Metasploit mailing list archives
Karmetasploit question
From: decouk at gmail.com (Andre Amorim)
Date: Wed, 13 Aug 2008 23:19:44 +0100
Karmetasploit is sweet !!! Question: Can we steal wpa-psk keys from windows register as well ? HKLM\SOFTWARE\Microsoft\WZCSVC\ Sometimes is hard to broke into wpa-psk wireless network, even using rainbow tables such as: http://www.renderlab.net/projects/WPA-tables/ "WIKIPEDIA ->A rainbow table is ineffective against one-way hashes that include SALTS " where salt == randon_crazy_ssid ################# [quote from metasploit blog] The result is an extremely effective way to absorb information and remote shells from the wireless-enabled machines around you. This first version is still a proof-of-concept, but it already has an impressive feature list: - Capture POP3 and IMAP4 passwords (clear-text and SSL) - Accept outbound email sent over SMTP - Parse out FTP and HTTP login information - Steal cookies from large lists of popular web sites - Steal saved form fields from the same web sites - Use SMB relay attacks to load the Meterpreter payload - Automatically exploit a wide range of browser flaws ################# -- Andre Amorim GnuPG KEY: 2048R/3E10FF47 Download: http://pgp.zdv.uni-mainz.de:11371/pks/lookup?op=get&search=0x7C3B77763E10FF47
Current thread:
- Karmetasploit question Andre Amorim (Aug 13)
- Karmetasploit question H D Moore (Aug 13)
- Karmetasploit question Andre Amorim (Aug 13)
- Karmetasploit question H D Moore (Aug 13)