KRIPP: Kripp is Rest In Peace, Privacy Creepy enough to steal your password (tm) Supported protocols: icq, aim, pop3, ftp, cvs and http (basic and user authorization methods). KRIPP is a very simple and extremely light-weight network passwords sniffer written in Perl, which uses only the tcpdump utility as an underlying traffic interceptor. So, naturally, you will need tcpdump in order to make this work. Usually, it's available in the majority of distributions on all the POSIX compatible operating systems. But don't get upset if you don't have it, because it's always available at http://www.tcpdump.org/ Make sure you have tcpdump on your PATH. Also you'll need Perl. http://www.perl.org/ In order to catch as much passwords as possible, you should run the program from the root account (otherwise it won't work) on machines serving as gateways, or in a network made with a help of a HUB device which makes the whole traffic visible for all the workstations on local net. Happy sniffing! And don't forget to visit http://konst.org.ua/kripp/ for updates. Be well. -- konst ***** With version 0.6.1a, failed FTP logins will be displayed with "[F]" printed after the password. Updates to this version can be found at http://support.moonpoint.com/downloads/computer_languages/perl Jim Cameron support (at) moonpoint.com