Archive for the ‘wireless’ Category

h1

Another Default Password site

July 8, 2007

A few posts back I mentioned a cool site that provided default passwords for thousands of devices and applications.

www.defaultpassword.com

Here’s another, not-so-pretty list. It may include the same entries as the site mentioned earlier, but a quick Find procedure might yield quicker results. It’s ugly, but it’s definitely cool.

http://www.phenoelit-us.org/dpl/dpl.html

Advertisements
h1

Hacking 101: Cain & Abel

June 20, 2007

I came across this awesome utility at work today. Someone needed to desperately crack a Word document for a customer. So he sent out an email to all of the engineers asking if we had any tools (preferably free) to help him crack this document.

A few ideas came up – but by far, this has been the best idea. It may have not helped him out in his case, and that I’m not sure of. But I became curious and checked this tool out myself.

Cain & Abel is a free password recovery tool for Microsoft OS’s.

From their website:

Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols. The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort. It covers some security aspects/weakness present in protocol’s standards, authentication methods and caching mechanisms; its main purpose is the simplified recovery of passwords and credentials from various sources, however it also ships some “non standard” utilities for Microsoft Windows users.

Cain & Abel has been developed in the hope that it will be useful for network administrators, teachers, security consultants/professionals, forensic staff, security software vendors, professional penetration tester and everyone else that plans to use it for ethical reasons. The author will not help or support any illegal activity done with this program. Be warned that there is the possibility that you will cause damages and/or loss of data using this software and that in no events shall the author be liable for such damages or loss of data. Please carefully read the License Agreement included in the program before using it.

The latest version is faster and contains a lot of new features like APR (Arp Poison Routing) which enables sniffing on switched LANs and Man-in-the-Middle attacks. The sniffer in this version can also analyze encrypted protocols such as SSH-1 and HTTPS, and contains filters to capture credentials from a wide range of authentication mechanisms. The new version also ships routing protocols authentication monitors and routes extractors, dictionary and brute-force crackers for all common hashing algorithms and for several specific authentications, password/hash calculators, cryptanalysis attacks, password decoders and  some not so common utilities related to network and system security.

Some of the new features of this release are:

– Automatic Certificate Collector for FTPS (implicit), IMAPS and POP3S protocols.
– FTPS Man-in-the-Middle Sniffer and password collector.
– POP3S Man-in-the-Middle Sniffer and password collector.
– IMAPS Man-in-the-Middle Sniffer and password collector.
– Added Windows Mail (Vista) Password Decoder for POP3, IMAP, NNTP, SMTP and LDAP accounts.
– Added PTW WEP cracking attack.
– Added Windows Vista support in Wireless Password Decoder.
– Wireless Password Decoder now uses DLL injection under XP.

Download Cain & Abel v 4.9.4 today (works on NT, 2000, and XP). Not sure if Vista is supported, according to the website, it’s not listed so I’m not sure.

h1

An amazing wireless headset

June 9, 2007

I use this at work. I’m almost on it all day, except when I step out. It’s the Plantronics CS70N Professional Wireless Headset.

This headset kicks ass. It’s not Bluetooth (however, there is a Bluetooth model) but who needs Bluetooth. It’s the most comfortable wireless headset I have ever worn. It is geared towards small to medium sized business (just like I work for) but if you’re interested in picking up a very clear, comfortable headset… check this out!

It retails for about $400. It’s a bit pricey, yes… but if you’re on the phone all day and like to walk around the office when on the phone (like me), I’d really suggest you checking this out.

Plantronics specializes in headsets. They don’t make crap!

Product Features:
  • Top-performing Noise-Canceling microphone
  • Discreet, stylized design
  • Lightweight and comfortable all day
  • Optimized for performance with IP desk phones
  • Recommended for all environments, even those with loud noise levels
  • Included lifter automatically lifts handset and returns it to the cradle
  • Enables remote or one touch call answer/end with your Plantronics headset
h1

Windows XP Wireless Fix

April 8, 2007

Thanks to our buddy Steve over at Freesource Technology for this one. I didn’t know this was available.

Install this update to enhance the Windows XP support for Wi-Fi Protected Access 2 (WPA2) options in Wireless Group Policy (WGP), and to help prevent the Windows wireless client from advertising the wireless networks in its preferred networks list.

http://www.freesource-it.net/blog/2007/04/windows-xp-wireless-update.html