Packages and Binaries:
This package contains a Network Forensic Analysis Tool (NFAT) that performs deep processing and inspection of network traffic (mainly PCAP files, but it also capable of directly live capturing from a network interface). It includes: password extracting, building a network map, reconstruct TCP sessions, extract hashes of encrypted passwords and even convert them to a Hashcat format in order to perform an offline Brute Force attack.
The main goal of the project is to provide solution to security researchers and network administrators with the task of network traffic analysis while they try to identify weaknesses that can be used by a potential attacker to gain access to critical points on the network.
On Linux it is a Command Line Interface tool.
How to install:
sudo apt install bruteshark
[email protected]:~# brutesharkcli -h BruteSharkCli 18.104.22.168 Copyright © 2018 ERROR(S): Option 'h' is unknown. -d, --input-dir The input directory containing the files to be processed. -i, --input The files to be processed separated by comma. -m, --modules The modules to be separated by comma: Credentials, FileExtracting, NetworkMap, DNS, Voip. -o, --output Output directory for the results files. -p, --promiscuous Configures whether to start live capture with promiscuous mode (sometimes needs super user privileges to do so),use along with -l for live capture. -l, --live-capture Capture and process packets live from a network interface. -f, --filter Set a capture BPF filter to the live traffic processing. --help Display this help screen. --version Display version information. Killed
Updated on: 2022-Nov-28