Cain & Abel picked up the most passwords while Wireshark was the second and third best. I removed the routers that are forwarding packets to the Cain sniffer and moved the sniffer to a laptop. I tested the Cain & Abel sniffer, Wireshark, tcpdump, and tshark against a VPN tunnel using the following protocols: PPTP, L2TP/IPSec, MSKerb5, and OpenVPN. From this, I deduce that the Cain & Abel sniffer works on a switched environment. I made an attempt to run the Cain & Abel sniffer on an unencrypted (L2TP/IPSec VPN) test network and it worked! It also successfully detected the NAS and my laptop using WEP encryption. I believe this is the cause of my problems since I am using the ASA to decrypt the packets before the Cain sniffer can capture them. The ASA only forwards the ETHER_IP (MAC address) and the L2TP or IPSec protocol. So why am I getting strange packet capture results when I run the sniffer on my router? I noticed that my ASA and ASA router do not forward the whole packet.
0 kommentar(er)
