Just a quick addendum : if the goal is just to listen, no need for a MiM attack. Just be on the same Wi-Fi with the promiscuous mode enabled on you network card... ;) Add a scanner build on libpcap or socket and voila. It's a passive way, and your target will never know. You can get some tasty cookie this way if not transmitted over ssl.