RE: newbie question

["Andy Meyers" <andy.meyers () hushmail com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dude Cain and Abel does MiTM with https. As well as ettercap.

Ashes

- -----Original Message-----
From: Jason Mayer [mailto:slamboy () gmail com]
Sent: Saturday, February 11, 2006 12:13 PM
To: pen-test () securityfocus com
Subject: newbie question

Hi!  I've been reading this mailing list for a long time, and I've learned
a lot of theoretical stuff regarding a pen-test.  I've been taking cisco
classes for a bit, and while in class a couple of weeks ago the instructor
mentioned that the Cisco enable secret password hashes were pretty much
unbreakable.  Well, knowing what I know, I loaded up cain and abel and
showed him and the class how that wasn't completely true and that strong
passwords were still required (I demonstrated the amount of time it takes
to brute force the password hashes and whatnot with alphanumeric vs
alphanumeric+symbols).

Ever since then, I've been getting requests to demonstrate other things.
Last week, I was asked to demonstrate how to get ntlm password hashes and
then break them, so I showed the class pwdump2 (although in the end I used
cain&abel to crack the passwords).  Today, the teacher asked if it was
possible to intercept and read in plaintext https info.  I did some
searches in the archives and found a reference to odysseus as a MITM proxy.
 I didn't find any information in the help files of odysseus regarding the
usage of this program though, so I come to you all for help.  If anyone
could suggest a MITM program to capture https: traffic I'd appreciate it.

I have the perfect learning environment here, with switches/routers and
multiple pcs.  Since all my knowledge is theoretical, I'd like to get in
some practical experience (while educating future network admins).  Any
other things you think I should check into would be awesome.  Thanks!
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify/
Version: Hush 2.4
Charset: UTF8

wkYEARECAAYFAkPuoWEACgkQnZu7yPmLRpAPPACdHyUBe2JUIf+cMKPOmU1mW3iEmb0A
oLmvfUz8CzESZ8aEJB0CeGnWYKcn
=AFPi
-----END PGP SIGNATURE-----



------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------