" War. On the show. -- you don't procrastinate about HP's. Extracting executable packet -- when he -- Easter egg contest and special -- eighty from dual core. On their -- episode of -- It and this episode of Hak5 is brought to you by prospering course like the world's most refreshing -- click it or ticket and godaddy."

" And there on the 82 dual core you're watching Hak5. Joined with -- nightmare right special -- Daryn and -- well. Thanks for being so much for bringing. It. And -- third week and grow. She's -- becoming more. You know. It's really -- not -- her there but. And up. Season one which you importantly. I'm -- that's coming up. There there I guess we should introduce you read up top. Art and -- And it."

" A lot that's going on actually we're working on our fourth album and and yes now wherein Google -- and -- There or hip hop which is lot of fun and we -- in the middle -- and it's going really well. It would have an option is to get them close."

" That thanks. And it's not single threaded pass -- here this is through the important. How about you with with you guys."

" I just got and you look. Camera. It."

" They should put them in thank you Cali for -- while they're putting cameras and everything if you go backward and instantly on everything and you can don't camera."

" articles I can just like you know backstage recordings and the post up on YouTube with those simple little USB. Which they and I am -- check that out see if I like it pretty nifty little device. And there is just got a numbers like oh yeah."

" That's fun. And you know that was. Like the -- they can -- and reveled in it and a lot of fun is it's you know. Something about that Fox News. It's a -- right or. -- I have nine cent on accords that. New. Yeah. There it is actually one. Yeah yeah now HD. But I get -- honestly accurately. First second and because it's got user replaceable batteries. And yet is. Hello just like there's nothing that that is not more than that these these gadgets that. -- this notion that oh we'll just throw you with the Q when there will charger. -- bolts no. It real departure you know I'm -- we've seen just in the back batteries that -- in. So it's and that's only devices don't give you. My packages haven't yet -- on building solar charger. For that one up that specifically but yeah do it yourself sort cars. And cheaper for awhile there."

" Forget what -- it. It's easy for. I was looking into. Getting solar panels themselves and are actually really cheap and like just just the you know so but it's when you start getting it -- regulator batteries that. But if you -- you can get he's just it's just a big you you tell it what size you want like you know that if she. Got to -- and they give you voltage. If you're comfortable to just getting out and what it's not getting any -- anymore it's Jack it. Yeah. Excellent -- you guys tonight. If you've been playing along at home with the Easter egg contest we will have the answer to that at the end of show. Out of 230. Contestants if you will. Four one so that all all form. -- Congratulations rodent -- you -- Baby care. For her client your -- Home. So mad science and we'll just --"

" Port scientific."

" Me and you can see your daughter -- science so. Needing to -- a really interesting stuff. Ports will later on within that packet capturing and pupils yet awesome and I guess before we get too much into that though. A want to talk about the the PHP contest that we had. Last week -- the week before where it was build a procrastination. Gmail badge for. Four or of law at war you went that whatever so that people can feel it specifically people like me that are out on it always behind you can see how bog down and I am in the menu you -- like. -- here and it's like 701. Messages on red and he had no idea why and yeah. Seated at a department. -- you. You. You program like. I'm not as much placed human -- yeah. There's the there's some really cool lake we. About when he. Submissions and I have to for you today and still going through a lot more with -- really involved like. A boy Andy is actually requires -- sequel database handles small users -- like -- charts and stuff like you know how you're. Procrastinate and level is north on -- like -- should be some orally. -- hit points now again I mean is -- does it have its own social network. Yet -- dockers dot com awesome. Yes. But it wouldn't take a quick look at one of these here and I'm showing off two in particular one is by hunter and one button on and I going to give props -- line. For you know. Do we ask you at the top the file but. Basically like a lot of and they were just using the I'm status function right -- it. Was PP contests and GD. Yeah so you know great image library. Easy to get going and there we go now. The other one is is and this is what it looks like he get this is just an image that is created by. This code it -- it it is number emphasis Starr agreed to touch appear on the font there's actually. The tree that -- lottery yet on. With it so you gotta type -- that maybe we could have little smaller something because. As you can see ever have over 99 and yeah. Or maybe you can just catch up on your Gmail. This isn't this is the in -- account. Yeah mine's only at a 101 right now I'm looking for results excuses okay okay. Well okay this is the other one loses hunters and -- is -- very unique because a lot most of them had would basically. You would have to open configuration Pilar and he coupon at the very top of it you to specify your username for Gmail and your password this one. Kinda cool just passing those variables in the Orel I thought that was kind of a nice thing. Advertises you know you're -- just pop it right on your website right like that you know people do little use for. Here and down. And got that but there's ways in PHP we could just close and that would open source at. But but this pretty neat so if we take a look at the code here what's. Care. A basically. You know the index PHP is actually all the sweet little JavaScript. And there actually. -- available for this -- refugees out things he said so this is a fun one to tweak. And then it just causes me about PHP accidental dirty work. Political is you know let them what are -- here it's just the directories like it's an index PHP and we -- such hunter slash. And you put question mark. You equals using your your passwords and pass we're here. And the schools -- the very -- for scene they know it got plane we'll -- evil server found you know and when you refresh it actually shows. -- There's there's hacking your inbox there again. And we can actually change has been here to. It's. Excellent yet and that sort of look at when every time you want it. And anyway one of the things. I know that's not really inducted technical but it did want to show off through this really cool ones and I'm going through a lot more of them so we should be seeing a lot more later on. I will have all of this submissions. Posted on -- blog. Hak5 dot org and I would love seat what you guys think of them as well and you know I mentioned this in -- or on the show but that. And and so -- that you. You know big winners but everybody that is submitted and a not anymore submissions. Of a lot together. This and sending him -- ops yet to played Little League yeah I get the chirpy. They're great. Smiley face you know and on the thing is like a few because somebody's. -- it worked and then it didn't work or they don't work at the box and have been trying a windows server two excerpts and I'm just gonna take. You know. I'm just gonna it was called. That now benefit of the doubt that the code worked before you send it to me. And -- so for future contests just submit any craft you want to make a minute and then if you've got a it's. He's out this is why we don't have contest -- I'm just kidding. Coming up we are going to be taking a look at how we can extract when it's executable. From packet."

" Yours -- at Shannon and he was going on this week on in the land parties. Hey guys I just wanted to give you a little bit about this month's -- party we airplane. -- nice source yeah straight. We're playing over and ES and I Hak5 hour on Saturday may thirtieth. If you're interested in warm our games you can sign up and vote for you're favorite games -- over at Hak5 and DOS Squarespace. Dot com and I am also really want to -- and our wonderful sponsor click it or ticket. I am a personal huge supporter of the click it or ticket campaign. And if you are interested and some other information you can go over to you. An HTC eight dot find out some interesting facts and all sorts of things about the campaign click it or ticket. Couple things I wanted to mention. We all know that seat belts saves lives spends as you know only one in four Americans actually wear a seatbelt regularly. I mean come on -- only takes like thirty seconds to -- one time I've gotten into a routine just because. I almost got an accident and deer in front of the pack if I was wearing my seatbelt I could've flown out of the way now. Back in 2000 seven's seatbelts saved 15000 lies. And it could save 5000 war if those people were wearing seatbelts. During their fatal crashes. I mean it's huge importance to me and it honestly touched my heart. I really why you guys to check out this campaign -- click it or ticket at an HTC. Eight dot. Check out and that stuff. That's an interesting information. From eighty."

" So you about a possible to sniff Windiz executable. Over the wire impeachment and the middle line while eighty knows exactly as -- here with us. That's that's the basic gist -- it right is work. We're taking is for -- yes well it's not really mean in the middle right on the -- not the attacker but the lake. Now where -- network up. And -- and in the -- side right so what we're seeing is we're gonna see traffic come through and in that traffic is gonna be windows executable. And we're gonna take a peek at we're gonna extract. The standalone windows executable file out of that packet capture okay so when it comes to sniff the wire. I don't know how many times said but we love wires share. Greg -- captures is this company's doing contract is this on the net you can write it filter for you what what software -- Yeah actually can use wire shark and extracted manually. In this case of this can he's he's -- don't yet packet capture just plain and simple really. Okay so we issue I'm assuming. -- before we get into the who's -- what but why would we want to do this."

" Well for me it's that particular interest because one -- comes down I need to know. I'm what is going to do and I need to be able to develop. I network based signatures and has basic features. And so this is great for getting the network based signatures out off the door and then. I can -- the standalone binary loaded up in something like I'd or you have different sandbox environment the twenties to pull it apart. I'm the name is loaded up pulled apart and then from there."

" Who ran reverse engineering a little crack me stuff like that yet and then extract this space signatures for so this is one of those things where if you I'd like you know the you know -- Euro whatever -- Your first infected machine and large corporate network something like this year like. What is that right and you since you've got -- cap on some of these things. You get and then you can distribute that's that the IDF is the firewalls and stuff know when they see this to totally reject that executable yet I like that idea. Now. How do we go about doing this he said reason TCP -- right what other tools we need."

" Once we got our packets being captured with -- on where he's a tool called PCP extract -- and TCP extract essentially. Can pull out a number of different files. But of interest to buses and as executable in this case I'm to from the configure concede it. By the product comes with stuff like JPEG's gifts and in it in -- he's got it in Java. And what I've done is I've gone ahead and added signatures Burton to recognize. Sixteen bitten in 32 bit skew files so like the old. And that's south of the end Israelis and the guy in the new PE yeah I knew it he files okay so. -- a little bit about this header what is. You know -- see a lot of access numbers that is what what what is this right so these are the bytes that identify on the file -- so in this case when people part of binder area almost all the time he. Witnessed -- you'll -- 45 day which -- the letters and Z capital but it so it doesn't matter if this was built with -- the -- visual studio or -- it if it -- 32 executable that at the top of it right and then that's that's for the sixteen bit and that's DOS format and then quick keys you've got this four byte sequence of 5045. And -- selling hypocrite. PE PE stands for part of what's it capable but that's the format of X 2000 and is whereas on the and exits now. That. So how do I would go about doing this like. We've added that signature. What's next. Basically I've just set up a very small lab here comes we've got an XP gets the end it's gonna bomb. Kick off of an ftp session up today it is being cute. It's gonna transfer on some excusable files and we're gonna be sniffing which he she -- on -- host. Want to transfer is done. We'll let he she can extract the executable files out of I'm of the but that's pretty much it's actually a pretty simple that. But to get first that when you're -- are let's start our policy how it's done. -- Let's see. So first off we've we added BI signatures. So what I've got here in the windows guest. It's British going to transfer the -- not yet he simple simple by their course it's always accurate. So I've got a directory here on my desktop called cal and I copied out the original -- idea -- directory. A curious -- I also pack it. And without you PX on a compression in high compression which you can see here that one. Either way it's still even value -- it's still on excuse. Cracked -- so basically you're running this on your ideas file whatever. It gets you every excuse. They're probably going to see a lot of not -- excuse much like set up the sixties and stuff like that people downloading. The software and legitimate places yeah. So this kind of ties in with like. Say you've got a hosted kicks off some other kind of indicator on and so you need to investigate that if you can also see what traffic has come down there you might actually catch when he's like -- you primary. Coming down if you hadn't seen before India. And we're signatures and but yeah precisely it doubt that'll allow you to develop these pictures arts and how we transfer account we're gonna use ftp. Obama got an ftp -- and running on UBQ. And then we're just he's a standard ftp and I'm so what would usable will pick up -- first. So as you can see. Basically we're not gonna try to resolve the com domain name if there -- yet he. We're gonna listen umbrage interface happens is here as we try to capture all the bytes in the packet in Amber's gonna write the key cap. Out to this file. In the -- directory as he gets yet in might directory urinate three different directories -- is gonna hold. The files as they come up from ftp he cap is gonna hold the the files that we pull out. Right because we're seeing everything over the wire not just -- seeing me handshake on the ftp in everything that's what you -- does differentiates there's headers and say okay. Now we're looking at it with some cool. Precisely actually says those words specifically he said that the price on this case her cup. It to you there's some cute you know late that the cutesy stuff from the source can yeah. -- at installed and new and stuff like that. Okay so we've got a -- going. So let's go ahead and get our FTP session on. So we're just gonna move over to that he -- extract directory and between itself and clean directory great. And now we're ready pusher minors. So we'll upload. Three that we have. Who are so all three went through a it doesn't matter which way it's scaling now because just get up right right precisely -- packets -- So we've got we've got our key cap we can stop sniffing the so what I what I want to do first is make Andy -- of all the queen one just that we can use this -- later here it granted this isn't a realistic. Scenario you know like I'm not gonna know what miners coming down again. But I'm in this case just to verify it actually did and -- yearly monthly check the news -- came from you can maybe. Go back I mean. Unlike Schwarz for something you'd find in size but yeah. So so I'd have a very small one back one liner. On to create unique -- in -- in -- and -- files and so that's that's all well and good. Let's go ahead and it's change ownership. Real quick the the okay so now we're gonna run our keys to extract. -- specify two options to it. The first one is the output directory which is our. Extracted directories and we've mentioned earlier after top. And then the second one is to accept flag which it says what what I'll look at it. It was this is from the configuration where -- said the XQ yet so. -- well we're looking at that that which ski -- You can actually specify separate keeping files as well -- it so you had. My just my key files contain just mind JPEG files in something like that yeah as well. So we're gonna do our extract now. And it's finding files in the traffic that. Okay looks like it finished up now tell me how does it know where one file. Began in one violent and that it was pretty simple as just ftp that there are some other ftp stuff in between and we don't want -- data at the end of our files right. So. You know essentially. If you if you load up like PCP for example is in using the sequence numbers is gonna get all the packets in order a case we know that that the files can come in order like we'll have -- on this in order and memory in order. And so. In the stream you know that you start if you find the file header. You can follow that path all the way to end the file and you've reached it read that it knows him I'll that's decide. Windows file format I mean that's that's the there just like it isn't up yet alone that. Art so we've got. So we've got our files extracted -- So -- can change ownership again. And let's make -- and in the files."

" Of cool because now we're gonna check and make -- isn't out yet. Or see if they you may it may -- we did it wrong and actually added because -- made -- All right we just sent over XQ rules ASCII yeah yeah. That's that they don't watch -- again I got magic trick that I know what was it's just -- what. And in ftp that way note space is just to sort by Eric yeah again what's this. Mating. Yeah magic of editing so now that we've done it again -- buying hairy. Let's take a look at and the -- okay cool so this time everything should work then so the files automatically -- and word. This time everything should -- trust me. Okay so we've got our files. Let's go ahead and do our 11 liner on that yet."

" And generator and -- That's why would you need you know -- lieutenant. Oh right."

" Ownership and else."

" If it -- that they know it innate human. -- Yeah and the president these -- yeah it acts are okay so this time. There yeah excellent we've got any thoughts and -- so now let's compare it. So first off let's take a look at the queen and the -- Okay it's a directory are cow -- he cal UKX one you can't. Kate and then we'll take a look at current ones that the extracted one thing right thing. Okay so kind of a bigger list there and pulled out and matched couple different things but so I see here. Eight Q nine you end up at the top ICE 1890. And tango so we want 008. What -- else I -- 389 Q. And 389 Q now of course. The way that this. We the file name right. Right if we wanted to go back in the long we could tell we are in the packet captures this fire started -- maybe look around there. Mind it potentially if it came down say like via ftp or like HTTP. On the night POC's and I can get plaster or put put you know from -- PP. Additionally. A case so it looks like we wanted. Zeroed in a and then I think. Looks like for. The winner also. Okay so let's let's grab those files and bring back -- little as well since we've got the ftp either here in binary in primary again. Okay let's have -- first. Okay so. We're gonna go to the extracted directory this time here. And we're gonna -- 1234. Eight. There there ain't here yet I have no idea how can I do the same thing. Four and eight were the other ones I think -- it. So and as you notice these are popping up with the -- with the icon in depth because that's built right into the exe so hopefully it looks like we got winners. Sound check sums matched which is you know obviously good thing."

" We'll double click EX -- and that's most fun thing to do on windows right. Yeah I mean that's again help in the emails -- like law can see so there's your cut calculator and it works. Even the -- versions. And three. Now -- it's amazing that it uses that would set the wire and then -- that kind of stuff out and it's not it's executable right secret to actually do -- that's a really cool program. We're getting also I mean you can night. When you're maybe having a little Arquette -- on wireless network that an encrypted and you -- turn at a hotel. But. Furthermore what other kind of stuff can you think of doing with us Andy what what what can you expand on this."

" Well for media extension acres in once I've got the -- by. Because and I you know pull up an idea. And down and we'll take a look at it would develop signatures up to that so it because in your business this is not calculator that now where right precisely. And and so we're you know were turned find out. How people are getting in other how to keeping a foothold in any organizations that median market and but yeah I mean. It's you know think. Drift net but I -- scale theories treatment. And which will basically just same same deal if you can see at other people's web browsing sessions you can down which are -- images. That they're browsing and then kind of create equalize. Thinking here. As far as pulling down the other files except you've got X sensible framework he is murky X sensible thing where you can add your own header information put on different files."

" Yet and you know what I like about this is you take a look at some like what he used to ftp here right. And outset off some alarm bells on and -- you know lock -- systems anyway. But then there's things like fast track yet you played with that where they actually. Open up. Do you -- yet I -- anti -- stuff yet and then just dump the tax code and everything just dump the binary file right into the console yup well. Guess what they're dumping. This year year. X 47 all that there -- whatever is yep yep. That's -- executable files are gonna have that same matter. And then some potentially evil stuff if you can read this and see that connects you -- you think there's potential there that was -- maybe you could intercept that what was going through the wire and then. Use your own packer to maybe add some extra funded it and executable. Yes and maybe maybe even necessarily -- that you could -- like you to take advantage of potential contains there other opportunities conjecture and had an impact on. In in stream which. You kind of interest. Yeah -- we're gonna have that guy again because you get -- think and all sorts of great stuff I like it. And we hope you guys you and we're looking forward to your feedback on this segments that don't forget to head over Hak5 dot org lets Alex think and you gotta check it. Dual -- music. At this point they'll onion and overs NN and -- and we Turkey."

" I love trivia. Right guys this week we are bacteria are trivia question this week's trivia question is. Even dual core got -- started not a country who -- to three people from Cincinnati that intended not a cop what -- Hand to hand. The answer is in a song on lots realities the food over the dual core music dot com and check out a sample of one of the songs from Los reality. And see if you can figure out that hands. Governor had -- dot org slash trivia and enter for your chance to win a signed copies of dual cores album and my personal favorites. Lots reality. Awesome CD and dual core music dot com. And let me thank our sponsor godaddy. Get reliable secure web hosting without the long term contract got daddy's hosting plans are bigger and better than ever with 99% up time. 24 sevenths support for free and no annual commitment. Plus if you go over to revision3.com. Slash godaddy. You can check out all set and of Hak five's coupon -- or godaddy. Some restrictions apply see the website for details and -- yeah peace isn't it. The Internet at godaddy.com. Okay."

" I think it. It's just not enough to restore with fresh -- from the budget 64. Days off the calendar but you Bobby. -- right but that album and then on the five star reviews of block -- the public's -- every weekend hanging out of on the net regarding graphics shaking every hand off did not promote the only way I know so -- gonna -- palpable and it -- So I'm not on stage live -- the NASDAQ is only provocative work detained at my desk my kids dressed about what talent. Ask that this new album didn't hit it off from reality. Police have been wondering if we finish -- within that unit where you've been on development fabricated. What's up Internet. What's up Hak5. -- I've been to a couple. As they come out west of rocket before long. I went to San Diego we've waited port on him in the hardware problems noted he was the boss talked about pornography. They had come to the east coast want to see you thanks to the pot. Hottest topic rocky mountains move this that down south -- won't believe it. Scott dogged Merlin product on the street and every single stage and everything I'll grab live on the MacBook -- an expanded from Hak5 Apple freaks out a crime bought my. So -- that piece he did not board now. I think that's what the folks connect with -- why is quick pop up -- virus -- person coding. Connecting to sells these -- toppled Britain's don't optimize it himself. Unlike traveling salesman and he completes up the web spoke on. No -- thank you guys seriously I couldn't do without you god all -- you -- and financing baby on the wrapper."

" Well that about wraps up this episode I I. Do -- was awesome -- first."

" Look at an easy. To get him. We know has yet and it. Yeah -- like that I've gotten bodies that. There is coming out at Defcon yes that's the plan. And have fun as well do you couldn't tell you you're gonna -- Thanks yeah we've actually got teacher -- right now you're back there. Will be a living next. Will you -- obviously here. Yeah here. -- you can't sit copies and that's not Carolina we got invited back there was an Orlando which is an awesome. Yeah and -- there. Like music so they -- And as always the yeah and I'm sure he's not that mean well when he's feeling you NT 64. Now I I want to see it to fit together like the -- he does. -- yet to -- this idea. It's -- Irina. He's he's in our -- in. In the UK the hand but you are actually going on holiday music. Italy and like these like -- ma. Like -- your check -- For people discuss the hacker that's there ever -- It basically that are so they have some Easter -- stuff."

" we started this contest and I had no idea how how much response there was going to be with I mean we've we've got on back -- like the first season. And you know what my fault for not doing want to get we're gonna be doing more users. Where's your -- went out what was it like to -- Me yeah nutrients you 130 submissions. Of which we had one winner. And then after last episode went -- we've talked about that photography they were three more so that's. Yeah -- the thing I like the idea I -- you watch two love watcher I can learn. And it's good to be able to stretch your technolust and make it happens you know just dropped the prompt and you know I have some fun. So in don't think that this is a passive experience. Any bit because you never know what gift on the website what open port what fears of where they may have to knock it you can lead you cute -- travel. You guys wanna see how it's done yet I walk you through the entire Easter eggs I can see that and for those that didn't make it. -- But first that you want to thank one across sponsors and that is this that says. -- May fifteenth a cold front is coming nationwide cold front the the 81012. And sixteen -- cold activated in the company and to celebrate."

" There's -- massive."

" 38 foot or -- it over the water -- a Seattle."

" LA you work -- it yeah and -- check out cool the cold front dot war."

" If we can go on all the time and -- it can it choose your group on can be on on. Apple -- and with an act -- light. -- cold beer -- policies so. Where and that. The mountains turned from white to blow."

" Your -- right that but -- can already get your cold activated. Its attempts to form a fifteen."

" Yeah but make -- that's when he eight and well yeah sixteen counts so you know we're rockin' the -- twelve months."

" Tears and thank you court's response that's. So you gonna jump into the shell and that okay cool so here's how you do it basically. The -- you have starting out with RTT. Dot Hak5 or that's it now you -- for a while you know we talked about and I'm not gonna what you would so let's just get down to it yet -- find out what went free it's open it also just talked about. -- so let's just go ahead and issue -- cat RTT dot Hak5 dot org. And if you and that these when -- you go there and you -- love ASCII characters oh yep I -- they get your clue is. And you get a whole bunch of gibberish and actually have to put this in here is people were trying to brute force that ftp there's no user account associated with show. Good luck -- get that right. But -- what's important here it says orders sample from makers have pharmaceuticals they've decided to open additional factories or lied to me this great demand okay. Well the thing is if you Google. Authorities that Pittsburgh school. That's okay all of us and we got. Much efforts to articles open. An additional factories threat. You're going to find new blue. Dot com. -- and which want to do is order a sample okay now unfortunately. It high demand especially among requires. There completely out of stock okay. -- This isn't good this is okay so all along these straight on their checkpoint in their -- and this is -- it there but you actually made the next step. Now let's go back to the -- here right so we've got this this -- here that doesn't make a whole lot of sense right yeah so we're gonna do is we're gonna take that. And we're gonna pop that into and I just uses simple web based but there's Clayburg they'll do is convert rot thirteen. Which is basically. Saying give me. You know offset. Upset everything that the teachers point to play alphabet. You know rot thirteen it by suspected -- so. Evil server is part of it. You've reached -- and you -- code T take it could pop it into its special website which is act or RTT by the RTT egg in rot thirteen. Yes. I guess he what you did yeah. So he continued on -- one song entry well here we go so we Google that and we found new -- and here's what really -- it really. They had views and map that -- neck hat he's brought their -- right. An announcement that case. It's real simple dispute source and around like 1996 you're trying to get it -- some out at night all the great. Cisco with brought out here and like I keep telling -- toolbar and you know nothing to see here move along. And and right there at the very bottom we've got more accurate and hate. Could you imagine what this might be. That pack two -- And it says. There's this miles you know you get the next checkpoints yadda yadda right. Well what's also in this source here is a URL to pull the camera -- dot com. Slash images now normally I would public access or even like index file and you know keep everything all pretty. But here we go get your Q now these images and -- these these gifts not that much fun with important remember -- ones. A -- He wants -- well yeah I mean who wouldn't want to take I'll take to take a look. So this is as you might imagine and it or 2600. K. Acquired with fair use copy and it is also you don't need that when it started on right I don't know tragedy that's so beautiful. So what's important about this image and and if you watched last week's show you know that what we need to do here and this that he get this -- quick."

" I think I know."

" So you've got the -- it's not like let's go ahead and you stick side. And -- switch and -- it it's just was -- and extract. Yes yes that's source file its -- JPEG an okay we need a pass phrase now real simple we just come back for converter and we take the code from the previous checkpoint."

" Here is password."

" An area got yet set TXT we cat yes. And we have the next little bit and what's. Oh here is."

" Are you proud he's happy you're quite resourceful and her reward is this -- a case you've got -- Grace -- pop that in this thing now -- code you let you know that the final code. Is the name. Of the song it's very important so what's the song obviously and you know what it backed -- and -- because some people that it's free. And I guess it wasn't clear what quarter. But he is some people -- reinforcing. Talk about that. And that's not -- yes so anyway it lesson learned in the contest in the future yet. And that's one of the reasons why this thing -- second which got to this anyway but. I think we. And that's wrong. -- access on about that. -- was. Song -- okay so when you pass just what it is guys. Yes it's the previous thing is we've got song dog right."

" Every got. A hit record it's just. Right so what's important is not that it -- art that's not name. There's no -- no I think that right. What's important is what is -- Right in that -- And grew up in the nineties read seen or here's another little hands. It. Twenty -- and extended it it's that time in box or you know I can't congress see. So that it is support it should be more specific actions said you know the last answers -- But yet."

" You know that's that's why it."

" Various learning lots about about the way the questions that people pass on -- and -- know. -- But then and I got crack the how to know if there. Make it not not ridiculous and still counts. I think it's cool it's a good way Italy -- business."

" And funniest thing on your favorite. I find that if I don't actually practice you know what I'd do."

" Yeah."

" Some position us well and."

" I and -- A move that moment and it -- wants outdated. You can accumulate I throw it in Iraq where."

" There -- And."

" Congratulations before. You. It doesn't -- it can actually he lost. Its. What. Any. I think I mean. Hey thanks for them often."

" I'd love to come back thank you so much. --"

" Yeah I haven't next on thin man down hostage. -- don't -- Oh that. And it we will see you guys next week. Of course and your feedback to be back act I've got word it's got one I like collaborator on and on and the next -- whatever you buy. -- Quality at spotlight is stuff. And and he questions her we can -- you."

" Dual core music dot com and myspace.com slash -- or music UT back complex to our music Flickr slash -- music Twitter. Dual core music got -- right based mostly Texas search tool for yet -- when -- your hands on things. And thank you. That's so they could perhaps -- people can ask you questions about -- It's always anytime."

" And don't forget to send us your impact of right feedback -- Hak5 or the love reading reading it we get lots arrogant he's back --"

" Your I prepared directly. And anyway with all that food I mean."

" And folksonomy Carolinians do."

" Oh yeah."

" You can bring is that."

" If -- here. This."

" And I didn't listen okay."

" War. On the show. -- you don't procrastinate about HP's. Extracting executable packet -- when he -- Easter egg contest and special -- eighty from dual core. On their -- episode of -- It and this episode of Hak5 is brought to you by prospering course like the world's most refreshing -- click it or ticket and godaddy."

" And there on the 82 dual core you're watching Hak5. Joined with -- nightmare right special -- Daryn and -- well. Thanks for being so much for bringing. It. And -- third week and grow. She's -- becoming more. You know. It's really -- not -- her there but. And up. Season one which you importantly. I'm -- that's coming up. There there I guess we should introduce you read up top. Art and -- And it."

" A lot that's going on actually we're working on our fourth album and and yes now wherein Google -- and -- There or hip hop which is lot of fun and we -- in the middle -- and it's going really well. It would have an option is to get them close."

" That thanks. And it's not single threaded pass -- here this is through the important. How about you with with you guys."

" I just got and you look. Camera. It."

" They should put them in thank you Cali for -- while they're putting cameras and everything if you go backward and instantly on everything and you can don't camera."

" articles I can just like you know backstage recordings and the post up on YouTube with those simple little USB. Which they and I am -- check that out see if I like it pretty nifty little device. And there is just got a numbers like oh yeah."

" That's fun. And you know that was. Like the -- they can -- and reveled in it and a lot of fun is it's you know. Something about that Fox News. It's a -- right or. -- I have nine cent on accords that. New. Yeah. There it is actually one. Yeah yeah now HD. But I get -- honestly accurately. First second and because it's got user replaceable batteries. And yet is. Hello just like there's nothing that that is not more than that these these gadgets that. -- this notion that oh we'll just throw you with the Q when there will charger. -- bolts no. It real departure you know I'm -- we've seen just in the back batteries that -- in. So it's and that's only devices don't give you. My packages haven't yet -- on building solar charger. For that one up that specifically but yeah do it yourself sort cars. And cheaper for awhile there."

" Forget what -- it. It's easy for. I was looking into. Getting solar panels themselves and are actually really cheap and like just just the you know so but it's when you start getting it -- regulator batteries that. But if you -- you can get he's just it's just a big you you tell it what size you want like you know that if she. Got to -- and they give you voltage. If you're comfortable to just getting out and what it's not getting any -- anymore it's Jack it. Yeah. Excellent -- you guys tonight. If you've been playing along at home with the Easter egg contest we will have the answer to that at the end of show. Out of 230. Contestants if you will. Four one so that all all form. -- Congratulations rodent -- you -- Baby care. For her client your -- Home. So mad science and we'll just --"

" Port scientific."

" Me and you can see your daughter -- science so. Needing to -- a really interesting stuff. Ports will later on within that packet capturing and pupils yet awesome and I guess before we get too much into that though. A want to talk about the the PHP contest that we had. Last week -- the week before where it was build a procrastination. Gmail badge for. Four or of law at war you went that whatever so that people can feel it specifically people like me that are out on it always behind you can see how bog down and I am in the menu you -- like. -- here and it's like 701. Messages on red and he had no idea why and yeah. Seated at a department. -- you. You. You program like. I'm not as much placed human -- yeah. There's the there's some really cool lake we. About when he. Submissions and I have to for you today and still going through a lot more with -- really involved like. A boy Andy is actually requires -- sequel database handles small users -- like -- charts and stuff like you know how you're. Procrastinate and level is north on -- like -- should be some orally. -- hit points now again I mean is -- does it have its own social network. Yet -- dockers dot com awesome. Yes. But it wouldn't take a quick look at one of these here and I'm showing off two in particular one is by hunter and one button on and I going to give props -- line. For you know. Do we ask you at the top the file but. Basically like a lot of and they were just using the I'm status function right -- it. Was PP contests and GD. Yeah so you know great image library. Easy to get going and there we go now. The other one is is and this is what it looks like he get this is just an image that is created by. This code it -- it it is number emphasis Starr agreed to touch appear on the font there's actually. The tree that -- lottery yet on. With it so you gotta type -- that maybe we could have little smaller something because. As you can see ever have over 99 and yeah. Or maybe you can just catch up on your Gmail. This isn't this is the in -- account. Yeah mine's only at a 101 right now I'm looking for results excuses okay okay. Well okay this is the other one loses hunters and -- is -- very unique because a lot most of them had would basically. You would have to open configuration Pilar and he coupon at the very top of it you to specify your username for Gmail and your password this one. Kinda cool just passing those variables in the Orel I thought that was kind of a nice thing. Advertises you know you're -- just pop it right on your website right like that you know people do little use for. Here and down. And got that but there's ways in PHP we could just close and that would open source at. But but this pretty neat so if we take a look at the code here what's. Care. A basically. You know the index PHP is actually all the sweet little JavaScript. And there actually. -- available for this -- refugees out things he said so this is a fun one to tweak. And then it just causes me about PHP accidental dirty work. Political is you know let them what are -- here it's just the directories like it's an index PHP and we -- such hunter slash. And you put question mark. You equals using your your passwords and pass we're here. And the schools -- the very -- for scene they know it got plane we'll -- evil server found you know and when you refresh it actually shows. -- There's there's hacking your inbox there again. And we can actually change has been here to. It's. Excellent yet and that sort of look at when every time you want it. And anyway one of the things. I know that's not really inducted technical but it did want to show off through this really cool ones and I'm going through a lot more of them so we should be seeing a lot more later on. I will have all of this submissions. Posted on -- blog. Hak5 dot org and I would love seat what you guys think of them as well and you know I mentioned this in -- or on the show but that. And and so -- that you. You know big winners but everybody that is submitted and a not anymore submissions. Of a lot together. This and sending him -- ops yet to played Little League yeah I get the chirpy. They're great. Smiley face you know and on the thing is like a few because somebody's. -- it worked and then it didn't work or they don't work at the box and have been trying a windows server two excerpts and I'm just gonna take. You know. I'm just gonna it was called. That now benefit of the doubt that the code worked before you send it to me. And -- so for future contests just submit any craft you want to make a minute and then if you've got a it's. He's out this is why we don't have contest -- I'm just kidding. Coming up we are going to be taking a look at how we can extract when it's executable. From packet."

" Yours -- at Shannon and he was going on this week on in the land parties. Hey guys I just wanted to give you a little bit about this month's -- party we airplane. -- nice source yeah straight. We're playing over and ES and I Hak5 hour on Saturday may thirtieth. If you're interested in warm our games you can sign up and vote for you're favorite games -- over at Hak5 and DOS Squarespace. Dot com and I am also really want to -- and our wonderful sponsor click it or ticket. I am a personal huge supporter of the click it or ticket campaign. And if you are interested and some other information you can go over to you. An HTC eight dot find out some interesting facts and all sorts of things about the campaign click it or ticket. Couple things I wanted to mention. We all know that seat belts saves lives spends as you know only one in four Americans actually wear a seatbelt regularly. I mean come on -- only takes like thirty seconds to -- one time I've gotten into a routine just because. I almost got an accident and deer in front of the pack if I was wearing my seatbelt I could've flown out of the way now. Back in 2000 seven's seatbelts saved 15000 lies. And it could save 5000 war if those people were wearing seatbelts. During their fatal crashes. I mean it's huge importance to me and it honestly touched my heart. I really why you guys to check out this campaign -- click it or ticket at an HTC. Eight dot. Check out and that stuff. That's an interesting information. From eighty."

" So you about a possible to sniff Windiz executable. Over the wire impeachment and the middle line while eighty knows exactly as -- here with us. That's that's the basic gist -- it right is work. We're taking is for -- yes well it's not really mean in the middle right on the -- not the attacker but the lake. Now where -- network up. And -- and in the -- side right so what we're seeing is we're gonna see traffic come through and in that traffic is gonna be windows executable. And we're gonna take a peek at we're gonna extract. The standalone windows executable file out of that packet capture okay so when it comes to sniff the wire. I don't know how many times said but we love wires share. Greg -- captures is this company's doing contract is this on the net you can write it filter for you what what software -- Yeah actually can use wire shark and extracted manually. In this case of this can he's he's -- don't yet packet capture just plain and simple really. Okay so we issue I'm assuming. -- before we get into the who's -- what but why would we want to do this."

" Well for me it's that particular interest because one -- comes down I need to know. I'm what is going to do and I need to be able to develop. I network based signatures and has basic features. And so this is great for getting the network based signatures out off the door and then. I can -- the standalone binary loaded up in something like I'd or you have different sandbox environment the twenties to pull it apart. I'm the name is loaded up pulled apart and then from there."

" Who ran reverse engineering a little crack me stuff like that yet and then extract this space signatures for so this is one of those things where if you I'd like you know the you know -- Euro whatever -- Your first infected machine and large corporate network something like this year like. What is that right and you since you've got -- cap on some of these things. You get and then you can distribute that's that the IDF is the firewalls and stuff know when they see this to totally reject that executable yet I like that idea. Now. How do we go about doing this he said reason TCP -- right what other tools we need."

" Once we got our packets being captured with -- on where he's a tool called PCP extract -- and TCP extract essentially. Can pull out a number of different files. But of interest to buses and as executable in this case I'm to from the configure concede it. By the product comes with stuff like JPEG's gifts and in it in -- he's got it in Java. And what I've done is I've gone ahead and added signatures Burton to recognize. Sixteen bitten in 32 bit skew files so like the old. And that's south of the end Israelis and the guy in the new PE yeah I knew it he files okay so. -- a little bit about this header what is. You know -- see a lot of access numbers that is what what what is this right so these are the bytes that identify on the file -- so in this case when people part of binder area almost all the time he. Witnessed -- you'll -- 45 day which -- the letters and Z capital but it so it doesn't matter if this was built with -- the -- visual studio or -- it if it -- 32 executable that at the top of it right and then that's that's for the sixteen bit and that's DOS format and then quick keys you've got this four byte sequence of 5045. And -- selling hypocrite. PE PE stands for part of what's it capable but that's the format of X 2000 and is whereas on the and exits now. That. So how do I would go about doing this like. We've added that signature. What's next. Basically I've just set up a very small lab here comes we've got an XP gets the end it's gonna bomb. Kick off of an ftp session up today it is being cute. It's gonna transfer on some excusable files and we're gonna be sniffing which he she -- on -- host. Want to transfer is done. We'll let he she can extract the executable files out of I'm of the but that's pretty much it's actually a pretty simple that. But to get first that when you're -- are let's start our policy how it's done. -- Let's see. So first off we've we added BI signatures. So what I've got here in the windows guest. It's British going to transfer the -- not yet he simple simple by their course it's always accurate. So I've got a directory here on my desktop called cal and I copied out the original -- idea -- directory. A curious -- I also pack it. And without you PX on a compression in high compression which you can see here that one. Either way it's still even value -- it's still on excuse. Cracked -- so basically you're running this on your ideas file whatever. It gets you every excuse. They're probably going to see a lot of not -- excuse much like set up the sixties and stuff like that people downloading. The software and legitimate places yeah. So this kind of ties in with like. Say you've got a hosted kicks off some other kind of indicator on and so you need to investigate that if you can also see what traffic has come down there you might actually catch when he's like -- you primary. Coming down if you hadn't seen before India. And we're signatures and but yeah precisely it doubt that'll allow you to develop these pictures arts and how we transfer account we're gonna use ftp. Obama got an ftp -- and running on UBQ. And then we're just he's a standard ftp and I'm so what would usable will pick up -- first. So as you can see. Basically we're not gonna try to resolve the com domain name if there -- yet he. We're gonna listen umbrage interface happens is here as we try to capture all the bytes in the packet in Amber's gonna write the key cap. Out to this file. In the -- directory as he gets yet in might directory urinate three different directories -- is gonna hold. The files as they come up from ftp he cap is gonna hold the the files that we pull out. Right because we're seeing everything over the wire not just -- seeing me handshake on the ftp in everything that's what you -- does differentiates there's headers and say okay. Now we're looking at it with some cool. Precisely actually says those words specifically he said that the price on this case her cup. It to you there's some cute you know late that the cutesy stuff from the source can yeah. -- at installed and new and stuff like that. Okay so we've got a -- going. So let's go ahead and get our FTP session on. So we're just gonna move over to that he -- extract directory and between itself and clean directory great. And now we're ready pusher minors. So we'll upload. Three that we have. Who are so all three went through a it doesn't matter which way it's scaling now because just get up right right precisely -- packets -- So we've got we've got our key cap we can stop sniffing the so what I what I want to do first is make Andy -- of all the queen one just that we can use this -- later here it granted this isn't a realistic. Scenario you know like I'm not gonna know what miners coming down again. But I'm in this case just to verify it actually did and -- yearly monthly check the news -- came from you can maybe. Go back I mean. Unlike Schwarz for something you'd find in size but yeah. So so I'd have a very small one back one liner. On to create unique -- in -- in -- and -- files and so that's that's all well and good. Let's go ahead and it's change ownership. Real quick the the okay so now we're gonna run our keys to extract. -- specify two options to it. The first one is the output directory which is our. Extracted directories and we've mentioned earlier after top. And then the second one is to accept flag which it says what what I'll look at it. It was this is from the configuration where -- said the XQ yet so. -- well we're looking at that that which ski -- You can actually specify separate keeping files as well -- it so you had. My just my key files contain just mind JPEG files in something like that yeah as well. So we're gonna do our extract now. And it's finding files in the traffic that. Okay looks like it finished up now tell me how does it know where one file. Began in one violent and that it was pretty simple as just ftp that there are some other ftp stuff in between and we don't want -- data at the end of our files right. So. You know essentially. If you if you load up like PCP for example is in using the sequence numbers is gonna get all the packets in order a case we know that that the files can come in order like we'll have -- on this in order and memory in order. And so. In the stream you know that you start if you find the file header. You can follow that path all the way to end the file and you've reached it read that it knows him I'll that's decide. Windows file format I mean that's that's the there just like it isn't up yet alone that. Art so we've got. So we've got our files extracted -- So -- can change ownership again. And let's make -- and in the files."

" Of cool because now we're gonna check and make -- isn't out yet. Or see if they you may it may -- we did it wrong and actually added because -- made -- All right we just sent over XQ rules ASCII yeah yeah. That's that they don't watch -- again I got magic trick that I know what was it's just -- what. And in ftp that way note space is just to sort by Eric yeah again what's this. Mating. Yeah magic of editing so now that we've done it again -- buying hairy. Let's take a look at and the -- okay cool so this time everything should work then so the files automatically -- and word. This time everything should -- trust me. Okay so we've got our files. Let's go ahead and do our 11 liner on that yet."

" And generator and -- That's why would you need you know -- lieutenant. Oh right."

" Ownership and else."

" If it -- that they know it innate human. -- Yeah and the president these -- yeah it acts are okay so this time. There yeah excellent we've got any thoughts and -- so now let's compare it. So first off let's take a look at the queen and the -- Okay it's a directory are cow -- he cal UKX one you can't. Kate and then we'll take a look at current ones that the extracted one thing right thing. Okay so kind of a bigger list there and pulled out and matched couple different things but so I see here. Eight Q nine you end up at the top ICE 1890. And tango so we want 008. What -- else I -- 389 Q. And 389 Q now of course. The way that this. We the file name right. Right if we wanted to go back in the long we could tell we are in the packet captures this fire started -- maybe look around there. Mind it potentially if it came down say like via ftp or like HTTP. On the night POC's and I can get plaster or put put you know from -- PP. Additionally. A case so it looks like we wanted. Zeroed in a and then I think. Looks like for. The winner also. Okay so let's let's grab those files and bring back -- little as well since we've got the ftp either here in binary in primary again. Okay let's have -- first. Okay so. We're gonna go to the extracted directory this time here. And we're gonna -- 1234. Eight. There there ain't here yet I have no idea how can I do the same thing. Four and eight were the other ones I think -- it. So and as you notice these are popping up with the -- with the icon in depth because that's built right into the exe so hopefully it looks like we got winners. Sound check sums matched which is you know obviously good thing."

" We'll double click EX -- and that's most fun thing to do on windows right. Yeah I mean that's again help in the emails -- like law can see so there's your cut calculator and it works. Even the -- versions. And three. Now -- it's amazing that it uses that would set the wire and then -- that kind of stuff out and it's not it's executable right secret to actually do -- that's a really cool program. We're getting also I mean you can night. When you're maybe having a little Arquette -- on wireless network that an encrypted and you -- turn at a hotel. But. Furthermore what other kind of stuff can you think of doing with us Andy what what what can you expand on this."

" Well for media extension acres in once I've got the -- by. Because and I you know pull up an idea. And down and we'll take a look at it would develop signatures up to that so it because in your business this is not calculator that now where right precisely. And and so we're you know were turned find out. How people are getting in other how to keeping a foothold in any organizations that median market and but yeah I mean. It's you know think. Drift net but I -- scale theories treatment. And which will basically just same same deal if you can see at other people's web browsing sessions you can down which are -- images. That they're browsing and then kind of create equalize. Thinking here. As far as pulling down the other files except you've got X sensible framework he is murky X sensible thing where you can add your own header information put on different files."

" Yet and you know what I like about this is you take a look at some like what he used to ftp here right. And outset off some alarm bells on and -- you know lock -- systems anyway. But then there's things like fast track yet you played with that where they actually. Open up. Do you -- yet I -- anti -- stuff yet and then just dump the tax code and everything just dump the binary file right into the console yup well. Guess what they're dumping. This year year. X 47 all that there -- whatever is yep yep. That's -- executable files are gonna have that same matter. And then some potentially evil stuff if you can read this and see that connects you -- you think there's potential there that was -- maybe you could intercept that what was going through the wire and then. Use your own packer to maybe add some extra funded it and executable. Yes and maybe maybe even necessarily -- that you could -- like you to take advantage of potential contains there other opportunities conjecture and had an impact on. In in stream which. You kind of interest. Yeah -- we're gonna have that guy again because you get -- think and all sorts of great stuff I like it. And we hope you guys you and we're looking forward to your feedback on this segments that don't forget to head over Hak5 dot org lets Alex think and you gotta check it. Dual -- music. At this point they'll onion and overs NN and -- and we Turkey."

" I love trivia. Right guys this week we are bacteria are trivia question this week's trivia question is. Even dual core got -- started not a country who -- to three people from Cincinnati that intended not a cop what -- Hand to hand. The answer is in a song on lots realities the food over the dual core music dot com and check out a sample of one of the songs from Los reality. And see if you can figure out that hands. Governor had -- dot org slash trivia and enter for your chance to win a signed copies of dual cores album and my personal favorites. Lots reality. Awesome CD and dual core music dot com. And let me thank our sponsor godaddy. Get reliable secure web hosting without the long term contract got daddy's hosting plans are bigger and better than ever with 99% up time. 24 sevenths support for free and no annual commitment. Plus if you go over to revision3.com. Slash godaddy. You can check out all set and of Hak five's coupon -- or godaddy. Some restrictions apply see the website for details and -- yeah peace isn't it. The Internet at godaddy.com. Okay."

" I think it. It's just not enough to restore with fresh -- from the budget 64. Days off the calendar but you Bobby. -- right but that album and then on the five star reviews of block -- the public's -- every weekend hanging out of on the net regarding graphics shaking every hand off did not promote the only way I know so -- gonna -- palpable and it -- So I'm not on stage live -- the NASDAQ is only provocative work detained at my desk my kids dressed about what talent. Ask that this new album didn't hit it off from reality. Police have been wondering if we finish -- within that unit where you've been on development fabricated. What's up Internet. What's up Hak5. -- I've been to a couple. As they come out west of rocket before long. I went to San Diego we've waited port on him in the hardware problems noted he was the boss talked about pornography. They had come to the east coast want to see you thanks to the pot. Hottest topic rocky mountains move this that down south -- won't believe it. Scott dogged Merlin product on the street and every single stage and everything I'll grab live on the MacBook -- an expanded from Hak5 Apple freaks out a crime bought my. So -- that piece he did not board now. I think that's what the folks connect with -- why is quick pop up -- virus -- person coding. Connecting to sells these -- toppled Britain's don't optimize it himself. Unlike traveling salesman and he completes up the web spoke on. No -- thank you guys seriously I couldn't do without you god all -- you -- and financing baby on the wrapper."

" Well that about wraps up this episode I I. Do -- was awesome -- first."

" Look at an easy. To get him. We know has yet and it. Yeah -- like that I've gotten bodies that. There is coming out at Defcon yes that's the plan. And have fun as well do you couldn't tell you you're gonna -- Thanks yeah we've actually got teacher -- right now you're back there. Will be a living next. Will you -- obviously here. Yeah here. -- you can't sit copies and that's not Carolina we got invited back there was an Orlando which is an awesome. Yeah and -- there. Like music so they -- And as always the yeah and I'm sure he's not that mean well when he's feeling you NT 64. Now I I want to see it to fit together like the -- he does. -- yet to -- this idea. It's -- Irina. He's he's in our -- in. In the UK the hand but you are actually going on holiday music. Italy and like these like -- ma. Like -- your check -- For people discuss the hacker that's there ever -- It basically that are so they have some Easter -- stuff."

" we started this contest and I had no idea how how much response there was going to be with I mean we've we've got on back -- like the first season. And you know what my fault for not doing want to get we're gonna be doing more users. Where's your -- went out what was it like to -- Me yeah nutrients you 130 submissions. Of which we had one winner. And then after last episode went -- we've talked about that photography they were three more so that's. Yeah -- the thing I like the idea I -- you watch two love watcher I can learn. And it's good to be able to stretch your technolust and make it happens you know just dropped the prompt and you know I have some fun. So in don't think that this is a passive experience. Any bit because you never know what gift on the website what open port what fears of where they may have to knock it you can lead you cute -- travel. You guys wanna see how it's done yet I walk you through the entire Easter eggs I can see that and for those that didn't make it. -- But first that you want to thank one across sponsors and that is this that says. -- May fifteenth a cold front is coming nationwide cold front the the 81012. And sixteen -- cold activated in the company and to celebrate."

" There's -- massive."

" 38 foot or -- it over the water -- a Seattle."

" LA you work -- it yeah and -- check out cool the cold front dot war."

" If we can go on all the time and -- it can it choose your group on can be on on. Apple -- and with an act -- light. -- cold beer -- policies so. Where and that. The mountains turned from white to blow."

" Your -- right that but -- can already get your cold activated. Its attempts to form a fifteen."

" Yeah but make -- that's when he eight and well yeah sixteen counts so you know we're rockin' the -- twelve months."

" Tears and thank you court's response that's. So you gonna jump into the shell and that okay cool so here's how you do it basically. The -- you have starting out with RTT. Dot Hak5 or that's it now you -- for a while you know we talked about and I'm not gonna what you would so let's just get down to it yet -- find out what went free it's open it also just talked about. -- so let's just go ahead and issue -- cat RTT dot Hak5 dot org. And if you and that these when -- you go there and you -- love ASCII characters oh yep I -- they get your clue is. And you get a whole bunch of gibberish and actually have to put this in here is people were trying to brute force that ftp there's no user account associated with show. Good luck -- get that right. But -- what's important here it says orders sample from makers have pharmaceuticals they've decided to open additional factories or lied to me this great demand okay. Well the thing is if you Google. Authorities that Pittsburgh school. That's okay all of us and we got. Much efforts to articles open. An additional factories threat. You're going to find new blue. Dot com. -- and which want to do is order a sample okay now unfortunately. It high demand especially among requires. There completely out of stock okay. -- This isn't good this is okay so all along these straight on their checkpoint in their -- and this is -- it there but you actually made the next step. Now let's go back to the -- here right so we've got this this -- here that doesn't make a whole lot of sense right yeah so we're gonna do is we're gonna take that. And we're gonna pop that into and I just uses simple web based but there's Clayburg they'll do is convert rot thirteen. Which is basically. Saying give me. You know offset. Upset everything that the teachers point to play alphabet. You know rot thirteen it by suspected -- so. Evil server is part of it. You've reached -- and you -- code T take it could pop it into its special website which is act or RTT by the RTT egg in rot thirteen. Yes. I guess he what you did yeah. So he continued on -- one song entry well here we go so we Google that and we found new -- and here's what really -- it really. They had views and map that -- neck hat he's brought their -- right. An announcement that case. It's real simple dispute source and around like 1996 you're trying to get it -- some out at night all the great. Cisco with brought out here and like I keep telling -- toolbar and you know nothing to see here move along. And and right there at the very bottom we've got more accurate and hate. Could you imagine what this might be. That pack two -- And it says. There's this miles you know you get the next checkpoints yadda yadda right. Well what's also in this source here is a URL to pull the camera -- dot com. Slash images now normally I would public access or even like index file and you know keep everything all pretty. But here we go get your Q now these images and -- these these gifts not that much fun with important remember -- ones. A -- He wants -- well yeah I mean who wouldn't want to take I'll take to take a look. So this is as you might imagine and it or 2600. K. Acquired with fair use copy and it is also you don't need that when it started on right I don't know tragedy that's so beautiful. So what's important about this image and and if you watched last week's show you know that what we need to do here and this that he get this -- quick."

" I think I know."

" So you've got the -- it's not like let's go ahead and you stick side. And -- switch and -- it it's just was -- and extract. Yes yes that's source file its -- JPEG an okay we need a pass phrase now real simple we just come back for converter and we take the code from the previous checkpoint."

" Here is password."

" An area got yet set TXT we cat yes. And we have the next little bit and what's. Oh here is."

" Are you proud he's happy you're quite resourceful and her reward is this -- a case you've got -- Grace -- pop that in this thing now -- code you let you know that the final code. Is the name. Of the song it's very important so what's the song obviously and you know what it backed -- and -- because some people that it's free. And I guess it wasn't clear what quarter. But he is some people -- reinforcing. Talk about that. And that's not -- yes so anyway it lesson learned in the contest in the future yet. And that's one of the reasons why this thing -- second which got to this anyway but. I think we. And that's wrong. -- access on about that. -- was. Song -- okay so when you pass just what it is guys. Yes it's the previous thing is we've got song dog right."

" Every got. A hit record it's just. Right so what's important is not that it -- art that's not name. There's no -- no I think that right. What's important is what is -- Right in that -- And grew up in the nineties read seen or here's another little hands. It. Twenty -- and extended it it's that time in box or you know I can't congress see. So that it is support it should be more specific actions said you know the last answers -- But yet."

" You know that's that's why it."

" Various learning lots about about the way the questions that people pass on -- and -- know. -- But then and I got crack the how to know if there. Make it not not ridiculous and still counts. I think it's cool it's a good way Italy -- business."

" And funniest thing on your favorite. I find that if I don't actually practice you know what I'd do."

" Yeah."

" Some position us well and."

" I and -- A move that moment and it -- wants outdated. You can accumulate I throw it in Iraq where."

" There -- And."

" Congratulations before. You. It doesn't -- it can actually he lost. Its. What. Any. I think I mean. Hey thanks for them often."

" I'd love to come back thank you so much. --"

" Yeah I haven't next on thin man down hostage. -- don't -- Oh that. And it we will see you guys next week. Of course and your feedback to be back act I've got word it's got one I like collaborator on and on and the next -- whatever you buy. -- Quality at spotlight is stuff. And and he questions her we can -- you."

" Dual core music dot com and myspace.com slash -- or music UT back complex to our music Flickr slash -- music Twitter. Dual core music got -- right based mostly Texas search tool for yet -- when -- your hands on things. And thank you. That's so they could perhaps -- people can ask you questions about -- It's always anytime."

" And don't forget to send us your impact of right feedback -- Hak5 or the love reading reading it we get lots arrogant he's back --"

" Your I prepared directly. And anyway with all that food I mean."

" And folksonomy Carolinians do."

" Oh yeah."

" You can bring is that."

" If -- here. This."

" And I didn't listen okay."