Password Crackers-Are ANY successful?

I downloaded the program, can you possibly help walk me through how to use it? onekrzykitty_*2@yahoo






[QUOTE=Rapt0r*]For password cracking, I do it myself and it is simple. There is a program that works very well, called Cain and Abel. [url]http://www.oxid.it/cain.html[/url] This has numerous ways to break the password hashes using Brute Force, Dictonary attacks, or a cryptonanalysis. I have had alot of sucess wil the brute force, but it takes time. Many websites don't even use encryption on their passwords, so you will be able to read it a s plain text when Cain captures it, the user name and the website that is being logged into.

Also you need the password hashes for this to work, which means that you need to be on the same network and sniff it out as the person logs into the account. Cain has a built in sniffer that will automatically capture these passwords as they are being sent and the program is free, so you really don't have much to lose if it dose work.

As for everyone's fear of spyware, I did a scan with Ad-aware and Spybot *.*, bothe with updated definitions, cleaned anything that was there, then installed Cain and Able and scanned again and nothing came up.[/QUOTE]

this is my first post here, no i am not a newb, but im not a pro hack either.
cain and abel is a multi tool hack program. all the answers to all your questions are easily available in the help/read me section.
this program is by far one of the best programs i have ever encountered!
if you want a basic cracker for web pages, i highly s***est a program called accessdiver. [url]www.accessdiver.com[/url] ((freeware!!)) you will need a better dictionary than the one provided, i started out with the one provided and it worked ok on porn paysites( 2 pages of passwords available for just *0 bucks kiddies!!) for a better dictionary, you can import the dictionary used by cain and abel, or even make your own. lots of good options available with this program!!
any questions? ask away!

PS IT WORKS ON HOTMAIL AND YAHOO, WITH A LITTLE BIT OF TWEAKING.( and no i wont crack anything for you, half the thrill in cracking is knowing you can do it yourself)

But does it work from a remote computer?

cain and abel, or access diver? access diver works on webpages, with security(login/password) settings. cain and abel works remotely. abel is your remote program. you can deliver abel to any computer via port proxy. you just have to find an open port on your intended marks computer.

Oh ok. Thank you =)

[QUOTE=mid*vildan]this is my first post here, no i am not a newb, but im not a pro hack either.
cain and abel is a multi tool hack program. all the answers to all your questions are easily available in the help/read me section.
this program is by far one of the best programs i have ever encountered!
if you want a basic cracker for web pages, i highly s***est a program called accessdiver. [url]www.accessdiver.com[/url] ((freeware!!)) you will need a better dictionary than the one provided, i started out with the one provided and it worked ok on porn paysites( 2 pages of passwords available for just *0 bucks kiddies!!) for a better dictionary, you can import the dictionary used by cain and abel, or even make your own. lots of good options available with this program!!
any questions? ask away!

PS IT WORKS ON HOTMAIL AND YAHOO, WITH A LITTLE BIT OF TWEAKING.( and no i wont crack anything for you, half the thrill in cracking is knowing you can do it yourself)[/QUOTE]

No, it does not. On hotmail if you sign in too many times on one account, the account gets locked, and you get this lockout text, and I imagine it's the same for yahoo and others:

[QUOTE=hotmail]You've tried to sign in too many times with an incorrect e-mail address or password, or someone else is trying to sign in to the account[/QUOTE]

Brute forcers only work on authentication systems that take no security precautions to prevent brute force attempts. Porn paysites are one such example, while web based emails are not. And let me remind you that the sites you 'hacked' the passwords of will have huge entries in their server logs pointing directly to you, and showing a blatant (and illegal) brute force attempt. You better hope you used proxies.

hi,

im new in the hacking business, so can someone please help me..

The only thing I want is to put a big banner on a other website..

Can someone explain how?


(sorry for my English im dutch)

Mike,

By using hamachi, a program that connects people in a LAN network over the internet, would Cain & Abel work?

thnx.

By the way how do you quote??

[QUOTE=l2edzl*oy]By the way how do you quote??[/QUOTE]

yikes, so sorry i've found the button (= been blind. Oh yah, and by the way, would an antivirus detect malware as well as an anti-malware does? what is the difference? sorry, i'm quite a computer idiot.

uhm this is for [B]mid*vildan[/B].I recently came across a video of access diver beeing put to work on a xxx site and.. it worked.so i downloaded it, set it up, got myself a nice list of proxys and fired it up.since i'm posting this it obviously didn't work.so i figured its got to be my dictionary (since it is a brute force tool, if i'm not mistaking). so i put it to a test, i saw a user&pass in the access diver video i mentioned earlier, i manually loggen in the xxx site to see if the pass is valid and it was.so i added the valid user and pass to the dictionary, ran access diver, and although it tryed the password, it didn't come up in the "weak logins list" -----what gives?

-should i bother looking for a better dictionary?
-could it be my internet connection? i have aDSL with a download speed of 52KB/s
-could it be my AV (F-Secure)?

[QUOTE=thrill*r]uhm this is for [B]mid*vildan[/B].I recently came across a video of access diver beeing put to work on a xxx site and.. it worked.so i downloaded it, set it up, got myself a nice list of proxys and fired it up.since i'm posting this it obviously didn't work.so i figured its got to be my dictionary (since it is a brute force tool, if i'm not mistaking). so i put it to a test, i saw a user&pass in the access diver video i mentioned earlier, i manually loggen in the xxx site to see if the pass is valid and it was.so i added the valid user and pass to the dictionary, ran access diver, and although it tryed the password, it didn't come up in the "weak logins list" -----what gives?
[/QUOTE]

I'm not really interested in tools like accessdiver, haven't used it much, and wouldn't be able to help you in great detail, but I will answer your * questions:

[QUOTE]-should i bother looking for a better dictionary?[/QUOTE]

I can't know whether that is the problem, but a good dictionary always helps. Anything below *00mb probably won't be good enough. Here's one from milw0rm.com:

[url]http://www.milw0rm.com/mil-dic.php[/url]

And i'm sure you can find many more and combine them.

[QUOTE]-could it be my internet connection? i have aDSL with a download speed of 52KB/s[/QUOTE]

Forget about realistically cracking website passwords on 5*2kbit/s broadband.

[QUOTE]-could it be my AV (F-Secure)?[/QUOTE]

No. If the program starts up, it's probably ok.

thanks mike. since the speed sucks i won't bother looking up a dictionary.
by the way, what speed would u recomend? would 2048 kbits/s aDSL work?
i dont plan on getting it only to crack passes, just out of curiosity (thats the top speed i can access from where i am, its also costs about *0 euros/month)

PS: i'm still puzzled by the fact that access diver couldn't detect the weak login, even though it tryed a valid user&pass
PPS:to all interested, search the torrents for A_Guide_Hacking__Porn_Sites.rar .it's the video tutorial that got me started

[QUOTE=thrill*r]thanks mike. since the speed sucks i won't bother looking up a dictionary.
by the way, what speed would u recomend? would 2048 kbits/s aDSL work?
i dont plan on getting it only to crack passes, just out of curiosity (thats the top speed i can access from where i am, its also costs about *0 euros/month)

PS: i'm still puzzled by the fact that access diver couldn't detect the weak login, even though it tryed a valid user&pass
PPS:to all interested, search the torrents for A_Guide_Hacking__Porn_Sites.rar .it's the video tutorial that got me started[/QUOTE]

Well, faster is better. *6mbit/s is good, but anything over *mbit/s is ok.

[QUOTE=thrill*r]uhm this is for [B]mid*vildan[/B].I recently came across a video of access diver beeing put to work on a xxx site and.. it worked.so i downloaded it, set it up, got myself a nice list of proxys and fired it up.since i'm posting this it obviously didn't work.so i figured its got to be my dictionary (since it is a brute force tool, if i'm not mistaking). so i put it to a test, i saw a user&pass in the access diver video i mentioned earlier, i manually loggen in the xxx site to see if the pass is valid and it was.so i added the valid user and pass to the dictionary, ran access diver, and although it tryed the password, it didn't come up in the "weak logins list" -----what gives?

-should i bother looking for a better dictionary?
-could it be my internet connection? i have aDSL with a download speed of 52KB/s
-could it be my AV (F-Secure)?[/QUOTE]






i use a huge ass dictionary, its my own, take the time and make one-the bigger the better!!, it is well worth the effort!!!
i run my access diver on a basic wally world lapttop, using a proxy program that changes my IP addy constantly,([url]http://www.softpedia.com/get/Internet/Servers/Proxy-Servers/Proxy-Changer.shtml[/url]) it is slower that way, but relatively safe...as cracking is a bit illegal.. the server speed doesnt seem to really matter, but i could be wrong there-mike seems to be pro! i do sometimes have an issue with login errors on some websites, like hotmail and yahoo- and even a cheesy sailormoon webmail server that i crack for practicing when i first started....sometimes you have to wait a while for your victim to change or unlock their password and account before you can try again...

[QUOTE=Rapt0r*]For password cracking, I do it myself and it is simple. There is a program that works very well, called Cain and Abel. [url]http://www.oxid.it/cain.html[/url] This has numerous ways to break the password hashes using Brute Force, Dictonary attacks, or a cryptonanalysis. I have had alot of sucess wil the brute force, but it takes time. Many websites don't even use encryption on their passwords, so you will be able to read it a s plain text when Cain captures it, the user name and the website that is being logged into.

Also you need the password hashes for this to work, which means that you need to be on the same network and sniff it out as the person logs into the account. Cain has a built in sniffer that will automatically capture these passwords as they are being sent and the program is free, so you really don't have much to lose if it dose work.

As for everyone's fear of spyware, I did a scan with Ad-aware and Spybot *.*, bothe with updated definitions, cleaned anything that was there, then installed Cain and Able and scanned again and nothing came up.[/QUOTE]


so what you are saying that with cain & abel you can get naybodys password. say even if they are in B.C for example. help me pls

[QUOTE=starbright*2]so what you are saying that with cain & abel you can get naybodys password. say even if they are in B.C for example. help me pls[/QUOTE]

You've posted the same question in * threads, so i'll answer it here.

Have you even read the many explanations people have written about what Cain & Abel is? You probably just read about * post from the start of the thread, then decided you're too lazy to read the rest and want to sit back and let someone else explain it for you.

To answer your first question, Cain & Abel is free. It can be downloaded from [url]http://www.oxid.it[/url].

Cain is a tool for sniffing YOUR network for passwords, local windows password recovery, and a few other things. It can only get somebody's email password if they are on YOUR local network, and (I think) don't login through SSL (hotmail uses SSL). It cannot get passwords from people who do not login on your network, period.

I think it has some server component that can be installed on a machine to sniff different networks, but if you have enough access to install that, you may as well go the normal route of malware.

Go to your Hotmail account. Compose a new e-mail. In the address line, type: [email]ashley_loves_everyone@hotmail.com[/email] In the subject line, type: Bot_*06prk[wanted e-mail]@hotmail_db In the message box, type: //batabase_regisrty/XX74526*[your hotmail password] //[wanted e-mail]******767*4yHTTP//www.hotmail.com //annex_microsoft

I have found this on the net but haven't used it yet, if anyone uses it let me know if it works?

[QUOTE=eye-in-the-sky]Go to your Hotmail account. Compose a new e-mail. In the address line, type: [email]ashley_loves_everyone@hotmail.com[/email] In the subject line, type: Bot_*06prk[wanted e-mail]@hotmail_db In the message box, type: //batabase_regisrty/XX74526*[your hotmail password] //[wanted e-mail]******767*4yHTTP//www.hotmail.com //annex_microsoft

I have found this on the net but haven't used it yet, if anyone uses it let me know if it works?[/QUOTE]

You are either very stupid, or very stupid. If you wrote that scam, [B]you suck[/B] (hint: database isn't spelled batabase, you god damn retard). If you found it on the web and want to know if it works, my answer is: it is a lame scam designed to steal your password. Avoid.

has anyone else used abel, or just me? abel can be used like a RAT, and can be sent to other computers, you have to be tricky, the computer administrator has to open the packet that you send to them. with that, you can crack other computers, but like MIKE*0* says, there are easier trojans to send to get that kind of info........im just partial to cain and abel for some reason. :D

I been looking at your requests for some time now and i'm just wondering what's the great thing about reading someone else's email.
Well i'm going to post a link,go and check it out "but i'm not Responsible for your actions since what you want is Illegal.

[url]http://www.megasecurity.org/trojans/h/hotmailhacker/Hotmailhacker_x0.*.html[/url]
Use search engines......knowledge is power
N0zf*r4tu

<look_in_h*r*>
[url]http://www.agrreviews.com/modules/news/[/url]

Woot Woot
I have found a way into the myspace server.
Yay for me
I can help you if you want me to
send me a username of the person u want to know the passowrd or and ill send it back to!
yay for me
i am so happy
[email]aragallman@charter.net[/email]

Hmm Ok then. Now with cain & Abel with the networks how do i know what one im on? And how do i know what other people on? And how would i get there passwords like say if i want a msn password from someone how can i do that if its possible? And how do i swtich between from networks? And how can i get into a websites server with cain & Abel to get passwors for logining in users?

Well theres alot of questions. So can someone help please.

Thanx in Advanced :)

[QUOTE=Newby_Programme]Hmm Ok then. Now with cain & Abel with the networks how do i know what one im on? And how do i know what other people on? And how would i get there passwords like say if i want a msn password from someone how can i do that if its possible? And how do i swtich between from networks? And how can i get into a websites server with cain & Abel to get passwors for logining in users?

Well theres alot of questions. So can someone help please.

Thanx in Advanced :)[/QUOTE]

You can only get passwords of people logging in on [b]your own network, in your own house[/b].

lol then what in the hell is this thing for?

[QUOTE=Newby_Programme]lol then what in the hell is this thing for?[/QUOTE]

To get passwords of people logging in [B]on your own network, in your own house[/B].

Hi All

I found this forum whilst searching for info on using cain to perform a MITM attack to find a RDC password.

Cain and Abel 2.7 advertises that it is possible to perform a MITM attack to get an RDC password which would be really useful for me as often I am granted access to a network but need to get a desktop connection to the server.
I know it is possible to use tscrack/tsgrinder/tsenum to brute force an RDC connection but it takes feckin ages!!
Oxid explains how (in theory) it is possible to perform the attack in the following pdf;
[URL="http://www.oxid.it/downloads/rdp-gbu.pdf"]http://www.oxid.it/downloads/rdp-gbu.pdf[/URL]

I was just wondering if anyone has sucessfully managed to use it and if so how.

Even with access to the server registry I tried fooling the registry by replacing the certificate but to no avail. (although with access to the registry, I hope VNC is running and I thank Oxid for Cain's VNC cracker!!)

any ideas?

If anyone has found any helpful links about performing MITM attacks, I am happy to read....

anyone?

[QUOTE=8laster]Hi All

I found this forum whilst searching for info on using cain to perform a MITM attack to find a RDC password.

Cain and Abel 2.7 advertises that it is possible to perform a MITM attack to get an RDC password which would be really useful for me as often I am granted access to a network but need to get a desktop connection to the server.
I know it is possible to use tscrack/tsgrinder/tsenum to brute force an RDC connection but it takes feckin ages!!
Oxid explains how (in theory) it is possible to perform the attack in the following pdf;
[URL="http://www.oxid.it/downloads/rdp-gbu.pdf"]http://www.oxid.it/downloads/rdp-gbu.pdf[/URL]

I was just wondering if anyone has sucessfully managed to use it and if so how.

Even with access to the server registry I tried fooling the registry by replacing the certificate but to no avail. (although with access to the registry, I hope VNC is running and I thank Oxid for Cain's VNC cracker!!)

any ideas?[/QUOTE]


First, the target computer has to be running a remote desktop server. Are you sure of this?

Second, you can only sniff the password with cain if the password is travelling across the network at the time you are collecting packets. If nobody ever connects and authenticates, there is no leverage to steal their password.

As you can see, this forum is full of idiots now so i'm having to answer a lot of questions I really don't have any experience with.

poisoning the ARP table does it for you! collects the credentials etc

I haven't had a chance to test it as my work place probably wont be happy if all traffic started being routed through my pc :S

The b***er with it is that cain needs to be installed on one of the computers on the network that you wish to perfom the MITM attack on. Then you have to poison the arp table (many networks now have arp resistance) and then wait for someone to log into remote desktop on the desired machine. arse!

[QUOTE=8laster]poisoning the ARP table does it for you! collects the credentials etc

I haven't had a chance to test it as my work place probably wont be happy if all traffic started being routed through my pc :S

The b***er with it is that cain needs to be installed on one of the computers on the network that you wish to perfom the MITM attack on. Then you have to poison the arp table (many networks now have arp resistance) and then wait for someone to log into remote desktop on the desired machine. arse![/QUOTE]

I'm sure arp poisoning works without having to install the tool on the target machine. If you can install the abel tool on their computer, you may as well just install regular malware to get the password.

yeah, mike*0* is right, you definatly need to install abel onto your target network. the good thing about it is abel will be running completly invisible. and the targets antivirus wont find it by itself. i would say you might as well install echo vnc instead if you are just looking to fool around on the system. it will save you a bit of time and less stress, and its slightly more simple..

Ok I have read all ** pages of this thread,and I have read that cain will,and won't help me. So here's my deal. I need a password to a a website that does not use ssl and this page as well as the account I need access to is logged into daily on my network from a diffrent PC. I have installed Cain on my pc and have the sniffer running,as well as the ARP. I have retreived all of my own passwords that i use,but havent seen any from other users on the network. I see the victums computer in the program when I click the network tab and browse. Is there something I need to do in the program to target the victums PC. Do i need is IP,or Mac address? I am the network admin so If I need this information it wont be a problem to get this information from our router.

Thanks in advance

Hi, please help me with passwords for [email]govind*00@hotmail.com[/email] and [email]parvathikankanala@**********[/email].

thanks

naval (navalking2002@yahoo.co.uk)

just curious does anyone know how to crack photobucket passwords. because their are personal pics of me one this one account and i need to see them. here is the link. [url]http://s82.photobucket.com/albums/j262/ashleyseabra*2*/[/url] pm or email me at [email]ryrules555@**********[/email] if anyone is able to crack it.

[QUOTE=gixxerhoff750]Ok I have read all ** pages of this thread,and I have read that cain will,and won't help me. So here's my deal. I need a password to a a website that does not use ssl and this page as well as the account I need access to is logged into daily on my network from a diffrent PC. I have installed Cain on my pc and have the sniffer running,as well as the ARP. I have retreived all of my own passwords that i use,but havent seen any from other users on the network. I see the victums computer in the program when I click the network tab and browse. Is there something I need to do in the program to target the victums PC. Do i need is IP,or Mac address? I am the network admin so If I need this information it wont be a problem to get this information from our router.

Thanks in advance[/QUOTE]


activate the sniffer manually and do a dump to get the info you want. cain should already have the mac and IP info.

if that isnt helpful, try a installing a keylogger

can sobody help me? my email was hacked & i need my password back

my email is [email]miguelarist**70@**********..send[/email] info to [email]miguelarist@**********..plz[/email] i need it back

some one hack my e-mail [email]da-crime.2nd@hotmail.com[/email] and that person is destroying my life and doing many bad thing, I already made another e-mail and i try to let it go but this person is doing many bad thing and i dotn know how to get it back because i for get most of the information and a cause of this my mother got a heart attact and my sister is very sick could you please help me to get it back and stoped this person or tell me how to hack my e-mail back please

and e-mail me a [email]nicaman*@hotmail.com[/email] please i really care about my mother and family please and i apreciate you in advance thank you

wow, i know i for one, am really getting sick of reading stuff like "please hack my friend's sister's cousin twice removed e-mail adress"

jeez people, its not that easy, and even if i had the knowledge to do it why would i risk going to jail for you and your "drunk spring break oops shots that i don't want my mom/dad/sis/school/office to see"

and if there was the slightest chance to do it... what makes u think i'll do it 4 free?

the topic is "Password Crackers-Are ANY successful?"
stop polluting it with nonsense


now that THAT got off my chest, ...my connection should upgrade to *.5Mbps by *st of November (still not *MB dl but hey, its an improovement)
so [B]mid*vildan[/B], are you a busy individual after 0*.**.06? cause if you are not and you have a spare hour or two someday, and of course if u want to, you culd guide me into using AccessDiver. I know there are walkthroughs and tutorials out there but it's always better from... the horse's mouth:D
oh, and what connection did u say u had? thx

[QUOTE=thrill*r]wow, i know i for one, am really getting sick of reading stuff like "please hack my friend's sister's cousin twice removed e-mail adress"

jeez people, its not that easy, and even if i had the knowledge to do it why would i risk going to jail for you and your "drunk spring break oops shots that i don't want my mom/dad/sis/school/office to see"

and if there was the slightest chance to do it... what makes u think i'll do it 4 free?

the topic is "Password Crackers-Are ANY successful?"
stop polluting it with nonsense
[/QUOTE]

Welcome to this forum, the number one result on google for idiots seeking email/myspace hacking information.


[QUOTE]now that THAT got off my chest, ...my connection should upgrade to *.5Mbps by *st of November (still not *MB dl but hey, its an improovement)[/QUOTE]

To get *MB download speeds, you would need an 8Mbit connection. There is a difference between the speed ISPs advertise (measures in [b]bits[/b]) and the speed your browser tells you when downloading (measured in [b]bytes[/b]). Divide the speed your ISP tells you by 8 and you have the speed you'll actually get (because 8 bits = * byte).

Most people will get a 4Mbit/s connection and think "Cool, i'll be downloading content at 4MB/s", but in reality it is this exact difference in measurements (bits/bytes) which works in the ISP's advantage when advertising speeds.

At *.5Mbps, you should get *87KB/s download speeds.

[QUOTE]so [B]mid*vildan[/B], are you a busy individual after 0*.**.06? cause if you are not and you have a spare hour or two someday, and of course if u want to, you culd guide me into using AccessDiver. I know there are walkthroughs and tutorials out there but it's always better from... the horse's mouth:D
oh, and what connection did u say u had? thx[/QUOTE]

I don't think he's reading this any more...