Re: kerbcrack and kerbsniff

From: x y (levinson_k@excite.com)
Date: 01/16/03 

From: "x y" <levinson_k@excite.com>
Date: Thu, 16 Jan 2003 13:10:49 -0500

Also, try a www.google.com search for those file names for more info.

Note that switches do NOT defeat sniffing like this.

"William Crites" <wcrites@cis.ctc.edu> wrote in message
news:3E25DF15.604C5820@cis.ctc.edu...
> Well, it will sniff the kerbero activities on the network. In my case, it
didn't
> monitor because my network device is switch. It can be work if you put the
tool
> on DC or add hub to your workstation and use your tool to sniff the
kerberos and
> grab data related to kerberos.
>
> When you grab the data then you have to use kerbcrack and run it for days
to
> crack. You can protect your AD when you have a long password and change
the
> password every short period like 10 days. Please make sure it contains
> character, number, and special character. You can use group policy to
enforce
> the password input string to strong password.
>
> Kerbcrack isn't fast if you use mixed dictonary (character, number,
special
> character). The shorter password the sooner you crack. I ran the tool on
800
> mhz and it takes days to reach 7 digits.
>
> It depends on what kind of security you want to enforce and don't want. It
> depends on many factors like network, firewall, block users to access
those
> tools, use software monitoring to detect, put AD behind the firewall, etc.
Lots
> of choices.
>
> William
>
> Famille Alfaro Emery wrote:
>
> > hi
> >
> > I fonded one user on my network downlaoding and I suppose it could do a
lots
> > of things with it. How is it working ? could I protect my AD from it
> >
> > thanks for your helps and advice
> >
> > philip
>

Relevant Pages

  • Re: Single domain two IP subnets
    ... hardware or any of the complexities of "network hardward ... I never criticize anyone's typing as long as the words can ... Cisco ISL VLANS are history. ... Newer Cisco switches don't even support ISL ...
    (microsoft.public.win2000.dns)
  • Re: Men are too frightened to give women the compliments they need
    ... Here we go again; Mark's life on television. ... of which character is portrayed in the worse light, ... violence as men killing and "hitting" both women and other men. ... network and the other crassly commercial. ...
    (soc.men)
  • Re: new switching technologies
    ... mixed with stackable switches. ... i havent used these kit versions, but this is maybe the 5th or 6th iteration ... of a fix looking for a problem for L2 network resilience / load balancing. ... optimal one is what routing protocols were designed for and what they are ...
    (comp.dcom.lans.ethernet)
  • Re: SunRay 2FS MTU
    ... What type of switches and network cards are you using? ... Cisco 6509 with 100Mb modules running fiber to the SunRay MTRJ ports. ... Check that switches and Suns/Sun Ray are all using 100FDX (typically ... your switch needs to be able to buffer sufficent packets. ...
    (comp.sys.sun.admin)
  • Re: priviledge escalation techniques
    ... you've all the tools you need, and you can install additional ones (to ... If I press that BEFORE login, a CLI as SYSTEM is started, I can launch ... If the network is switched, perhaps you need an ARP poisoning tool. ... switches) in such a way that you can fool an ARP poisoning attempt. ...
    (Pen-Test)