net-creds : Sniffs sensitive data from interface or pcap.

net-creds : Sniffs sensitive data from interface or pcap.

net-creds Thoroughly sniff passwords and hashes from an interface or pcap file. Concatenates fragmented packets and does not rely on ports for service identification.

net-creds

Can Sniff:
+ URLs visited
+ POST loads sent
+ HTTP form logins/passwords
+ HTTP basic auth logins/passwords
+ HTTP searches
+ FTP logins/passwords
+ IRC logins/passwords
+ POP logins/passwords
+ IMAP logins/passwords
+ Telnet logins/passwords
+ SMTP logins/passwords
+ SNMP community string
+ NTLMv1/v2 all supported protocols: HTTP, SMB, LDAP, etc.
+ Kerberos

Usage:

Source: https://github.com/DanMcInerney