Security Basics mailing list archives
Re: Netmeeting sniffing
From: "kalgecin () gmail com" <kalgecin () gmail com>
Date: Wed, 25 Mar 2009 06:59:24 +0300
not sure but you can try to use john the ripper with some appropriate patch. it all depends what algorithm is being used. On 3/22/09, Thomas Kane <takane2 () gmail com> wrote:
So I'm wondering about the vulnerabilities of netmeeting remote desktop to a physical layer attack. I have a test set up at my home, I have one laptop connected to my westell dsl modem/router/switch via wifi. then I connected my desktop via ethernet. My idea for the attack was inserting a hub in there and grabbing the packets with another laptop in promiscuous mode. In addition I have grabbed the netmeeting certificates from the two computers involved. So I have the certs(one of which had a private key, the other claimed it didn't have one). I got the packets. I typed somethings because my main focus is retrieving typed passwords from the wire. So now how would I go about decrpyting the packets and what format are keystrokes in? I'd appreciate any help I could get! ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Learn all of the latest penetration testing techniques in InfoSec Institute's Ethical Hacking class. Totally hands-on course with evening Capture The Flag (CTF) exercises, Certified Ethical Hacker and Certified Penetration Tester exams, taught by an expert with years of real pen testing experience. http://www.infosecinstitute.com/courses/ethical_hacking_training.html ------------------------------------------------------------------------
-- Sent from Gmail for mobile | mobile.google.com Kalgecin http://kalgecin.110mb.com ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Learn all of the latest penetration testing techniques in InfoSec Institute's Ethical Hacking class. Totally hands-on course with evening Capture The Flag (CTF) exercises, Certified Ethical Hacker and Certified Penetration Tester exams, taught by an expert with years of real pen testing experience. http://www.infosecinstitute.com/courses/ethical_hacking_training.html ------------------------------------------------------------------------
Current thread:
- Netmeeting sniffing Thomas Kane (Mar 24)
- Re: Netmeeting sniffing kalgecin () gmail com (Mar 25)
- Message not available
- Message not available
- Fwd: Netmeeting sniffing Thomas Kane (Mar 25)
- Message not available