I have installed Cain and Able in a machine(A). Machine A is connected to another machine via lan(B). Now I want to analyze all the traffic of machine B. Is this possible by installing Cain and Abel on machine A?
EDIT
After truing a bit more – cain and abel is able to sniff packets of the machine B. But the problem is How do I view the packets. It only shows the number of packets captured/sniffed.
I have installed Cain and Able in a machine(A). Machine A is connected to
Share
Ash,
As we discussed in chat while Cain is a great tool for ARP poisoning , Wireshark is far a better tool for analysis. Good news is when you are using Cain to recieve the ARP poisoned packets you can also use Wireshark and sniff the packets at the same time.
Get the binary here http://www.wireshark.org/
Once you have begun poisoning with cain simply select the same interface you are poisoning from in Wireshark and click start capture. This view will be far superior to what you could see when using Cain.
Of note, know there are other ARP cache poisoning programs out there that are more purpose built for this sort of application. One of the best I have found is ettercap. It will also work very well with Wireshark or any other sniffer you choose to employ.
I hope our discussion helped.
dc