Cain and Abel (software)
 |
This article does not cite any references or sources. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. (January 2011) |
| Developer(s) | Massimiliano Montoro |
|---|---|
| Stable release | 4.9.43 / December 3, 2011 |
| Operating system | Microsoft Windows |
| Type | password cracking |
| License | Freeware |
| Website | http://www.oxid.it/cain.html |
Cain and Abel (often abbreviated to Cain) is a password recovery tool for Microsoft Windows. It can recover many kinds of passwords using methods such as network packet sniffing, cracking various password hashes by using methods such as dictionary attacks, brute force and cryptanalysis attacks. Cryptanalysis attacks are done via rainbow tables which can be generated with the winrtgen.exe program provided with Cain and Abel. Cain and Abel is maintained by Massimiliano Montoro.
Contents |
[edit] Status with virus scanners
Some virus scanners detect Cain and Abel as malware.
Avast! detects it as "Win32:Cain-B [Tool]" and classifies it as "Other potentially dangerous program", while Microsoft Security Essentials detects it as "Win32/Cain!4_9_14" and classifies it as "Tool: This program has potentially unwanted behavior." Even if Cain's install directory, as well as the word "Cain", are added to Avast's exclude list, the real-time scanner has been known to stop Cain from functioning. However, the latest version of Avast no longer blocks Cain.[citation needed]
Montoro, the owner of oxid.it and maintainer of Cain and Abel, has stated that his programs do not contain malware or backdoors.[1][2] However, as the source code for Cain and Abel is not available for independent security review, a measure of caution is advised as with any software acquired from the Internet.[3]
[edit] Features
- WEP cracking
- Speeding up packet capture speed by wireless packet injection
- Ability to record VoIP conversations
- Decoding scrambled passwords
- Calculating hashes
- Traceroute
- Revealing password boxes
- Uncovering cached passwords
- Dumping protected storage passwords
- ARP spoofing
- IP to MAC Address resolver
- Network Password Sniffer
- LSA secret dumper
- Ability to crack:
- LM & NTLM hashes
- NTLMv2 hashes
- Microsoft Cache hashes
- Microsoft Windows PWL files
- Cisco IOS - MD5 hashes
- Cisco PIX - MD5 hashes
- APOP - MD5 hashes
- CRAM-MD5 MD5 hashes
- OSPF - MD5 hashes
- RIPv2 MD5 hashes
- VRRP - HMAC hashes
- Virtual Network Computing (VNC) Triple DES
- MD2 hashes
- MD4 hashes
- MD5 hashes
- SHA-1 hashes
- SHA-2 hashes
- RIPEMD-160 hashes
- Kerberos 5 hashes
- RADIUS shared key hashes
- IKE PSK hashes
- MSSQL hashes
- MySQL hashes
- Oracle and SIP hashes
[edit] See also
[edit] Notes
- ^ oxid.it, info.html.
- ^ SANS.org 2002, Evaluating Untrusted Software In a Controlled Environment, p. 3.
[edit] References
- oxid.it. "oxid.it is not a virii site". http://www.oxid.it/info.html. Retrieved 31 May 2011. "I can assure to you that there are no viruses or hidden features in the programs from my site. Cain & Abel v2.0 does not infect files, it does not send your passwords over the Internet or anything like that...."
- net-security.org (7 July 2009). "Q&A: Cain & Abel, the password recovery tool". p. 3. Archived from the original on 31 May 2011. http://www.webcitation.org/5z5iAtm4L. "I can assure to you that there are NO viruses or spyware or dialers or malware or backdoors in the programs from my site."
- SANS.org; Jeff Reava (20 June 2002). "Evaluating Untrusted Software In a Controlled Environment" (PDF). SANS Institute InfoSec Reading Room. Archived from the original on 31 May 2011. http://docs.google.com/viewer?a=v&q=cache:jT2jU-jF_4IJ:www.sans.org/reading_room/whitepapers/auditing/evaluating-untrusted-software-controlled-environment_79+testing+untrusted+software&hl=en&gl=us&pid=bl&srcid=ADGEESiYVIPl2b-tBRKscqNyI9OhwfSYbLgocyzFDV_owHz9pkZ0J8HWcU5GoQ0rTlSvrrZ-JX4z7EFFMumB0TDIqi6lm-WNodPFGkITaM-ots1FG6E9EOpilNPIsi2UDMIv_hOCCXhf&sig=AHIEtbToph3xxpwmAg6HkRwgiREg2N8BIg.
[edit] External links
|
|||||
