Ethical Hacking Institute in India
Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan
So there might be a better way of doing this on windows but while I work on my project, this is the best you will get out of me.
You will need
Cain and abel http://www.oxid.it/cain.html
Wireshark https://www.wireshark.org/download.html
To start what you need to do is open Cain and abel
![[Image: 1.png?w=540&h=309]](https://neelpathak.files.wordpress.com/2013/05/1.png?w=540&h=309)
Goto -> Sniffer Tab and click Configure in the main menu to configure your packet listening adapter.
![[Image: 2.png?w=540&h=307]](https://neelpathak.files.wordpress.com/2013/05/2.png?w=540&h=307)
Select the appropriate network adapter for your network that you want to sniff the packets for plain-text passwords. And Click Ok.
![[Image: 3.png?w=540&h=310]](https://neelpathak.files.wordpress.com/2013/05/3.png?w=540&h=310)
Click the Green Adapter icon as shown below. This means that you just configured the adapter and now you are turning it ON.
![[Image: 4.png?w=540&h=306]](https://neelpathak.files.wordpress.com/2013/05/4.png?w=540&h=306)
Now select the APR tab below as shown and now first click on the right side upper pane area. When you click that area the blue plus (“+”) icon will get enabled. Press that blue plus (“+”) icon.
![[Image: 5.png?w=540&h=307]](https://neelpathak.files.wordpress.com/2013/05/5.png?w=540&h=307)
This is very interesting step. Now we need to select the router`s IP address and click ok. This means that we want to listen to every packet that is sent to router. If we select any other IP address in our LAN network then we can listen to only that particular HOST on the network. Since the router responds to all the request of HOSTS connected in a LAN. Thus we can listen to all the HOSTs.
![[Image: 6.png?w=540&h=307]](https://neelpathak.files.wordpress.com/2013/05/6.png?w=540&h=307)
Now click the Yellow Circle icon as shown. This means that we are starting ARP poisoning.
![[Image: 7.png?w=540&h=307]](https://neelpathak.files.wordpress.com/2013/05/7.png?w=540&h=307)
We can see that in the upper right panel there is an IP address of our router and when we press that Yellow Circle icon (button), it performs ARP poisoning.
Now click the password tab which is at the bottom. We can see that we are getting passwords of HTTP i.e. plain text session in our LAN network.
![[Image: 8.png?w=540&h=307]](https://neelpathak.files.wordpress.com/2013/05/8.png?w=540&h=307)
Note: While performing this practical you will notice that there is significant reduction in he network speed. This is due to the fact that ARP spoofing on the LAN network creates many fake packets advertising other`s host identity.
==============================================
Now open Wireshark.
Press the circle button at the top, “Capture options” Then choose your network card that is running on cain and abel, then hit start.
![[Image: OjJVgaF.jpg]](http://i.imgur.com/OjJVgaF.jpg)
Let that run for a while, and when you are done, hit file – then hit export objects, http…
![[Image: 02AnEbu.jpg]](http://i.imgur.com/02AnEbu.jpg)
Then hit save all and choose a place to save the images.
Now you can open that folder and view all the images your network has been viewing.
If you are unable to choose “Export objects” you may need to hit file, save as first then choose export objects.
www.extremehacking.org
Sadik Shaikh | Cyber Suraksha Abhiyan, CEHv9, CHFI, ECSAv9, CAST, ENSA, CCNA, CCNA SECURITY,MCITP,RHCE,CHECKPOINT, ASA FIREWALL,VMWARE,CLOUD,ANDROID,IPHONE,NETWORKING HARDWARE,TRAINING INSTITUTE IN PUNE, Certified Ethical Hacking,Center For Advanced Security Training in India, ceh v9 course in Pune-India, ceh certification in pune-India, ceh v9 training in Pune-India, Ethical Hacking Course in Pune-India