NetRipper – this is a fairly recent tool that is positioned for the post-operating system based on Windows and uses a number of non-standard approaches to extract sensitive data.
It uses API hooking in order to intercept network traffic and encryption related functions from a low privileged user, being able to capture both plain-text traffic and encrypted traffic before encryption/after decryption. This tool was first demonstrated at the Defcon 23 in Vegas.
Changelog
Version 1.1.2:
- Added Chrome x64 support
Version 1.1.1:
- Changed DLL configuration process
Version 1.1:
- Initial support for x64 (using minhook library)
Leave a Reply