Password Cracking tool
Hello All, I need your inputs again. I have doubt on one of practice question from Darril's book.
Which of the following is used to crack passwords?(Choose all that apply)
A.John the Ripper
B.Rainbow table
C.Cain and Abel
D.Wireshark
Answer given is A,B,C. I also selected D. Wireshark which i think can be used to crack passwords.
Which of the following is used to crack passwords?(Choose all that apply)
A.John the Ripper
B.Rainbow table
C.Cain and Abel
D.Wireshark
Answer given is A,B,C. I also selected D. Wireshark which i think can be used to crack passwords.
Comments
-
rogue2shadow Member Posts: 1,501 ■■■■■■■■□□If you take that literally it could be all four because what if you catch a password passed in the clear. If the phasing was different you'd probably have A and C.
-
chrisone Member Posts: 2,278 ■■■■■■■■■□I dont believe wireshark cracks anything, it just sniffs packets and if you can see a password in clear text, then that is what you see, but you didnt crack or force your way into any password.Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
2023 Cert Goals: SC-100, eCPTX -
ibcritn Member Posts: 340Hello All, I need your inputs again. I have doubt on one of practice question from Darril's book.
Which of the following is used to crack passwords?(Choose all that apply)
A.John the Ripper
B.Rainbow table
C.Cain and Abel
D.Wireshark
Answer given is A,B,C. I also selected D. Wireshark which i think can be used to crack passwords.
Wireshark "sniffs" and may find a password sent in clear, but doesn't "crack" the password.
A, B, C could perform password cracking through various techniques. John the Ripper would be the most versatile PW cracker if you asked me.CISSP | GCIH | CEH | CNDA | LPT | ECSA | CCENT | MCTS | A+ | Net+ | Sec+
Next Up: Linux+/RHCSA, GCIA -
ketanwip Member Posts: 11 ■□□□□□□□□□In Darril's book, its mentioned under topic Protocol Analyzer.."Protocol Analyzers such as Wireshark can be used to discover passwords sent in clear text". Again its mentioned as one of its common purpose.
And if i am attacker and i came to know abt clear text password are flowing across a network, i will definitely use Wireshark to crack it. -
rogue2shadow Member Posts: 1,501 ■■■■■■■■□□I dont believe wireshark cracks anything, it just sniffs packets and if you can see a password in clear text, then that is what you see, but you didnt crack or force your way into any password.
True; it is a protocol analyzer by profession. The question is a little loosely stated but I hear ya. Do they mean "crack" as in break/reveal/reassemble the hash's contents? "Crack" as in you "obtained the password by an alternate means?". Wireshark definitely does not logically crack passwords lol. What it should say is "Which of the following tools is used to crack passwords? (Select two)" to avoid any misconceptions (even in the slightest).
EDIT: Playing devil's advocate -
ibcritn Member Posts: 340In Darril's book, its mentioned under topic Protocol Analyzer.."Protocol Analyzers such as Wireshark can be used to discover passwords sent in clear text". Again its mentioned as one of its common purpose.
And if i am attacker and i came to know abt clear text password are flowing across a network, i will definitely use Wireshark to crack it.
Here is the problem. If you capture a password sent in clear with Wireshark it requires no "Cracking". So Wireshark isn't "Cracking" passwords, but can capture clear-text passwords.
Make sense?CISSP | GCIH | CEH | CNDA | LPT | ECSA | CCENT | MCTS | A+ | Net+ | Sec+
Next Up: Linux+/RHCSA, GCIA -
badboyeee Member Posts: 348In Darril's book, its mentioned under topic Protocol Analyzer.."Protocol Analyzers such as Wireshark can be used to discover passwords sent in clear text". Again its mentioned as one of its common purpose.
key word is discover. discover does not mean cracking it, just sniffing it.And if i am attacker and i came to know abt clear text password are flowing across a network, i will definitely use Wireshark to crack it.
replace crack with sniff.2011 Certification Plans so far:
[Cisco: CCENT (ICND1)-> CCNA (ICND2)]
[MS: MCP-> MCDST-> MCTS / MCITP:ESDT7-> MCITP:EDA7]
Class taking:
[Cisco NetAcademy - Network Fundamentals (35%)]
Video currently watching:
[CBT Nuggets - CCENT w/ Jeremy (50%)]
[CBT Nuggets - 20-721 (40%) -
ketanwip Member Posts: 11 ■□□□□□□□□□Wireshark "sniffs" and may find a password sent in clear, but doesn't "crack" the password.
A, B, C could perform password cracking through various techniques. John the Ripper would be the most versatile PW cracker if you asked me.
Appreciate your reply.
You said Wireshark sniffs and may "find" password. According to book "Crack" also means "Discover".
"Cain and Abel: Commonly used to discover passwords on windows system..."
"Password Crackers discover or crack passwords"
So finding or cracking, one and the same, right? -
ketanwip Member Posts: 11 ■□□□□□□□□□key word is discover. discover does not mean cracking it, just sniffing it.
replace crack with sniff.
In the book, discover term is frequently used (along with Crack) while describing Password Cracker tools. -
badboyeee Member Posts: 348In the book, discover term is frequently used (along with Crack) while describing Password Cracker tools.
hmm hehe..
ok discover is a more general term.. it can mean crack or sniff or capture... but cracking and sniffing doesn't mean the same thing... (see other replies for more info)
but the question is being more specific, asking what programs can crack passwords.. so it cant be wireshark. wireshark can only capture/sniff packets that may contain passwords in clear text.2011 Certification Plans so far:
[Cisco: CCENT (ICND1)-> CCNA (ICND2)]
[MS: MCP-> MCDST-> MCTS / MCITP:ESDT7-> MCITP:EDA7]
Class taking:
[Cisco NetAcademy - Network Fundamentals (35%)]
Video currently watching:
[CBT Nuggets - CCENT w/ Jeremy (50%)]
[CBT Nuggets - 20-721 (40%) -
fss Registered Users Posts: 9 ■□□□□□□□□□Wireshark is clearly not a password cracker. "Cracking" implies actively trying to obtain a password, which Wireshark does not do. Cain & Able (IIRC) can brute-force and use rainbow tables. John the Ripper is a well-known, de facto password cracker.
-
ketanwip Member Posts: 11 ■□□□□□□□□□Wireshark is clearly not a password cracker. "Cracking" implies actively trying to obtain a password, which Wireshark does not do. Cain & Able (IIRC) can brute-force and use rainbow tables. John the Ripper is a well-known, de facto password cracker.
Thank you all. I will have to agree to what each of you suggested.
I agree Wireshark is clearly not password cracker. Had the question been "Which of following are Password Cracker", i would not have raised the doubt.
Question says what can be used to crack?
Thanks again -
fss Registered Users Posts: 9 ■□□□□□□□□□I agree Wireshark is clearly not password cracker. Had the question been "Which of following are Password Cracker", i would not have raised the doubt.
Question says what can be used to crack?
...
Well, if Wireshark is not a password cracker, how can it be used to crack passwords? -
ketanwip Member Posts: 11 ■□□□□□□□□□...
Well, if Wireshark is not a password cracker, how can it be used to crack passwords?
Sorry, I meant to say, Wireshark is not Password Cracker (Tool). -
fss Registered Users Posts: 9 ■□□□□□□□□□Sorry, I meant to say, Wireshark is not Password Cracker (Tool).
It doesn't matter- Wireshark has no active cracking capability. Therefore, it cannot be used to crack passwords by definition. -
badboyeee Member Posts: 348Which of the following is used to crack passwords?(Choose all that apply)
is the same thing as..Had the question been "Which of following are Password Cracker"(Choose all that apply)2011 Certification Plans so far:
[Cisco: CCENT (ICND1)-> CCNA (ICND2)]
[MS: MCP-> MCDST-> MCTS / MCITP:ESDT7-> MCITP:EDA7]
Class taking:
[Cisco NetAcademy - Network Fundamentals (35%)]
Video currently watching:
[CBT Nuggets - CCENT w/ Jeremy (50%)]
[CBT Nuggets - 20-721 (40%) -
ibcritn Member Posts: 340Wireshark can in fact discover passwords, but it can't "crack" passwords. This is the problem...sniffing network traffic isn't cracking passwords. All Wireshark does is sniff network traffic.CISSP | GCIH | CEH | CNDA | LPT | ECSA | CCENT | MCTS | A+ | Net+ | Sec+
Next Up: Linux+/RHCSA, GCIA -
eansdad Member Posts: 775 ■■■■□□□□□□Key word is crack. Wireshark doesn't crack anything only shows. Easiest way to put it.
A.John the Ripper - Program used to crack passwords
B.Rainbow table - A table of hashes used to crack passwords
C.Cain and Abel - Program used to crack passwords
D.Wireshark - Program used to capture packets -
Verruckt Member Posts: 36 ■■□□□□□□□□Yep - You have to pay attention to the actual question as the exact questions can trick you. The wording as others have said was "crack". Wireshark doesn't crack but sniffs or just catches the password if in plain text.
Many questions seem to be like that - it's the exact wording you need to pay attention to. -
cyberguypr Mod Posts: 6,928 ModI've noticed that some people struggle with questions like this. Remember, they want the best answer. In some cases all may be correct to some extent but as other mentioned, the way the question is phrased points you in the right direction. Read the question a few times.
-
ibcritn Member Posts: 340cyberguypr wrote: »I've noticed that some people struggle with questions like this. Remember, they want the best answer. In some cases all may be correct to some extent but as other mentioned, the way the question is phrased points you in the right direction. Read the question a few times.
+1 People that struggle with these types of questions will have a very difficult time with some of the tricky tests that employ several possible correct answers, but they want the MOST correct (Cisco, ISC2 come to mind)CISSP | GCIH | CEH | CNDA | LPT | ECSA | CCENT | MCTS | A+ | Net+ | Sec+
Next Up: Linux+/RHCSA, GCIA