Menu
▾
▴
#58 replace and pcre_regex do not work on Ubuntu 10.04
version: 0.7.4.1, compiled locally
os: Linux, Ubuntu 10.04
invocation: ettercap -T -q -F filter.ef
filter.ef (compiled via etterfilter from script below):
if (ip.proto == TCP && tcp.dst == 80) {
if (search(DATA.data, "Accept-Encoding")) {
replace("Accept-Encoding", "Accept-Rubbish!");
msg("zapped Accept-Encoding!\n");
}
if (search(DATA.data, "moxy")) {
replace("moxy", "doxy");
msg("Saw moxy, dst\n");
}
}
bug:
Message is printed when "moxy" is seen in packet, but replacement is never made - packets appear to be transmitted without modification. Added debug message after the memcpy in func_replace - it is being run, but the altered packet is never being transmitted.
View and moderate all "bugs Discussion" comments posted by this user
Mark all as spam, and block user from posting to "Bugs"
Just verified that replace does not work when using backtrack 5 r2 w/ the default etterfilter/ettercap.
View and moderate all "bugs Discussion" comments posted by this user
Mark all as spam, and block user from posting to "Bugs"
PLBKAC - all better.