aeondave/cain-and-abel
offensive-tools/cracking/cain-and-abel/SKILL.md
Windows password recovery tool for sniffing, cracking (dictionary/brute-force/cryptanalysis), and decoding stored credentials. Use when recovering Windows hashes, cracking captured handshakes, or decoding cached credentials on Windows systems.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill cain-and-abelInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 31, 2026, 9:05 PM69.9s1 file scanned
SKILL.md
- name:
- cain-and-abel
- description:
- Windows password recovery tool for sniffing, cracking (dictionary/brute-force/cryptanalysis), and decoding stored credentials. Use when recovering Windows hashes, cracking captured handshakes, or decoding cached credentials on Windows systems.
- license:
- MIT
- compatibility:
- Windows only; GUI application; legacy tool (last updated 2014)
- author:
- AeonDave
- version:
- 1.0
Cain & Abel
Windows GUI password recovery — sniffer, hash cracker, credential decoder.
Quick Start
- Download from oxid.it (legacy) or archive
- Run as Administrator
- Select Cracker tab → Add hashes
- Right-click hash → Dictionary Attack / Brute-Force Attack / Rainbow Table
Core Features
| Feature | Purpose | |---------|---------| | Sniffer | Capture network credentials (ARP poisoning) | | Cracker | Dictionary, brute-force, cryptanalysis of hashes | | Decoders | Decode stored passwords (LSA, VNC, dialup) | | Network | ARP poisoning, route discovery | | Wireless | WEP/WPA capture and crack | | Certificate | Certificate collector via MITM |
Hash Types Supported
MD5, SHA-1, LM, NTLM, NTLMv2, MySQL, MS-SQL, Oracle, Cisco PIX/IOS, VNC, RADIUS, WPA.
Common Workflows
Crack NTLM from SAM dump:
- Cracker tab →
+→ Add NT hashes from SAM - Right-click → Dictionary Attack → point to wordlist
ARP poison + credential capture:
- Sniffer tab → Enable sniffer
- ARP tab → Add victim + gateway
- Passwords tab → view captured creds
Note: Use only on authorized systems. Cain & Abel triggers most AV.
Resources
| File | When to load |
|------|--------------|
| references/ | Hash import formats and dictionary sources |
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026