Capture text or passwords

alg205
alg205 used Ask the Experts™
on
I have a network security project I am doing for a class that I am taking. The assignment is to capture text or passwords in the open (unsecured) and encrypted (e.g. SSL) and show the difference between the two. The bonus challenge is to setup a proxy with a self signed SSL certificate and capture and view all traffic that is passing through the proxy Encrypted and open. I have squid proxy (I am new to squid) setup on Ubuntu and traffic is passing through the proxy without problem. I also have wire shark, Cisco switch with port spanning, and a Cisco 2610 router(i was thinking about WCCP). With the current resources or another free solution what is the best way to go about doing this project. I will have to present screen shots of the entire process, and show the encrypted and the unencrypted traffic. I want to accomplish the bonus/challenge as well but I will start on the required task first. Your help is appreciated.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Fiddler would be another good tool for your project.

Author

Commented:
Is fiddler capable of capturing plain text or anything sent in the clear and can be easily read or reassembled?
Yes. It will also capture and decrypt ssl communication. You should read the FAQ on their website.

Fiddler2.com
Sr. Security Engineer
Commented:
Fiddler is great but you have squid already. Use the power of the proxy and enable SSL decryption. Below is an example of what you can do using Dropbox as an example.

http://blog.blackfoundry.com/2011/06/02/break-open-dropbox-ssl-traffic-with-squid-proxy/

Alan

Author

Commented:
Thank you both. I have fiddler running, but I will be using Squid squid for my presentation since its a well known proxy.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial