I am trying to remake an app like zANTI, but for other platforms.
I was wondering if I could use Ettercap (or something like it) to inject JavaScript into a targets web browser.
Asked
Active
Viewed 1,326 times
1
-
1Define "or something" and "target". Using Ettercap to inject JS is akin to using a sledgehammer to insert nails. – Jedi Mar 29 '17 at 05:59
-
1Can you use ettercap to inject JavaScript? No. ettercap can be used in combination with other tools and techniques to accomplish this but by itself no. By target I'm assuming you mean when a user tries to retrieve a webpage and you inject JavaScript into that and send it back? – nd510 Mar 29 '17 at 06:26
-
1I'm not sure you understand what Ettercap does. What you want is a proxy that rewrites requests. – schroeder Mar 29 '17 at 07:09
-
I found a tool called Bettercap, which does this. I was trying to make filters that would replace `` with `alert(document.cookie)`. But Bettercap has inbuilt functions for this. – Python Mar 29 '17 at 07:13
-
@schroeder, what OP wants can and frequently is done using ettercap. – leaustinwile May 09 '19 at 21:29
-
@leaustinwile example? I'm aware of packet editing, but not multi-packet data manipulation. You tend to need a proxy added on to ettercap for that – schroeder May 09 '19 at 22:12
-
https://www.irongeek.com/i.php?page=security/ettercapfilter The poster uses it to manipulate HTTP traffic in transit to inject images using ettercap filters. This could easily be adapted to inject malicious javascript code. – leaustinwile May 10 '19 at 02:52