ettercap mitm

1. sudo ettercap -T -q -i en1 -w dump -M ARP /192.168.0.4/ /192.168.0.1/
2.  
3. I browse couple of website with the target computer (192.168.0.4) then stop the capture. I run Wireshark and open the dump file generated by ettercap and I got want I wanted for 2 days: the dump of the communication between the computer 192.168.0.4 and the default gateway.
4. Here is a short description of the command:
5. sudo: It is to run the command with all privileges.
6. ettercap: the application for the ARP poisoning and the sniffing of the communication.
7. -T -q: It is to use ettercap with the text interface (command line).
8. -i en1: It is to use the interface en1 (wireless) connected to the network where I want to perform the MITM attack.
9. -w dump: It stores the captured communication in the file named dump in a format readable by Wireshark.
10. - M ARP: It is the option for performing a MITM attack with the ARP poisoning method.
11. /192.168.0.4/: It is the victim’s IP address.
12. /192.168.0.1/: It is the default GW IP addres