SNIFF PASSWORDS ON SAME NETWORK

Today, we're going to use CAIN and ABEL for sniffing HTTP and FTP passwords across a LAN network. Cain and Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute Force and Cryptanalysis attacks, recording VOIP conversations and routing protocols. It covers some security aspects/weakness present in protocols standards, authentication methods and caching mechanisms. Step-1) Download CAIN and ABLE tools from here. Step-2) Turn off the windows firewall and any third party firewall (if installed) Step-3) Open Cain and Abel tool. Step-4) Goto Sniffer tab and click configure in the main menu to configure your packet listening adapter. Step-5) Select the network adapter for your network that you want to sniff the packets from and click OK. Step-6) Click the green adapter icon as shown below. Step-7) Now select the APR tab below as shown and now first click on the right side upper pane area. When you click that area the blue plus ("+") icon will be enabled. Now click on the icon. Step-8) Select the router's IP address and click Ok. Step-9) Now click the yellow circle icon as shown. This means that we are starting ARP poisoning. Step-10) Now click the password tab which is at the bottom. We can see that we are getting passwords of HTTP i:e plain text session in our LAN network.

Performing this practical you will notice that there is significant reduction in network speed. This is due to the fact that ARP spoofing on the LAN network creates many fake pockets advertising other's host identity. This can also create DOS attack on the LAN network as it creates many fake packets for processing thereby making unable for other HOST to make a request on the network.