Software that is used for password recovery for Microsoft Windows platform is Cain and Abel.
We can recover many kinds of passwords involved with the system using ARP Poisoning, network packet sniffing and cracking various password hashes by using methods such as dictionary attacks, brute force and cryptanalysis attacks.
Cain and Abel consist of two components:
- The front-end application called Cain is used to recover your passwords and perform sniffing.
- Windows NT service that performs the role of traffic scrambling is known as Abel.
Cain and Abel Features:
• Certification Manager Password Decoder
• LSA Secrets Dumper
• Dial-up Password Decoder
• APR (ARP Poison Routing)
• Administration Manager
• 802.11 Capture Files Decoder
• Course Table Manager
• Storage Password Manager
• Sniffing System
• Remote Scanner
• Secret key Crackers
• Cryptanalysis assaults
• WEP Cracker
• Syskey Decoder
How to perform Cain and Abel to get system Credentials and crack hash passwords.
- Install Cain and Abel in windows OS.
- Open Cain and go to cracker option on it choose to add to list option to add the file in it.
- Import hashes that contain system credentials from the text that you generated after using OPHCRACK.
- Import the .txt file in the option displayed.
- After importing you get the system name with their LM hash and NT hash value.
- Choose the system you wanted to crack and attempt any set of attacks you want like Dictionary attack or Brute-force or cryptanalysis attack to retrieve
- Here we attempted a Brute-force attack on it and set all the perimeters as per the needs
- Finally, at the end, I got the password of the system and u can access it whenever you like.
HOW TO OVERCOME SUCH ATTACKS
- Install IDS/IPS which mostly detects/blocks attacks like this.
- To prevent “MITM” on your system you can use “static ARP” in the operating system.
- Use software which can detect and block ARP poisoning like “arpON”.
- Try to use complex Password so that it would take many days/months to get the break
We are Best Institute for CEH Training in Delhi NCR. Codec Networks provides EC Council Training Certification in Delhi Centre with live Project Environment & Lab Facility. We prepare for latest CEH V9 Training in EC Council, candidates need to work on a live project.