akimboSTAR Posted November 22, 2008 Share Posted November 22, 2008 Ok,so i wanna sniff passwords on my other provate comp. I have tryied many times but without success, ill explain the proccess that i did. i wanna clear that im using xp os 32 bit. ok so i found the mac adress and the ip of the other computer(so lame i know), i opened c&a search for mac adress and boom i found the the mac andress of the opther comp. i chosse the sniffer and poisining and it start the process. then i opend ethereal or wireshark samething and capture. but i still can't get any password its driving me crazy. all of the process in the stupid lan but i cant. :angry: help:D;p. i wanna thank to everyone who try to help,and of course ive seen the epesode about that// Quote Link to comment Share on other sites More sharing options...
digip Posted November 22, 2008 Share Posted November 22, 2008 Is the other PC you are sniffing accessing any password protected site? (If they are using SSL, chances are you won't see the password unless they have a flaw in their service) How about accessing email with theother PC while its being monitored. You should be able to see them since email(unless using secure password authentication) passwords are sent in plain text. Just because you are monitoring the other pc does not mean its going to give you passwords. The other machine needs to be doing something that transmits the passwords while you are sniffing the traffic. Also, load wireshark as Cain does not find every password or information that you may want to look at, like IM chats and web pages someone may be viewing once they are already logged in(via cookies, so no password needed). You can use something like Ferret and Hamster to log into sites via session hijacking, or sidejacking as its termed. Quote Link to comment Share on other sites More sharing options...
akimboSTAR Posted November 22, 2008 Author Share Posted November 22, 2008 i tryied to log into gmail but im sure its with ssl and i tryied with facebook but it didnt work mm. the firewall means the routher to my other conputer right?. like the firewall is 10.0.0.138 to 10.0.0.2 there is any option that i will upload a short video of what im doing,maby then it will be more clear? its kinda comfusing i dont know why but the aim command dosent work for me Quote Link to comment Share on other sites More sharing options...
Hurtcake Posted November 22, 2008 Share Posted November 22, 2008 Do you get any traffic through wireshark? Check in Cain & Abel if the traffic is getting "half routing", (should be "full routing") Quote Link to comment Share on other sites More sharing options...
gEEEk Posted November 22, 2008 Share Posted November 22, 2008 You should be able to ATLEAST pickup the passwords in Wireshark but not in cleartext. Hashed. If you're running wireless, make sure YOU'RE not using Promiscous mode. Quote Link to comment Share on other sites More sharing options...
akimboSTAR Posted November 23, 2008 Author Share Posted November 23, 2008 well i can pick passwords in c&b,but i still can not understanding the traffic protocol. http://img511.imageshack.us/my.php?image=problemcy3.jpg I am in my comp as u can see 10.0.0.1,i wanna get the all of the traffic from 10.0.0.2,but i have to chosse my nic of chourse,the resuluts of course is that i see the traffic between me adn the internet(private net to public net) and to the resond of a guy here that saied" if ur using wireless...",i mention that i wanna do it in LOCAL NETWORK. another thing,is there any way to get SSL asswords,ive made some google searches and didnt find answer... THANKS:D:D Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.