11:23 Haha what?

Whenever I am arp spoofing it kills my internet on the target machine. (Not sure about other machines) How do I fix this.

Can anyone please tell if Ettercap is a legit (=safe) tool for pentesting? Would it be possible to cause any harm with it beyond your knowledge, like spreading viruses or worms in a otherwise "clean" environment?

In other words, is it itself a safe/clean application to use professionally?

I am referring to normal usage, without implementing any harmful code myself, where it only works as a sniffer.

best hack tools at SOFTWAREFORYOU(dot)TK

0:00

@acdcgreatestbandever Well it's not really a downside. It isn't that hard the connect to protected wifi, because you can crack WPA and WEP passwords. Also a Man-in-the-Middle attacks would be smarter by manually sniffing out the info rather than a Trojan, because most people are smart enough to have an antivirus, so it would be detected easily.

i couldn't help but notice your shirt.

i happen to like LDAP! but, you know. openldap's implementation.

Holy fuck, SKIP ALL THAT BULLSHIT AT THE START. Like, the first 7 minutes. Thanks.

@theoriginalfatdonkey fuck you i love it when they talkz

@IAMGraphicDesign It's a EEEPC.

RIP Matt :( (not dead, but you know, no more hak5)

Darren is a pretty cool guy. He has drinks in his hair and doesn't afraid of anything.

The downside of all of this is that you need to be connected to the network in order to intercept trafffic on the sniffer. Sure enough its easy when you can go to a coffee shop with an unsecured wireless network and ARP spoof in then use SSL Strip from there. Even by using a secure VPN tunnel with SSH since you have access to the network already why not just inject them with a keylogger to grab password information from VPN tunnel passively?

with ettercap it is totaly awome

love ssl strips

Darren is an alcoholic. Drinking during filming, yikes. Coca cola > Booze.

@pulseforce I <3 booze!!!

i love the smell of packets in the morning :D XD

Arpspoof keeps telling me that It can arp the target. I looked at the FAQ and it said that you must be on the same subnet as your target... what exactly does that mean? I never understood using NMap to scan different subnets. And I really don't know what a subnet is. Ahh!

Gotta love Darren's ability to make learning fun! :D Awesome segment, he is now my favorite role model. hi5 to hak5! =) Keep up the awesome work!!!

Pouring your drink on your Head Darren F***ing greatness!!!

snub's facial expressions are priceless after the rum on head...

rum on head > shoe on head.

yo what kinda laptops do u guys use....I've been watching quite a lot of ur videos and ur laptops dont look like a piece of junk....

@Bloodyfisted use the hp dv6000 pavilion entertainment pc if u want a cheap laptop with packet injection supporting capabilities. nno worries with that buy

Hey, why didn't you use ettercap for mitm? It's a lot easier :)

if i will went to a coffee shop and i saw Darren i would sit next to him! and watch him hacking

Hi, i was wondering if someone could help me in solving this problem i have with SSLstrip

When i run the SSLstrip script it gives me the following error:

ImportError: No module named StrippingProxy

I'm using Linux Ubuntu

thanks in adavance

Hi Darren ! You would be happy to know that I am designing my school research project based on your vidz. So you like a real inspiration for me !

Also, please try to simulate a honey pot thingy for catching the bad guys (even if we are one ourselves) . You are free to choose an example. And, if possible someday please show us how to use SNORT.

haha sending a ping flood to a computer lmao you think thats enough to make a denial of service on a updated windows xp sp3 system ur wasted man, and the computer probably have something like avast that will block ur ip before its even reaches the system.. let me think ur using like cmd , goodbye v3, or some useless perl exploit to ping flood hahahhaha ur funny man excuse my english

Haha i scripted a custum frware for my routher if you try to hack it i will know ur ip addres and ull be dead.... I will report you and then i send you a ping flood......

Can't you just use ettercap?

isnt it much easier just to use ettercap's ssl feature?

Hey Darren I don't know if you willing to answer any questions, but I tried this on my home network and it seems to fail for me when I start arpspoof (It kills all networking). I'm running BT4 on a virtual machine bridged to a wireless net card.

LMFAOO freeze-pop cool!

cool stuff.

Sup Darren doing a good job.. keep it up

she so hwat does she have a man ????

use to do mitm at the school network.. fun stuff... studied computer technology... <3

soco + packets = score

mmmmmm packets

I eat your packets for breakfast! nom nom!

Woo, Welcome back WiFi - love this show!

i own a pc store and diff lcds from different screens work... i've put a toshiba 17" lcd into a macbook pro 17" as long as the connectors are the same thats all you need :/ we've done a few hundred screen replacements. its easy for the most part :/

LOL DArren your SExy and you crack me up - OOP

damn skippy

Only if we could do that...sigh -milliseconds later-

lets do just that

Win, I just learned a new word for less than/greater than.. Wakka.. :)

wakka wakka wakka wakka *power pellet sound*

Great Episode. Im glad to see that you still like the shirt i sent.

you didnt send that shirt did you. Dont lie!!!

Yes i sure did. in one of the episodes Darren said it would be cool if he had a shirt that said F*CK LDAP so i had it made and shipped to him.

what episode is that? sorry for doubting you, its just most people online are jackasses who would lie about this stuff.

Mike, thanks a lot! I love this shirt. It really says it all. You're the best! I've had others ask me where they might get one. Did you happen to save the design on customink?

Yes Darren i still have it saved on their site. feel free to message me if you want a copy of it or whatever,

thanks.

Well that's why you ALLWAYS have to check the certificate from the little lock in the bottom of every browser, and ensure that the certificate is valid for the domain...

Darren! booze in the cup before the coke! silly.

lol showing how to capture arp packets from a ssl connection on a wireless LAN. but using a wired eth0 wtf lol. Very nice video tho you help grow my brain and I thank you for it

best episode from hak5 ever

This show fucking rocks!

great show

keep 'em coming

can you guys do something relative to honeypots; like how you would set one up and everything that you can moniter with one setup

that would be really awesome =D

thanks for all the vids

5/5

miauw LOOL

greatscott

This one was really great =D

was this vid compressed for size, its not as good quality, still excellent info, great as always