Aimsniff v0.2 – includes authentication dump

April 23, 2009 · by twrightson · in Aimsniff, Programs · Leave a comment

Fixed up some of the code so that we get less garble on certain packets. We still see that sometimes and it appears that it’s either retrans or fragmented packets, need to do some more debugging to find out.
Newest feature is dumping the authentication challenge and response hash. Both of these can be fed into an accompanying script to brute force the password. I will show an example cracking session later.
Below is an example authentication dump, feel free to crack it, it’s fake.

Example Authentication Dump

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

← AIM OSCAR Authentication Process

Win32 EICAR Creator →

RT @Erdal_Ozkaya: I would like to thank all the experts who has contributed in my latest book ,"Incident Response in the Age of the Cloud"… 2 years ago
@sum_b0dy @2600 Holy cow, I remember that exact issue! I think I still have it in a box somewhere. Good memories! 2 years ago
Do I have any friends that have experience writing a Windows Credential Provider? I know a cool authentication star… twitter.com/i/web/status/1… 2 years ago

Follow @tbwrightson

%d bloggers like this:

Tyler Wrightson's Security Blog

Aimsniff v0.2 – includes authentication dump

Leave a Reply Cancel reply

Feedback Always Welcome

Archives

Categories

Twitter Feed

Follow Blog via Email

Tyler Wrightson's Security Blog

Aimsniff v0.2 – includes authentication dump

Share this:

Like this:

Related

Leave a Reply Cancel reply

Feedback Always Welcome

Archives

Categories

Twitter Feed

Follow Blog via Email