BACKTRACK 5

This tutorial will show you how to access anyones username/password for any browser-based service (facebook, gmail, etc), regardless if the website uses SSL security or https pages.

What you need:

Backtrack 5 (for a guide on getting this, check the Hacking WiFi section of this app)

Yamas script (link in tutorial)

You must be on the same network (WiFi or router) as your target

Boot up into Backtrack

Download the yamas script from http://www.comax.fr/yamas/bt5/yamas.sh

Right click the yamas script you downloaded, goto properties > permissions > check Allow executing as a program

Double click the script and choose the first option, which should be run

This will install the yamas script, so from now on when you run backtrack, all you have to do is open a terminal and type yamas and press enter. The script will then start.

If you're using BackTrack 5 RT1, all of the default settings should work. This means all you have to do is keep pressing enter until the script starts. If you have issues sniffing the passwords, make sure the options are correct.

When the script is running, you'll see 2 new windows open, one of which is a window that says passwords. Whenever anyone connects to a website on the network that requires a username/password, as soon as they enter their information, thier username and password will appear in the passwords window in plain text.

When you're done sniffing, typing in the number 6 will close the script properly, and ask you if you want to save the sniffed passwords in a txt file. If you keep pressing enter (default options) it will discard everything and shut the script down.

Enjoy Smile 

Like always, this is for educational purposes only.