Ncrack’s features include a very flexible interface granting the user full control of network operations, allowing for very sophisticated bruteforcing attacks, timing templates for ease of use, runtime interaction similar to Nmap’s and many more.

Ncrack was started as a “Google Summer of Code” Project in 2009. While it is already useful for some purposes, it is still unfinished, alpha quality software. It is released as a standalone tool.

Ncrack is available for many different platforms, including Linux, *BSD, Windows and Mac OS X. There are already installers for Windows and Mac OS X and there is a universal source code tarball that can be compiled on every system.

Example: A representative Ncrack scan

Downloads:
http://nmap.org/ncrack/dist/ncrack-0.01ALPHA.tar.gz
http://nmap.org/ncrack/dist/ncrack-0.01ALPHA-setup.exe
http://nmap.org/ncrack/dist/ncrack-0.01ALPHA.dmg

Ncrack Man Page: http://nmap.org/ncrack/man.html

Ncrack Home: http://nmap.org/ncrack

Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols.

New Features:

• Added support for Windows 2008 Terminal Server in APR-RDP sniffer filter.
• Added Abel64.exe and Abel64.dll to support hashes extraction on x64 operating systems.
• Added x64 operating systems support in NTLM hashes Dumper, MS-CACHE hashes Dumper, LSA Secrets Dumper, Wireless Password Decoder, Credential Manager Password Decoder, DialUp Password Decoder.
• Added Windows Live Mail (Windows 7) Password Decoder for POP3, IMAP, NNTP, SMTP and LDAP accounts.
• Fixed a bug of RSA SecurID Calculator within XML import function.
• Fixed a bug in all APR-SSL based sniffer filters to avoid 100% CPU utilization while forwarding data.
• Executables rebuilt with Visual Studio 2008.
• Added Windows Firewall status detection on startup.
• Added UAC compatibility in Windows Vista/Seven.
• Winpcap library upgrade to version 4.1.1.

Download: ca_setup.exe

It currently has modules for the following services:
* AFP
* CVS
* FTP
* HTTP
* IMAP
* MS-SQL
* MySQL
* NCP (NetWare)
* NNTP
* PcAnywhere
* POP3
* PostgreSQL
* rexec
* rlogin
* rsh
* SMB
* SMTP (AUTH/VRFY)
* SNMP
* SSHv2
* SVN
* Telnet
* VmAuthd
* VNC

It also includes a basic web form module and a generic wrapper module for external scripts.

Download :
http://www.foofus.net/jmk/medusa/medusa.html

SniffPass is small freeware utility that listens to your network, capture the passwords that pass through your network adapter, and display them on the screen instantly.
SniffPass can capture the passwords of the following Protocols: POP3, IMAP4, SMTP, FTP, and HTTP (basic authentication passwords).
You can use this utility to recover lost Web/FTP/Email passwords.

Download :
http://www.nirsoft.net/utils/sniffpass.zip

More Info :
http://www.nirsoft.net/utils/password_sniffer.html

Overview :
Main purpose of LCP program is user account passwords auditing and recovery in Windows NT/2000/XP/2003.
General features of this product:

* Accounts information import:
o import from local computer;
o import from remote computer;
o import from SAM file;
o import from .LC file;
o import from .LCS file;
o import from PwDump file;
o import from Sniff file;

* Passwords recovery:
o dictionary attack;
o hybrid of dictionary and brute force attacks;
o brute force attack;

* Brute force session distribution:
o sessions distribution;
o sessions combining;

* Hashes computing:
o LM and NT hashes computing by password;
o LM and NT response computing by password and server challenge.

SID&User program is SID and user names getting tool for Windows NT/2000/XP/2003.
General features of this product:

* SID getting for a given account name;
* Getting of an account name for single SID or account names for SID range.

Download :
http://www.lcpsoft.com/english/download.htm

What is Ophcrack?
Ophcrack is a free Windows password cracker based on rainbow tables.
It is a very efficient implementation of rainbow tables done by the inventors of the method.
It comes with a Graphical User Interface and runs on multiple platforms.

Features :
* » Runs on Windows, Linux/Unix, Mac OS X, …
* » Cracks LM and NTLM hashes.
* » Free tables available for Windows XP and Vista.
* » Brute-force module for simple passwords.
* » LiveCD available to simplify the cracking.
* » Loads hashes from encrypted SAM recovered from a Windows partition, Vista included.
* » Free and open source software (GPL).

Latest Release : Ophcrack 3.1.0

Download :
http://ophcrack.sourceforge.net/download.php?type=ophcrack

This removes bios password from any Dell machine.
Burn this .ISO file to make Bootable CD, and then Boot through it.

Download :
http://w13.easy-share.com/1700300491.html
http://rapidshare.com/files/112149147/del-bioboot.rar

Features :
Brutus version AET2 is the current release and includes the following authentication types :
* HTTP (Basic Authentication)
* HTTP (HTML Form/CGI)
* POP3
* FTP
* SMB
* Telnet

Other types such as IMAP, NNTP, NetBus etc are freely downloadable from this site and simply imported into your copy of Brutus. You can create your own types or use other peoples.

The current release includes the following functionality :
* Multi-stage authentication engine
* 60 simultaneous target connections
* No username, single username and multiple username modes
* Password list, combo (user/password) list and configurable brute force modes
* Highly customizable authentication sequences
* Load and resume position
* Import and Export custom authentication types as BAD files seamlessly
* SOCKS proxy support for all authentication types
* User and password list generation and manipulation functionality
* HTML Form interpretation for HTML Form/CGI authentication types
* Error handling and recovery capability inc. resume after crash/failure.

Download :
http://www.hoobie.net/brutus/brutus-download.html
http://www.insecure.in/hacktools/brutus-aet2.zip

Cain & Abel is easily one of our favourite password crackers, especially because it’s oldskool but still under development, unlike most other projects which have been abandoned as time passed.

Cain & Abel has some awesome stuff built in like native network sniffing and network password grabbing.

Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols. The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort. It covers some security aspects/weakness present in protocol’s standards, authentication methods and caching mechanisms; its main purpose is the simplified recovery of passwords and credentials from various sources, however it also ships some “non standard” utilities for Microsoft Windows users.

The latest version is faster and contains a lot of new features like APR (Arp Poison Routing) which enables sniffing on switched LANs and Man-in-the-Middle attacks.

Latest Release : Cain & Abel v4.9.26

Download :
http://www.oxid.it/downloads/ca_setup.exe

More Info :
http://www.oxid.it/cain.html

Protocol Support :
* FTP
* HTTP (Basic)
* HTTP (Form)
* IMAP
* MSSQL
* MySQL
* POP3
* SMB-NT
* SMTP
* SNMP
* SSH2
* Telnet

Dependencies :
* OpenSSL – Win32 OpenSSL package
* Libssh2

Download Bruter :
http://sourceforge.net/project/platformdownload.php?group_id=204020

More Info :
http://sourceforge.net/projects/worawita/