Pretty sure hes a jew or arab, jew judging by his attitude :)

just a question !!!! wat if im using a arp firewall ? does this is this still gona work ?

Ok I click add it scans for ips then after that finish's no ips pop up any help 

@jf112244 Do you get a static or DHCP given IP?

try using a network scanner such as Nmap.

Very nice video. I do hope you continue making videos, havn't seen one from you in a while. Of course you probably have work to do as well, I don't, I'm lazy ;)

Ahh I learned something new today. Thanks!

lol 4:03 wee are going too sneef *snif*

Seems like a good video so far. Before recording, you should have prepared your information & tutorial better.

@felipealvarez1982 it was a good video. YOU LIE!

and then I just encrypt the password..right? :D

u must of had the ip to remote connect to it it in the first place rig

awsome but i thing ppl need a little more info on your remote desk top computer you connect to like yours or someone else comp. you lost me there know your useing linksys i had one some time ago i rem. the ip well non encrypted admin,admin eazy as hell any way you lost me but the rest was very helpfull thx 4 da nfo={P

Assalamou 3alaykoum

You are a big leecher :) ^^

I like your videos, so keep going, but the only thing that i can say, is that you are assuming the spectator has a really wide knowledge, so i would just have appreciated clearer explanation, anyway it's still great.

Tbarkella8 3lik ;-)

Nice, thanks for the vid! :D

Sorry if i was too Harsh....it waz greatly demonstrated For the people who are now getting into the field....5/5 :)

microsoft sam lives!!

Gud VId!

But this is for people who dont kno SHITTT!!!!

shut the fuck you you fucking mother fuckin fob......

Great Video... I hope you don't take it personal, just a suggestion...you might want to redo the sound.. it sort of sounds like you are farting throughout the video. This happened to me before also and I redid the sound.

Don't take it personal but I won't! I will maybe take the other videos off but I won't take this particular one just to piss people like you off!

xD  :D ;)

Well, I figured out a better way to keep people who don't know anything about CS away from this video, I changed its title to a more technical one, there is lot of discussions online about avoiding technical jargon when writing about computers and technology in general but here is a very good case that proves that using technical jargon is useful.

ouch ... you need some anger management

hahahaha! yeah! I guess you are right!

You gotta run cain with administrator privs or it wont work. No, it is not a virus, but is flagged as such by symantec or similar ( it actually flags it as hackware :))

can u sniff into a server with limited access on the computer u are on ???

Hi lolstring909,

Does cain and able run at all under a limited user account? I don't know because I always use the built in administrator account of my XP machine.

If you are talking about sniffing in general then no, you have to have administrative privileges to sniff what goes to and come from the server that is located in your LAN because to see the traffic that is not desalinated to your machine, you need to run the sniffing program in promiscuous mode which requires admin privileges.

It doesnt matter what workstation you are on a network. As long as the server is on the network and has an IP address you can hi jack the traffic between the server and the gateway (router). You might not be able to connect to the server directly p2p unless you have the correct credentials =) Hope that helps

Wrong. Any company worth its salt are using VLANs.

are you suggesting that you cannot sniff vlans?

tis is a virus, tat "kein and ebel!!!!"

so be kareful, it do not woark.

That's not true, and it suffice to know that it is recommended by Steve Gibson at grc (point) com. I read somewhere on the web that some antivirus software flags the program as a virus but that is the problem of the crappy antivirus not cain and able.

Although, if you are still worried then maybe you better don't use the program! it is a virus and I am a mean foreign hacker! who eats children and plays soccer with their heads! ... give me a break people!

Tbarkellah 3alik a khay w'mat dihach fhad zwamel 7achak ...

Chuis arrivé par hasard f'ton site ... wa3er !

Lah y 3awnek a khay hakim m'n fes ...

Salam "androline",

Chokran a khay 3la le commentaire dyalak. :)

hahaa nice one.. nice video also!

you did all the error bits to entertain us didnt you ;-)

gonna try all of that now. thanks again!

fuckin foreigners...

"rauter that connects me to the antharnet.." haha you're so funny man

Use cain and able... you get free ring ding

dis guy iz so fuckin gay dis bitch ass nerd i can't even understand him is he speakin indean or american or were ever the fuck he is from dis is the worst instructions ever dis assssssssssssssssssssswipehole­eeeeeeeeee

i cant hear shit man

when im in the sniffer tab and i do everything up to then clicking the APR tab that i cannot do the DARK BLUE PLUS SIGN the add to list button. its not highlighted for me. all i want to do is connect to a secure network thats not mine but rather a friends whom live in the same appts as me. how do i sniff his password if i cannot click the blue plus sign button?

Click in the tables on the right-side where the address will be. You need to let the software know that's where you want to add shit to.

same thing happened to me with the blue plus sign thing, but I want to get into my friends computer and delete his world of warcraft so he can't play it all fucking day.

hey buddy, when i try to do that in the passwords area it just says "v=1.7" can you help me?

rus

Is this Russell Peters?! I didn't know he is a hAx0r and a sn!ff3r as well

LOL!

lol indian haxor

lmao

antharnet haha:)

the other guy is using VMware!!

nope

not to sound like a noob but what was that word he typed in the remote desktop connection window

the hostname of the other computer

does this actualy work?

Yep.

It tricks all the computers on a local network into thinking that your computer is now the router, rather than the actual router. Basically, your computer is managing EVERY packet sent by other computers. Cain and Able then analyzes the packets for certain post/get fields that might relate to a username / password. It's a little tricky though, sometimes you'll end up DoSing your own computer to sniff everyone else's packets.

There are countermeasures for this type of APR attack, however.

Comment continued...

Computers without firewalls (Windows firewall does not count as a firewall) are succeptable to this type of attack. Also, another countermeasure is static ARP tables.

For linux users, try Ettercap-NG for ARP poison routing.

i think jajajaja is the way some people think that laughter is written.

Nice vid. It helped me out! Thanks :)

shitty comp what is it 40 yrs old?

Ja means yes u dumb fucks

noproblem mate ;)

did`t got a shit

jajajajajaaj

What is "jajajajajaaj" anyway?

ja means yes u dumb fuck

add &fmt=18 to the end to get higher detail more clearer ;)

Thanks hackstamagnetik for the tip.

Quick question: it takes like forever for my computer to use the sniffer. Any suggestions?

the virus is something called ABLE cain is the password cracker able gets the passwords (i think xD)

i sniff some sound at time 02:01

what this?

may be this sound of ping

the port is opened !

hhhhh

Love the accent btw to :)

ur frrrrom rrrrussia?

i think he is arabian..or something..

haha lol

I installed the newist Cain and Abel and my OneCare antivirus detected a trogen. Is this a misreading of my antivirus???

I dont get this... Cain and Abel doesnt work against computers over windows 98! so unless they are a really cheap family then they WONT have a windows 98 or before. God!

What are you talking about? I'm using Cain on Vista X64 SP1. For Windows <= win98, you can download the Legacy version (2.0, not supported anymore), or for newer operating systems, you can use version 4.9.15.

If you can't get this program to work, give Ettercap or Wireshark a try. They all work well.

I kinda wish I could use Wireshark to collect IV packets because my father was being a jackass and changed the wep key and now I have to use my librarys shitty internet. Because if It could collect IV packets then I could use AirCrack to crack the WEP key.

You can actually use Cain to decrypt a WEP key (b/g). You'll need an expensive AirPcap USB dongle to capture packets which will allow you to capture WiFi packets and store them so you can figure out the key by decrypting all the stored packets. If you're interested, they're made by CACE Technologies (google AirPcap).

Or, you could just reset the router by holding down the reset key for a minute or w/e and put it back to default settings, then lock him out ^^.

the only problem with resetting the router is, that if you reset it he has to turn it back on using his computer that is locked. So I would just get my laptop taken away for that. :-(

you gave an example, a university...

this would definitely not work at a university...unless there is no "sophisticated" network security measures...

most educational buildings..and larger server networks in general have a protocol that they use...

for example my school uses SNMP packets...so you could not get such a clear print out of passwords and the such at a school or wherever. this would be a useful tool somewhere such as in a home network though..

any tips for finding passwords in SNMP?

If SNMP protocol sends messages in clear text then the method I showed in the video will definitely work but if the traffic sent by SNMP is encrypted than ... that's another problem and sniffing the traffic will get you only unencrypted text which won't be easy to decrypt, even impossible to decrypt especially if the administrator of the network knows what he is doing!

Cool!  Love the accent btw :)

ok thx

what do u type in from the remote desktop connection..??

Doesn't matter. I think the remote desktop connection is only to simulate there's an internet activity on the remote computer.

me and my friend did this at school :D

man this guy is cool!!!! thanks alot

I am curious, but what does this have to do with your neighbor's password?

That was a local Arp poisoning (aka man-in-the-middle) attack. You can't go outside your default router.

then connect into a neighbours router, its not hard with the distros available today, search google "Backtrack"

Now we need some videos on how to avoid this being used on us!

Mr. Hakim i realise that you are intersted or u are studying coding or teaching it i dont know so if u have more time can u explain the whole program cain i will be greatfull thanks again. bless you

thanks man for this video its helpful keep it up

Great videos :)

Why are all the videos windows based? It would be great to have some videos for linux tools.

hey,

you can use Ettercap to do that.

I realise this post was 3 months ago but just in case you review your posts.

do not like this!!

horray for getting arrested! :D

he isnt going to be arrested only the name says sniffing neighbor's password. but he wass sniffing his ownb password-.-

I got one question:

Is the victim able to notice the sniffing action going on?

And if - how?

thx PS nice videos keep doing...

Thank you for your comment :)

the demonstration above relays on the poisoning of the arp cache of the victim's computer so if he is very very paranoid he could check his arp cache by typing "arp -a" at a command prompt or better create a batch script which will execute regularly to check the arp cache for him but let me ask you this: Have you ever heard of a computer user who is paranoid about security?!

Hehe.... You`re probably right...

Now, arent there any programms out there, that will do this stuff automaticly, analog to antivirus-thingies?

thx

And one more thing, I had to think of as I tried to attack my dads pc: There is a warning coming up, in the window where you choose the victims IP and the Host, it was saying like that there is a possibility of a crash depending on the fact that the performance of the router and of my machine is not the same.

What about this risk? I mean it wouldnt be funny if I crash the system...

Sry for my lack of knowledge... and thx again

Normally when I use programs like cain & able and other powerful "hacking" tools I never use my "work machine" but instead a testing computer I don't care even if it crashes! 

So please don't use or even install tools you don't know what they can do to your computer in which you stored important documents and files.

Thanks for your quick reply! :)

The fact is to prevent the kind of attack demonstrated in the video the switch must not allow the arp poisoning packets to pass through and I believe enterprise and business level switches do that! but small ones -like the sympathic one I use- don't!

And I don't know about a program you can install locally in your machine to prevent arp poisoning because I've never looked for one!

Ok, thank you

I was just wondering how insecure ARP is...

In fact it means you cant protect yourself from stuff like Denying of Service...

Gonna try this one on the next LAN party...:D

nice nice nice man!!!

Yes thanks