This is my walk though of how I broke into the De-ICE.net network, level 2, disk 1.
The De-ICE.net network is on a "live PenTest CD", that creates a target(s) on which to practise penetration testing; it has an "end goal" to reach.
De-ICE.net v1.1 (1.110) {Level 1 - Disk 2}
This is my walk though of how I broke into the De-ICE.net network, level 1, disk 2.
The De-ICE.net network is on a "live PenTest CD", that creates a target(s) on which to practise penetration testing; it has an "end goal" to reach.
De-ICE.net v1.0 (1.100) {Level 1 - Disk 1}
This is my walk though of how I broke into the De-ICE.net network, level 1, disk 1.
The De-ICE.net network is on a "live PenTest CD", that creates a target(s) on which to practise penetration testing; it has an "end goal" to reach.
January 2010 - BackTrack 4 Final Is Out!
If you didn't know already, 'Backtrack 4 Final' is now out, and to celebrate its release/my way of giving back to the community, I've released a new video on how to install, update and tweak it (as requested)!
I've also applied a new template to all my posts (blog and forums), plus added a header/footer to all my videos. Note: All the links have been updated/fixed.
I've also spent a little bit longer working on: 'Man in the Middle', and, shaved off two minutes of total running time.
Installing BackTrack 4 (Final) in VirtualBox + Extra
This video shows how to install BackTrack 4 (Final) in VirtualBox, as well as applying a few tweaks and updating it. You can also use this method to install BackTrack on a real machine, just skip out the first part.
Stripping SSL + Sniffing HTTPS (SSLStrip)
This video shows that with SSL encryption, it isn't secure. Proof of this is seen by showing a web based email (Google Mail) & online bank (PayPal) password.
Man in the Middle (Ettercap, Metasploit, SBD)
By setting up a fake web site, we social engineer our target to run our exploit. The end result gives us command line access to our target's PC.
Cracking HTTP Passwords (Hydra)
A basic guide on how to use hydra to crack a http password on a 'home' router.
Cracking WiFi - WPA/WPA2 With Hidden SSID (Aircrack-ng + Airolib-ng)
How to crack a wireless network using WPA/WPA2 (PSK/AES) encryption with a connected client (as both have same method!) . Then using a pre-computed hash table which has been "pre-salted" with the ESSID for the network to get the pass-phrase.
FakeAP_pwn.[v0.1].sh - Create a Fake AP (Auto Bash Script)
I've had a go at making a bash script to automate creating a 'Fake AP' (Access Point) and 'pwn' who connects to it!
This is a bash script and a few other things to make a fake access point which is transparent (allowing target afterwards to surf the inter-webs after they have been exploited!).