Security Blog » Password Cracking

De ce sunt sparte Retelele si cum ?

inSecure — Sat, 08 May 2010 12:14:48 +0000

De ce ?

Am reusit sa identific 5 motive “mari” pentru care hackerii sparg retele in ziua de azi:

1. Retele contin sistem ce au in dotare date sensibiel(parole, carti de credit, informatii confidentiale etc).
2. Asigura facilitati de comunicare pentru a muta datele furate prin lume(pot muta carti de credit prin mai multe retele).
3. Sistemele din retea sunt folosite pentru a cripta datele furate, inainte de a fi mutate prin lume.
4. Sistemele din retea sunt folosite pentru a stoca datele furate.
5. Sistemele sunt folosite pentru creare de troieni, si pentru a dat drumul la viermi.

Cum ?

1. Research general
2. Social engineering(pretext calls, forum-uri etc)
3. Scanning
4. User ID si password breaking
5. Exploit-uri de sistem
6. Interceptarea comunicatiilor (man-in-the-middle attacks)
7. Furt, mita si santaj

Mai stiti si alte motive sau moduri ?!

Cracking Windows 7 Password

inSecure — Tue, 30 Mar 2010 18:55:28 +0000

Salut, azi a trebuit sa sparg parola unui user pe Windows 7.

Am incearcat ca prima varianta OphCrack cu cd-ul bootabil.
Problema a fost ca parola era prea grea(peste 8 litere) si ophcrack-ul nu areusit sa o sparga.

La sfatul lui Bogdan am incearcat http://home.eunet.no/pnordahl/ntpasswd/ . Vreau sa spun ca sunt foarte multumit, in 2 minute am sters parola, si nu a mai fost nici o problema.

Thx, Bogdan.

Cain & Abel

inSecure — Thu, 12 Nov 2009 19:24:06 +0000

Ce este Cain & Abel ?

Am pus aici o descriere completa luata de pe oxit.it
Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of several kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols.


The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort. It covers some security aspects/weakness intrinsic of protocol's standards, authentication methods and caching mechanisms; its main purpose is the simplified recovery of passwords and credentials from various sources, however it also ships some "non standard" utilities for Microsoft Windows users.

Cain & Abel has been developed in the hope that it will be useful for network administrators, teachers, security consultants/professionals, forensic staff, security software vendors, professional penetration testers and everyone else that plans to use it for ethical reasons. The author will not help or support any illegal activity done with this program.

De ce am adus aminte de Cain & Abel ?

Pai a aparut versiunea noua de Cain & Abel !

Ce s-a schimbat:

[!] Added Windows Firewall status detection on startup. [!] Added UAC compatibility in Windows Vista/Seven. [!] Winpcap library upgrade to version 4.1.1.

Download here: Cain & Abel
Homepage : here
Tutoriale Cain & Abel (youtube) : Link