[25767] in bugtraq
Sensitive IM Security - MSN Message Sniffing
daemon@ATHENA.MIT.EDU (SeungHyun Seo)
Thu Jun 13 18:02:59 2002
Date: Thu, 13 Jun 2002 15:54:05 +0900 (KST)
From: SeungHyun Seo <s1980914@inhavision.inha.ac.kr>
To: bugtraq <bugtraq@securityfocus.com>
Message-ID: <Pine.OSF.3.95.1020613151218.779A-100000@inhavision.inha.ac.kr>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
So many security specialists warned against IM(Instant Messenger) security
before.
This is one of the proof of concept code against sensitive IM security,
named project "MSN666"
as you see, the name 'msn666' tells It's about Microsoft MSN Messenger.
yah, it was the interesting stuff of our project as a common IM.
msn666 is the simple sniffer for intercepting MSN MESSEGES on your
network.
In fact, msn666 analyzes msn message protocol for every packets and prints
msn message sessions
to your monitor, it's due to Microsoft MSN Messenger uses plain text to
communicate with.
therfore as a result, you could know "who is on the net", "who talks to
whom" and "what they say"
you could get msn666 from
http://underground.or.kr/project/msn666/msn666-1.0.0.tar.gz
++
Seunghyun Seo, Inha university Group of Research for Unix Security
[e-mail] seo@igrus.inha.ac.kr , frog@hackerslab.com
