Cain VoIP Recording & Cracking Utility

Tom Keating : VoIP & Gadgets Blog
Tom Keating
CTO
| VoIP & Gadgets blog - Latest news in VoIP & gadgets, wireless, mobile phones, reviews, & opinions

Cain VoIP Recording & Cracking Utility

There's an interesting "security" software product called Cain & Abel that can record your SIP-based VoIP applications. Cain's sniffer can now extract audio conversations based on SIP/RTP protocols and save them into WAV files. The following codecs are supported: G711 uLaw, G711 aLaw, GSM, MS-GSM, ADPMC, DVI, LPC, L16, G729, Speex, iLBC.

Cain & Abel was designed as a "network administrator security tool" to pinpoint security holes. I put that it quotes, since it can also be used as a hacker's tool. For instance, Cain & Abel can capture your encrypted keystrokes during a Remote Desktop session. According to their website, "Cain can now perform man-in-the-middle attacks against the heavy encrypted Remote Desktop Protocol (RDP), the one used to connect to the Terminal Server service of a remote Windows computer. The entire session from/to the client/server is decrypted and saved to a text file. Client-side key strokes are also decoded to provide some kind of password interception. The attack can be completely invisible because of the use of APR (Arp Poison Routing) and other protocol weakness."

Yikes! I use RDP to connect to my home PC and my work PC.

But that's not all.
Credential Manager is a new SSO solution that Microsoft offers in Windows Server 2003 and Windows XP. Cain can now dump passwords from user's credential files and show them in they're clear text form.

Basically Cain recovers the passwords and Abel does the brute force attacks.

It also supports:
- Wireless scanner using Winpcap protocol driver & WEP cracking
- The sniffer can analyze encrypted protocols such as SSH-1 and HTTPS if used with APR and a man-in-the-middle situation.
-
Microsoft SQL Server 2000 Password Cracker
- MySQL Hashes Cryptanalysis via Sorted Rainbow Tables
-
MySQL Password Cracker (works with both v3.23 and SHA1 Hashes)
- Brute-Force and Dictionary attacks rewritten for all crackers
- Cisco PIX Hashes Cryptanalysis via Sorted Rainbow Tables
- and much more...

So basically, Cain aims to be an "all-in-one" security tooll. Yup, I will have to play with this "security tool" in the lab. Hope I don't break some DMCA rule or something. Please use this tool at your own risk. You didn't hear about this tool from me, got it?



Featured Events