RE: Cisco Secret 5 and John Password Cracker

[Christine Kronberg <Christine_Kronberg () genua de>]

On Fri, 4 Nov 2005, Travis Barlow wrote:

*snip*

> The latest version is faster and contains a lot of new features like APR
> (Arp Poison Routing) which enables sniffing on switched LANs and
> Man-in-the-Middle attacks. The sniffer in this version can also analyze
> encrypted protocols such as SSH-1 and HTTPS, and contains filters to

  I just tried that last week in my lab enviroment, but the results
  were poor. While Cain&Abel was greatly sniffing the other stuff
  it failed to see the https traffic at all. The ssh traffic was
  captured but then Cain&Abel reported that it was not able to
  decrypt the password. It was definitely ssh v1 and the decryption
  worked fine with dsniff.
  Anyone else had similar problem? The installation was done on a
  windows 2003 server.

  Cheers,

                                               Christine Kronberg.

--
GeNUA mbH


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------