Due to the usage of plaintext information from the handshake as input for the encryption key used for the encryption of the rest of the session, the DiskBoss server and client disclose sensitive information like the authentication credentials to any man-in-the-middle (MiTM) listener.
[+] Capture started
[+] Captured key
Plain: WIN7SP1X64_8.3.12_00000003
SHA256: 7ff43e63d72a9e1333db866e760a03706fe3831b673200aa3ab52366257b8910
[+] Captured packet
ServerLogin_2_Data_3_1_ClientHostName_VISTASP0X86_1_UserName_admin_1_Password_admin___9___9_L!Qw
[+] Captured packet
ERR_2_Data_0__VI
