HOW TO USE CAIN & ABEL
Cain and Abel is a Network sniffing tool or you can call it a password recovery tool which is used by many penetration testers or security professionals working on Windows Platform .
It is used to perform variety of functions such as Sniffing passwords in a network , revealing password boxes, recovering wireless network keys or decoding the encrypted passwords. This tool uses Dictionary or Brute Force method to crack passwords.
The popularity of the software was reduced when another tool for the same purpose was launched by the name 'Wireshark' , which serves the same purpose , but still many professionals do use this Cain & Abel for different purposes .
Today we are going to see that how with the help of Cain & Abel we can sniff the http passwords and also , we will monitor the activities of someone on the internet .
For this first of all we have to download the software
The link for the official download page is : Cain & Abel ( http://www.oxid.it/cain.html )
We are using this software to check the security level of our network
We are using this software to check the security level of our network
DISCLAIMER : ALL THE STEPS SHOWN HERE ARE FOR EDUCATIONAL PURPOSES ONLY , THE AUTHOR DO NOT SUPPORT THE ILLEGAL ACTIVITIES NOR SHALL BE RESPONSIBLE FOR ANY ACTIVITY CAUSED DUE TO THIS SOFTWARE . USE THIS SOFTWARE ON YOUR OWN RISK, PEEPING INTO THE PRIVATE LIFE OF OTHER IS A CRIMINAL OFFENCE .
After you have finished downloading run the software and follow the steps .
Step 1:
Check your ip address, to check
Click on start , click on run
Type cmd, click ok/enter
In CMD type ," ipconfig" (without quotes)
you will see your ip address
IMG 1
Step 2:
Run the software
Click on the network tab and select Entire network
Then in the Menu bar click on Configure and from the list of available interfaces select that interface which contains the ip you saw through ipconfig command in cmd
Click on apply and ok
STEP 3:
Below the Menu bar click on the 2nd button from left which seems like a green chip, it says START/STOP Sniffer :
After clicking on that button you will now click on the blue + sign to the right of the sniffer button
A pop up will appear click on ok
STEP 4:
Now go to the bottom menu and click on ARP tab
After clicking on the ARP tab now click on the empty white space , and then again click on the BLUE + SIGN.
after clicking on it , a Pop up will appear with various IP Addresses on it , select the router's ip address , most commonly having .1 in the last.
Select all the ips on the right side and click on ok
STEP 5:
now in the first box a list of ip address will appear , select all the Ip Addresses and click on the yellow circle button just below the Menu Bar.
STEP 6:
As soon as you click on that yellow button , the second white box will start to have some activity , statements like full routing, half routing will tend to appear , if that happens , that means it is going good, if not then plz try again from the start .
STEP 7:
Now click on the Password tab located to the right of ARP tab in the bottom menu .
Now you will see all the web addresses visited by the clients coonected to your network, and the USERNAME AND PASSWORD used by them on different websites .
That is how you can sniff the passwords and monitor the websites being visited by the people connected through your network .
For any questions or doubts kindly leave a comment below :)
Then in the Menu bar click on Configure and from the list of available interfaces select that interface which contains the ip you saw through ipconfig command in cmd
STEP 3:
Below the Menu bar click on the 2nd button from left which seems like a green chip, it says START/STOP Sniffer :
STEP 4:
Now go to the bottom menu and click on ARP tab
after clicking on it , a Pop up will appear with various IP Addresses on it , select the router's ip address , most commonly having .1 in the last.
STEP 5:
now in the first box a list of ip address will appear , select all the Ip Addresses and click on the yellow circle button just below the Menu Bar.
As soon as you click on that yellow button , the second white box will start to have some activity , statements like full routing, half routing will tend to appear , if that happens , that means it is going good, if not then plz try again from the start .
STEP 7:
Now click on the Password tab located to the right of ARP tab in the bottom menu .
Now you will see all the web addresses visited by the clients coonected to your network, and the USERNAME AND PASSWORD used by them on different websites .
That is how you can sniff the passwords and monitor the websites being visited by the people connected through your network .
For any questions or doubts kindly leave a comment below :)
No comments:
Post a Comment