cainAbel - Cain & Abel v 2.5 Password Cracking...

Info iconThis preview shows pages 1–4. Sign up to view the full content.

View Full Document Right Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
This is the end of the preview. Sign up to access the rest of the document.

Unformatted text preview: Cain & Abel v 2.5 Password Cracking Via ARP Cache Poisoning Attacks v.1 2004 Page 1 of 15 Objective: At the end of this lab students will be able to use the password auditing and ARP Poison Routing (APR) features of Cain & Abel. Background Information: The Cain & Abel password recovery tool for Microsoft Operating Systems allows recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force, Cryptanalysis attacks, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. There is a version for Windows 98 and a NT2000/XP version with more features that will be used in this lab. Where Cain is the main analysis tool, the Abel NT service provides a remote console on the target machine, which can dump user hashes from the remote SAM even if it was encrypted using the "Syskey" utility and other features like the LSA Secrets dumper, the route table manager and the TCP/UDP Table Viewer. An interesting feature of Cain & Abel is APR (ARP Poison Routing) which enables sniffing on switched LANs by hijacking IP traffic of multiple hosts at the same time. The sniffer can also analyze encrypted protocols such as SSH-1 and HTTPS if used with APR and a Man-in-the-middle situation. Cain also comes with routing protocol authentication monitors, route extractors, crackers for all common hashing algorithms and for other various specific authentications, password calculators (Cisco PIX Hashes, RSA SecurID Tokens), decoders (Access Databases, Base64, Cisco Type-7, Enterprise Manager, Dialup, Remote Desktop) Cisco Config Downloader/Uploader, SiD-Scanner, LSA Secrets Dumper, Protected Storage Passwords Viewer, NT Hash-Dumper, Abel Remote Console, MAC Scanner, Promiscuous-Mode Scanner, Wireless Scanner, and TCP/UDP/ICMP Traceroute + DNS Resolver + Netmask Discovery + WHOIS resolver. The current version of Cain & Abel is limited to use on the same physical network segment. Switched segments work fine, however remote sniffing is not enabled at this time. It will work on wireless networks as well with select supported NIC's. WEP cracking is in progress but not completed as of 8/15/04. Network administrators as well as hackers will find uses for this software. A network administrator might use the password cracking feature to audit a Page 2 of 15 system for weak or non-existent passwords. By the same token, a hacker could gain illicit entry into a system this way. The remote control features of Cain & Abel allow for activities such as these to be carried out from a different location on the network. APR could be used to examine traffic to and from a remote computer on a switched network for auditing or nefarious purposes....
View Full Document

Page1 / 15

cainAbel - Cain & Abel v 2.5 Password Cracking...

This preview shows document pages 1 - 4. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online