This script arp spoofs a target then can show all URLs the target visits, all searches they make on most sites, HTTP/POP/IMAP/FTP username/password combos, see incoming/outgoing IMAP/POP messages, POST packets send, strip SSL via sslstrip, and can catch images they’re looking at with driftnet. Besides sslstrip and driftnet all the functionality comes from the scapy python library. Basically I redid what I could from the dsniff suite since the years have taken their toll on it.
Example usage: python intercept.py -u -p -ip 192.168.0.10
-u: show urls
-p: show user/pass combos, emails sent/rcv’d, and POSTed packets
-ip: spoof this IP
python intercept.py -h
-See all options