From: Christine Kronberg (Christine_Kronberg@genua.de)
Date: Mon Nov 07 2005 - 10:53:51 EST
On Fri, 4 Nov 2005, Travis Barlow wrote:
*snip*
> The latest version is faster and contains a lot of new features like APR
> (Arp Poison Routing) which enables sniffing on switched LANs and
> Man-in-the-Middle attacks. The sniffer in this version can also analyze
> encrypted protocols such as SSH-1 and HTTPS, and contains filters to
I just tried that last week in my lab enviroment, but the results
were poor. While Cain&Abel was greatly sniffing the other stuff
it failed to see the https traffic at all. The ssh traffic was
captured but then Cain&Abel reported that it was not able to
decrypt the password. It was definitely ssh v1 and the decryption
worked fine with dsniff.
Anyone else had similar problem? The installation was done on a
windows 2003 server.
Cheers,
Christine Kronberg.
-- GeNUA mbH ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:08 EDT