This entry was posted by admin
on Tuesday, November 22nd, 2011 at 7:34 am and is filed under Linux Security.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
@FrancyEcLipTicA … @FrancyEcLipTicA Wireless networks have very weak encryption, I have uploaded a video a couple of months ago on how to crack a wireless network WEP, it takes less than 10 minutes to break however if it’s WPA could take longer.
Is Cain and Able v4.9.43 compatible with Windows 7 64-bit?
Also, I already have Microsoft Network Monitor 3.4 running on my commputer. Do I need to install Winpcap and Airpcap?
The video makes it looks like C&A automatically captures and decrypts the yahoo mail password even though it was entered via an https connection. Is that correct?
If yes, this seems very simple (i.e. a serious vulnerability) since I already have the SSID and the WEP password for the wireless network on which my target computer operates.
For YahooMail, I recovered a 13 character alphanumeric LoginID and a 16 character alpha numeric password, but they seem to be encrypted.
The LoginID & password appeared under the “http” section in C&A, not under “https”.
I already know what the LoginID is in regular text form (I knew it previously). Is there any way to compare the encrypted LoginID with the known LoginID in order to calulate the encryption key so I can decrypt the password? I don’t even know the encryption methodology for YahooMail.
Tutorial on Sniffing Passwords using Cain & Abel to sniff SSL passwords. The user has to agree to a fake certificate in this scenario.
It’s really useful, …
It’s really useful, but if I have to sniff a password from a different computer with a different connection, how can I do?
@FrancyEcLipTicA …
@FrancyEcLipTicA Wireless networks have very weak encryption, I have uploaded a video a couple of months ago on how to crack a wireless network WEP, it takes less than 10 minutes to break however if it’s WPA could take longer.
Is Cain and Able v4.9.43 compatible with Windows 7 64-bit?
Also, I already have Microsoft Network Monitor 3.4 running on my commputer. Do I need to install Winpcap and Airpcap?
The video makes it looks like C&A automatically captures and decrypts the yahoo mail password even though it was entered via an https connection. Is that correct?
If yes, this seems very simple (i.e. a serious vulnerability) since I already have the SSID and the WEP password for the wireless network on which my target computer operates.
Thanks.
For YahooMail, I recovered a 13 character alphanumeric LoginID and a 16 character alpha numeric password, but they seem to be encrypted.
The LoginID & password appeared under the “http” section in C&A, not under “https”.
I already know what the LoginID is in regular text form (I knew it previously). Is there any way to compare the encrypted LoginID with the known LoginID in order to calulate the encryption key so I can decrypt the password? I don’t even know the encryption methodology for YahooMail.
Thanks