New features:
- Cain's MitM NTLM Challenge Spoofing. (Requires APR to be active and a MitM condition between victim hosts). You can now spoof server challenges in NTLM authentications; this feature enables the use of RainbowTables for cracking network hashes.WARNING !!! Enabling Challenge Spoofing cause users to fail authentications so use it carefully
- NTLM Session Security authentications downgrade to LM&NTLMv1. The following protocols are supported: SMB, DCE/RPC, TDS, HTTP, POP3, IMAP, SMTP.
- LM + spoofed challenge Hashes Cryptanalysis via Sorted Rainbow Tables.
- HALFLM + spoofed challenge Hashes Cryptanalysis via Sorted Rainbow Tables.
- NTLM + spoofed challenge Hashes Cryptanalysis via Sorted Rainbow Tables.
- New types of RainbowTables have been added to Winrtgen v2.4. "lmchall" and "ntlmchall" tables can be used against LM and NTLM response hashes for spoofed challenges (default: 0x1122334455667788). "halflmchall" tables can be used against the first 8 bytes LM response hashes for spoofed challenges to recover the first 7 characters of the original password.
- Added HALFLMCHALL hashes submission to rainbowcrack-online client.
- Ability to dump LSA Secrets directly from SYSTEM and SECURITY registry hive files.
Another interesting new feature is the ability to monitor server side software by the use of a builtin debugger.
3) On Feb 1st, Wireshark 0.99.5 was released. Security-related vulnerabilities in the TCP, HTTP, IEEE 802.11, and LLT dissectors have been fixed. See the advisory for details. This release adds WPA/WPA2 decryption. It also improves the file dialogs under Windows along with many other interface-related updates. A U3 package for Windows has been added to the release process. For a complete list of changes, please refer to the 0.99.5 release notes.
4) On Jan 29th, WinPcap 4.0 was released out of beta. This software release contains major improvements to the kernel driver. As a result, WinPcap 4.0 is extremely more reliable and stable than previous versions. The 4.0 version also adds the long awaited stable support for x64 platforms, including Windows XP and the upcoming Vista. Finally, this release includes support for the CACE Technologies Wireless AirPcap Adapters, the first open and affordable solution for Wi-Fi capture on the Windows platform. Full details of the changes can be found in the change log.
5) On Jan 25th, Azureus 2.5.0.4 was released. Azureus is a powerful, full-featured, cross-platform Java BitTorrent client. This release contains new features, improvements and fixes, such as reduced memory footprint and faster startup times. This is primarily a bugfix release.
6) JBroFuzz 0.4 has been released. JBroFuzz is a stateless network protocol fuzzer that emerged from the needs of penetration testing. Written in Java, it allows for the identification of certain classess of security vulnerabilities, by means of creating malformed data and having the network protocol in question consume the data.
This version includes the following changes:
- Generators are read from file
- Removed the jbrf1 file format and using a single txt file
- TCP Sniffing gives the ability to launch a browser while sniffing traffic
- Updated a number of user interface components including the MenuBar
- Added copy-paste functionality within the application.
7) Mozilla released Firefox 3 Alpha 2 - codenamed Gran Paradiso Alpha 2. Gran Paradiso Alpha 2 is being made available for testing purposes only, and is intended for web application developers and our testing community. Check the Release Notes for all the changes.
8) Java has released JRE 5.0 Update 11. However, JRE 6.0 is also open to those that don't need Win9x or ME support.
No comments:
Post a Comment