Net-Creds [Sniffs sensitive data from interface or pcap]

[mrreboot]

Thoroughly sniff passwords and hashes from an interface or pcap file. Concatenates fragmented packets and does not rely on ports for service identification.

Sniffs

• URLs visited
  
• POST loads sent
  
• HTTP form logins/passwords
  
• HTTP basic auth logins/passwords
  
• HTTP searches
  
• FTP logins/passwords
  
• IRC logins/passwords
  
• POP logins/passwords
  
• IMAP logins/passwords
  
• Telnet logins/passwords
  
• SMTP logins/passwords
  
• SNMP community string
  
• NTLMv1/v2 all supported protocols like HTTP, SMB, LDAP, etc
  
• Kerberos
  

SOURCE