• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Anyone know how to protect yourself from Cain and Abel?

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> General Security Discussion

View previous topic :: View next topic  
Author Message
juicyjay
Just Arrived
Just Arrived


Joined: 08 Nov 2010
Posts: 0


Offline

PostPosted: Mon Nov 08, 2010 6:30 am    Post subject: Anyone know how to protect yourself from Cain and Abel? Reply with quote

If you don't already know, Cain and Abel is a password recovery tool. It can recover many kinds of passwords using methods such as network packet sniffing, cracking various password hashes by using methods such as dictionary attacks, brute force and cryptanalysis attacks.

Hackers can use this tool from a remote computer on your LAN to see your passwords and what websites you're visiting.

I was wondering if anyone knew anything you could to to prevent, or at least make it harder for them to do this. Thanks
Back to top
View user's profile Send private message
Dezaxa
Forum Fanatic
Forum Fanatic


Joined: 22 Mar 2007
Posts: 16777214


Offline

PostPosted: Mon Nov 08, 2010 3:01 pm    Post subject: Reply with quote

Assuming you are talking about protecting a corporate environment, what you are asking is potentially a huge subject. Some suggestions:

1. Use a fully switched network, i.e. ethernet switches, not hubs. This makes it harder (though not impossible) to sniff traffic.
2. Use network access control to stop unauthenticated devices connecting to the network.
3. Secure your wireless network with WPA2 (WEP, WEP2 and WPA are too weak).
4. Physically secure the site: don't let strangers with laptops in.
5. Use application whitelisting to prevent sniffing software being installed on your own computers.
6. Use application protocols that encrypt passwords, e.g. SSL, TLS, SSH, and not FTP, Telnet, POP3, etc.
Back to top
View user's profile Send private message
CoreDefend
Forum Fanatic
Forum Fanatic


Joined: 25 May 2010
Posts: 16777215
Location: USA

Offline

PostPosted: Tue Nov 09, 2010 5:33 pm    Post subject: Reply with quote

Cain and Abel misuse vulnerable network protocols.

Adding to the previous list, make sure group policy security settings are configured correctly.

A network may have the best IDS/IPS, firewall, and antivirus; but issuing SMB, NetBIOS, and LDAP commands to enumerate user accounts in Active Directory is "normal" network behavior that is not usually caught by these devices.
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> General Security Discussion All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register