runtime (from curses gui)
alor authored
106 + HTTP has gained performance overhaul
30043db little update
lordnaga authored
107 + ...many others
dfacfb6 etterfilter update
alor authored
108 + new dissectors:
0d20ffd added the smtp dissector
alor authored
109 + SMTP
dfacfb6 etterfilter update
alor authored
110 + CVS
111 + OSPF, VRRP
10cb5b1 unified plugins (standalone and hooking were merged)
alor authored
112 + plugins were unified, no more distinctions between standalone and hooking
a08f033 enhancement in plugins and user interfaces
alor authored
113 + new plugins:
48811f7 fixed the set_forwardable_flag calling
alor authored
114 + finger (SYN+ACK fingerprinting on remote hosts)
d939e0d support for mouse events
alor authored
115 + smb_clear, smb_down (attacks against the SMB protocol)
116 + curses interface improvements:
117 + resizable under X11
118 + mouse event are supported
4580a5a possibility to load a plugin at runtime (from curses gui)
alor authored
119 + customizable colors
12ddde8 possibility to dump the current profiles to an 'eci' file
alor authored
120 + completely new menu-driven interface
a41e505 bug fixes
alor authored
121 + totally redesigned GTK+ interface
122 + you can filter data with a visualization regexp
12ddde8 possibility to dump the current profiles to an 'eci' file
alor authored
123 + profiles can be dumped to a file
4081a14 display an asterisk for profiles with at least one captured account
alor authored
124 + A lot of new bugs^H^H^H^H random features to be discovered ;)
b467e1f offline sniffing does not bind to any NIC
alor authored
125 !! offline sniffing actually does not bind to any NICs
c6281ef log api revisited
alor authored
126 - packet factory was removed
127 - some plugins were not ported
b467e1f offline sniffing does not bind to any NIC
alor authored
128
f1b7fdd various fix and improvement after another developer meeting
alor authored
129 +++ too many other improvements to be listed here +++
130
b467e1f offline sniffing does not bind to any NIC
alor authored
131
d939e0d support for mouse events
alor authored
132 0.6.b 20030710
133
134 + Plugins now works with GTK+ interface
135 + Updated the passive OS fingerprint database (1279 records)
136 !! Fixed internal refreshing (for huge traffic loads)
137 !! Fixed wifi-dump support
138 !! Fixed doppleganger re-arp
139 !! Fixed a problem with signed char under mac G3
140 !! Fixed some possible buffer overflows
141
142
b467e1f offline sniffing does not bind to any NIC
alor authored
143 0.6.a 20030505
144
145 + Buffered Data Connections (only for ncurses)
146 + New Sniffing method (Port Stealing)
147 + Updated the passive OS fingerprint database (1189 records)
148 + enhanced smb dissector
149 + enhanced troll plugin against request caching
150 + NEW PLUGIN: Confusion,Hunter, SMB suite
151 + partial wifi-dump support (experimental)
152 !! Fixed demonization problem
153 !! Fixed StateMachine problem
154 !! a bouch of bug fix
35f9022 The NG version is coming to life... (complete code rewrite)
alor authored
155
156
157 0.6.9 20030125
158
159 + GTK+ 2.0 interface (experimental) (--enable-devel)
160 + Windows Plugins porting
161 + Updated the passive OS fingerprint database (1093 records)
162 + Dissector Proxy 8080
163 + NTLM auth
164 + Enhanced poisoning method (solaris issue)
165 + NEW PLUGIN: troll, PPTP suite
166 + text and ebcdic view from command line
167 + lc-convert utility (share dir)
168 !! Fixed a LIBS problem under MacOSX (-lpoll)
169 !! Fixed the VNC dissector
170 !! A bouch of bug fix (too many to list here)
171
172
173 0.6.7 20020702
174
175 + Updated the passive OS fingerprint database (853 records)
176 !! Fixed the strlcpy bug in the the telnet dissector (oops alor mistake)
177 !! Fixed a possible sigfault in the rlogin dissector
178 !! Fixed the exit_func for Mac OS X
179
180
181 0.6.6.6 20020603
182
183 + Solaris porting
184 + Sparc architecture support even for all other OSes
185 + Windows 9X porting
186 + Increased the speed of arp storm under windows
187 + Added the ability to bind a port on which ettercap forwards the sniffed trafic
188 + The -H option now supports range ip
189 + NEW PLUGIN: lamia (become root of a switches spanning tree)
190 + Updated the passive OS fingerprint database (825 records)
191 !! Fixed the pthread_join problem under MacOSX
192 !! Fixed the -w options (openssl path related bug)
193 !! Fixed the conflicting options -Y and -a
194 !! Fixed the FindIface function under BSD
195
196
197 0.6.5 20020423
198
199 + Windows (CYGWIN) porting
200 + Dumping to and sniffing from tcpdump file format is now supported
201 + Sniffing from command line now capture UDP+TCP packet by default
202 + Logging engine doesn't log the same user/pass/ip twice
203 + Under *BSD and MacOSX ettercap now uses only one bpf
204 + Added the -J options (onlyposion) to allow multitarget arp sniffing
205 + NEW PLUGIN :
206 - roper (Tries to stop ISAKMP for IPSEC traffic)
207 + NEW password collector for: QUAKE 3, ICQ v7, MSN, YMSG
208 + DISSECTORS enhanced: HTTPS - IMAP - NAPSTER (opennap) - IRC
209 + PLUGIN enhanced:
210 - leech (now it rearps the victim after isolation)
211 + DOCUMENTATION translated in Polish and Dutch
212 !! Better handling of CTRL+C
213 !! Fixed a bug the the dlsym on OpenBSD 3.0 (plugin related)
214 !! Fixed a bug in the handling of debug file
215 !! Fixed the "not scrolling" JOINED visualization
216
217
218 0.6.4 20020212
219
220 + You can sniff traffic from a romote cisco router
221 and make mitm attacks on it using GRE tunnels.
222 + Added some bits for the passive OS fingerprint database.
223 Now even the length of the packet make sense.
224 + The sniffing interface now supports JOINED view
225 + NEW PLUGIN :
226 - thief (dumps all files from HTTP)
227 - zaratan (redirect GRE tunnels)
228 + ICQ dissector now searches for passwords on all ports
229 + Updated the passive OS fingerprint database (675 records)
230 + Changed arg 2 of Plugin_HookPoint for PCK_RECEIVED_RAW
231 !! Under OpenBSD the pflog interface is ingored
232 !! Fixed the DATA_PATH issue in the phantom plugin
233 !! Fixed an unsigned short in state_machine
234 !! Fixed some plugins that don't recognize the 'yes' answer
235 !! Fixed the plugins symbol problem on Mac OS X (strip -x)
236 !! Fixed the possibility of remote exploitation on interface with MTU > 1500
237
238
239 0.6.3.1 20011213
240
241 !! Fixed the truncation of passwords in some dissectors
242 !! Fixed the -undefined error problem for Mac OS X (darwin 1.4.x / 5.1)
243
244
245 0.6.3 20011212
246
247 + Grell dissector (HTTPS) now handles proxy auth
248 + Grell dissector (HTTPS) now correctly handles SSL & TLS
249 + Better connection status handling
250 + Updated the passive OS fingerprint database (530 records)
251 - Removed the --enable-suid option, so it is clear that ettercap is only for root
252 !! Fixed a bug that implied to send on the net every packet sniffed from it (introduced in ettercap 0.6.2)
253 !! Fixed the ENOBUFS error on BSD
254 !! Fixed a bug for the compilation with --disable-plugins
255 !! Fixed a bug for the compilation on Mac OS X without dlcompat libs
256 !! Fixed the configure script to handle the -bundle_loader option under Mac OS X
257 !! Fixed the command line format bug exploit (`ettercap %x%x%x%x%x`) !!
258 !! Fixed many security threats in the code
259
260
261 0.6.2 20011112
262
263 + Ettercap is now a multi-thread single process.
264 + The connection handling engine was enhanched and speeded up
265 + Now filtered (replaced) data can exceed the MTU
266 + Completely new plugin conception (hooking plugin)
267 + Better handling for unknown passive fingerprints
268 + Possibility to load/save the hosts list from/to a file (-j -k options)
269 - the -k (newcert) options was renamed to -w
270 + Updated the passive OS fingerprint database (501 records)
271 + Updated the active OS fingerprint database (2001/10/14)
272 + New 'TEXT only' view on sniffed data
273 + NEW password collector for: HALF LIFE, NFS, SNMP, LDAP
274 + ENHANCEMENT in the password collector for: MySQL
275 + NEW PLUGIN : dwarf (logs all POP and SMTP activity)
276 !! Fixed a bug when recognizing HUB or SWITCH
277 !! Fixed a bug in the banshee plugin
278 !! Fixed a bug in the filtering engine from command line
279 !! Fixed a sigfault in the HTTP dissector
280 !! Plugins are now installed in {prefix}/lib/ettercap, not in share/ettercap
281 !! ettercap is now installed in the more appropriate {prefix}/sbin/
282 !! now the configure script doesn't require root privledges to run
283 !! configure now handles correctly the --datadir=DIR and --libdir=DIR directive.
284
285
286 0.6.0 20010917
287
288 + Passive scanning of the LAN
289 + Plugins ported to Mac OS X (darwin)
290 + Doppleganger now uses the new REQUEST ARP POISON (see readme)
291 + Grell (HTTPS) now supports virtual hosts
292 + The Logging engine for the simple mode was rewritten from scratch
293 + Now MAC sniffing can have only one parameter
294 + Updated the active OS fingerprint database
295 + Updated the MAC fingerprint database
296 + NEW PLUGIN : beholder and basilisk
297 + PLUGIN enhanced: imp and triton
298 !! configure script tuned up. now it compiles missing libs only if needed
299 !! Fixed a bug preventing SSL sniffing
300 !! Fixed a problem in illithid related to the smart arp sniffing
301 !! Fixed a compilation problem for FreeBSD 4.0 (getifaddrs related)
302 !! Fixed a compilation problem for MacOsX (termios related)
303 !! Fixed a ioctl() problem in phantom plugin on *BSD and MacOsX
304
305 0.5.4 20010726
306
307 + Porting for Mac Os X (darwin 1.3.x)
308 + Reverse IP matching (-R option)
309 + Spoofing of the source ip on start up
310 + Customizable delay between arp request on startup
311 + Added the Inet_CloseRawSock API (for debugging purpose)
312 + Better handling of SIGSEGV and SIGBUS (for debugging purpose)
313 + Updated the OS fingerprint database
314 + ENHANCEMENT in the password collector for: IRC
315 + PLUGIN enhanced: triton
316 + NEW PLUGIN : arpcop, phantom, imp
317 !! Fixed the "make_label" compilation problem
318 !! Fixed a sigfault on OS fingerprinting
319 !! Fixed ip_forwarding restoring bug
320 !! Fixed some ncurses visualization errors
321
322 0.5.2 20010707
323
324 + Plugins ported to OpenBSD
325 + Porting for NetBSD 1.5
326 + Added FreeBSD 4 support for source MAC address spoofing
327 + Illithid (the sniffer engine) totally rewritten and tuned up
328 + Doppleganger (the arp poisoner) totally rewritten and tuned up
329 + New programmable filtering engine (see README for details)
330 + Filter can be used in command line mode (-F option)
331 + Possibility to scan only chosen IPs (-H option)
332 + Possibility to select the delay between arp replies (-D option)
333 + Checking for the latest ettercap version (-v option)
334 + More accurate and faster start up host scanning
335 + Connection killing method enhanced
336 + New and more detailed man pages
337 + ENHANCEMENT in the password collector for: HTTP (<form> parsing)
338 + NEW PLUGIN : spectre, triton
339 !! Fixed the interface shutdown bug... yeah !
340 !! Fixed "can't find grell_ssl.crt" error message in the rpm version.
341
342
343 0.5.0 20010611
344
345 + Full-duplex HTTPS man-in-the-middle support
346 + Support for HTTPS through a proxy
347 + SSH sniffing even from command line
348 + Enable/Disable dissectors via conf file
349 + Public ARP in simple mode
350 + Smart Public arp (all but the target)
351 + Dump of the pass to a file from interactive mode
352 + Packet Factory enhancement (now the payload can be loaded from a file)
353 + The newest config.guess and config.sub are now included
354 + Updated the OS fingerprint database (2001/06/04 09:40:50 fyodor)
355 + NEW password collector for: HTTPS, PROXYHTTPS
356 + ENHANCEMENT in the password collector for: SMB, HTTP, MySQL
357 + FIXED password collecor for: IRC
358 + DOCUMENTATION translated in : French, Italian
359 ! Fixed many many bug... but some still persist... ;)
360
361
362 0.4.3 20010511
363
364 + Added a Protocol State Machine for dissectors
365 + Added the rule "Log" to the filtering form
366 + Packet Factory (create and send packets on the fly)
367 + Configuration file
368 + Code cleanup !!
369 + Plugins can be launched from connection list
370 + NEW plugin : banshee
371 + ENHANCEMENT in the password collector for: SOCKS 5, IMAP, VNC, SMB, MySQL
372 + FIXED password collecor for: SOCKS 5
373
374
375 0.4.2 20010429
376
377 + You can specify the IP "ANY"
378 + Logging all data to specific file(s)
379 + Added the "demonization" feature (--quiet)
380 + Packet filtering/dropping/search/replace
381 + Improved the user/password hunting in datadecode module
382 + Tuning of Doppelganger poison/rearp
383 + NEW plugin : lurker
384 + NEW password collector for: NNTP, X11, NAPSTER, IRC, RIP, BGP, SOCKS 5, IMAP 4, VNC
385 + ENHANCEMENT in the password collector for: POP, SMB, MySQL
386 ! fixed a bug in the fingerprint for *BSD
387 ! fixed the handling of eth aliases
388 ! fixed the activation/deactivation of Active Dissectors
389
390
391 0.4.0 20010409
392
393 + Full duplex SSH man-in-the-middle support !!
394 + new startup mode (--broadping -b).
395 + new sniffig metod (PublicARP)
396 + Injector now supports escape sequences
397 + netmask switch added
398 + added support for getopt_long even on *BSD
399 + NEW password collector for : SSH1, SMB, RLOGIN, HTTP, ICQ, MySQL
400 ! fixed the "sendto() 1518 byte" bug
401
402
403 0.3.1 20010323
404
405 ! fixed a nasty bug sniffing/sending big packets
406 ! fixed telnet dissector
407
408
409 0.3.0 20010319
410
411 + Ported on OpenBSD 2.7
412 + UDP support
413 + OS Fingerprint
414 + Network Adapter Fingerprint
415 + Password collector for: FTP, POP, TELNET
416 + Injection interface redesigned
417 + Possibility to check if you are in a switched lan or not.
418 ! various bugfix
419
420
421 0.2.4 20010309
422
423 + Ported on FreeBSD 4.x
424 + Plugin version control
425 + Added -x option for hex mode in command line
426 - Removed -1 and -2 options (better getopt parsing)
427 + Ability to sniff in all direction (no more two hosts limit)
428 + Silent mode (--silent or -z) (no arp storm on start up)
429
430
431 0.2.1 20010223
432
433 + Scrolling window for plugin output
434 + detailed packets view in hex mode (SEQ, ACK and FLAGS)
435 + identification of connections type (FTP, telnet, ecc)
436 + ability to kill a connection from connection list
437 ! sigfault when no plugin found and press return
438
439
440 0.2.0 20010219
441
442 + Plug-In support
443 + Inet module totally rewritten and redesigned.
444 + Downported to 2.0.x Linux Kernels (EXPERIMENTAL)
445 + Added support for glibc 2.0.x 2.1.x 2.2.x
446 + Scroll back in sniffing window (*very* *very* usefull !!)
447 ! after injection the connections are cleanly RSTted
448
449
450 0.1.1 20010209
451
452 + detect if there is another man-in-the-middle in the LAN
453 + full telnet injection support
454 ! ettercap defaults to the first up and running iface
455 ! removed possible sigfault making host list
456 ! now works with openwall
457 ! various bugfixing
458
459
460 0.1.0.beta 20010125
461
462 * Initial public release...
463
464 + Easy to use ncurses interface
465 + Command line mode (without ncurses)
466 + IP based sniffing (old style sniffing)
467 + MAC based sniffing (for traffic between hosts and gateways)
468 + ARP based sniffing (with arp poisoning for switched lan)
469 + Characters injection in an established connection
Something went wrong with that request. Please try again.