" War."

" Episode of Hak5 is brought to you by Netflix. GoDaddy. And my little exercises with pretty pretty pink hair."

" He left on my planners -- right. Yeah. --"

" Hello and welcome Hak5 I hope your Christmas in years with excellent I'm Darren Kitchen I'm -- last night. And and we're doing by the infinite. It -- all you me you know him as the tech extraordinary times shows such as system or maybe the rectory studio. Yet you ever check out revision through web site. Like towards of their studio -- and it's just like awesome goodness and the most amazing reviews and forget that ever yet and he did it all yeah. We -- through that costs. And lacks what's gone on there."

" Oh -- neatest thing in there I've been since they've -- have been -- kind of same thing just an idea much more accelerated scale."

" What do you mean by that accelerated down in like I mean come on that's going to be pretty hardcore to put together sat through studio. For like -- what half million -- million."

" but I half million -- studio there and blah lately I've been doing a lot of you know 12510. Million dollar deals. My parents -- Francisco. And the good thing is I now have kind of a team of people help me out with it I got sales guys and actually generate everything I've got installer -- it's not just -- making K."

" Rules. Mean a couple of Internet making us his nearest approval they. I mean and -- the top servers out -- and strippers. -- Davis he's the big man he's -- can get strippers. I thought well welcome to the 10000 dollars. Here that. That set and back area and is -- and I NC. Let's I. 1000005. Million dollars cannot manage -- studios I cannot imagine. I mean is it art are you doing stuff for like you know you know local TV networks were going HD here you know what what what I mean can give -- kind of an example of what. You know typical three million dollars studio would go in you know what we're going."

" the typical three million dollar studio usually requires maybe 1015 -- days. Nice large control room full and compressed HD clips side by side video effects boxes. CG everything like that custom furniture start to finish large studio giant you know lighting groups who thought Obama's. We're not Clinton does video we're talking like the lighting and audio with that construction. Like the whole shebang. Yes a lot of them little -- their art had to say we want to build a studio here. And he -- were put to show."

" And amp amp a but. -- if if we want to put its a studio in the back. I can tell you were put the shovel that I. But wow I guess that's that's incredible to even keep an open the whole IP TVC. And keep an Apple with a view album shows that I really liked. You know act five song and it's required to vote yes of course it is. On it it's yours it's interview. After we hang up all that's rock me."

" you're actually tell -- before we they're recording about the whole. That Tekzilla fat which I must say looks quite beautiful. As someone that has had with the quite the same deadline -- you."

" I'm just saying Lowe's has the exact same product skew in every city in this country. Bricks and iceman. As they work."

" You know. We need to get. Well I mean you know we're we're trying maybe Dave could help us find there -- thinking about what I let him crystals or. You know everybody makes brick. As in the standard like red brick yeah. I want cinder block brick. Lenders that are old cinder block like the home no fault like and you Wesley yet -- like the screen -- is -- is on the TV Canada. Do you. Daryn I'm not. I -- metal and plastic plants are not much. I don't to plaster or just want Dave. Dave you know."

" I mean there's there's tons of theaters shops up -- imaginary that stuff. What does he could do is they the a cheap way would be to go out -- large sheets of plastic and then he got it over one cinder block."

" I know what he got like history -- We'll see when I'm restricted -- is the cigarette lighter. Gone -- gone okay. You know and you can actually kindness he -- and be like stacking plastic form and you can kind of make your pattern. Rises when you know it's asleep on the plastic beads and when might we mind has been blown -- featuring -- Apple and I can use this. Real. Offs on our well they've -- it's must want you here. Please don't -- Hewlett not thing yeah. The orchestra news here. But up yeah so what I mean."

" So what have you what's what's been -- like biggest installation. Yeah I mean and you can give us specifics on the names of one now what you wanna. Me an idea of what's that open what's the craziest thing you've got to play wit in the last instantly simply yet."

" Oh boy -- Well on a weekly basis I get a bunch of like 10200000. Dollar camera succumbed through the office for -- to play live. And the -- all -- visual appeal docs and but you know they always have fun with those. Panasonic Mary cam had a couple red cameras come across my table. But a lot of its been like moving treaty studios that's been a big part of that your. Every every every three company now wants to move your production facilities to another building. Civil contract does that come in and kind of move their operations in the middle nights."

" In the middle of the night just yet you know the unplug the thing you -- what's the and that's about Robin and they'd go right in no stack. The 400 people in you know over weekend she -- Whatever you want good search just write the check. That anyone at night he knows what that on the weekend transition yeah. While this starts Friday flight. Yet we can transition starts on the first Monday of that week with an email other email reminder Friday and then an apology email on Monday."

" Because everything's still down and everybody's pissed off emailing ninety."

" they can get -- TV anyway. Rock on it. So that's pretty hardcore I mean like he lied to disc everything it's all a key for the win right."

" All XT for the win a lot of them are doing you know four K files for theatrical releases stuff like that. So. And playing with one company that built box. Still under kind of in the eight for the name but they've built it for. 3-D movies to do real time dailies of their animation so what do you mean by four K. Well it's -- up -- megapixel basically. Four megapixel what you plain white TV. Twice a state and that's basically kind of cinematic preview resolution. And the treaty got the rendered out what they want to look at it in real time to see how play back since so can help mostly -- play it apparent."

" He can yeah you can play port came in real time because I'm having problems the ABC he made it better Quad Core nevermind."

" Unfortunately that. Solution most of them usually have a tacit giants that's attached to -- San attached on. He's like 24 platters than an -- pretty intense."

" Yeah I can imagine the kind of disk array it would take to mean he you're talking 4444. K. It's -- and what are we talking about how many hundreds of hard drives per minute."

" Well we're talking that the smallest solutions have 24 drives attached to them. The average one or when I just recently had. Six of those 24 drive -- Well attached to it which was nice. So and emphasis temporary storage. -- he had I got the cash if there is an off the shelf stuff here argue. Well it's all this so hard drives that tax writers controllers and video playback solutions things like that. Cool so what you're looking forward to most any -- When I'm looking forward to the most I want to see reds new cameras coming out which I'm really excited about this. There's quite a few software solutions four asset management which is the biggest problem in the industry friendly way because avid just loves to talk to final cut. Oh absolutely. Well now counted -- but nobody. Wants to work with after effects in three studio nobody can track those different things that are used in chips. That there is an -- demo. --"

" And -- anyway they're launching go ahead write that spectrum sure everybody will adopt it."

" Sure let me just put that's my laundry list is oh my god can but anyway. We all need to give a hand they ran out because he's the one that let us know -- you can act together any these solution instead of spending what."

" Thirteen and four -- at a role noticed that even if you VTR in a sad thing is yeah is. -- we've got Dave on the shelves then we're still release -- and -- that because we here. We can't. Come to some agreement on file format that we've sent them whether it's an idea how much you've already threes are cracked that's."

" Like yet listen we you'll most likely be eight B ports the yes where that next week -- your daily episode Hak5 to be in acknowledged that showroom floor. Welcome to gadget goodness all sorts of stuff will be special guest on -- well and we will probably have quite a few on adventures with a pineapple lots of vote Wi-Fi. Vendors so we promised not to now now because TV on people word. -- The -- want to be book probably are right Dave think he's from her from joining us -- Pleasure thanks for me any time let them and trust us will be calling you -- for stuff right with that SM TP yet. Are right Dave thanks a lot -- I would get -- quick break and let me get back I will be talking to you guys about how to crack MD five hashes with your graphics card. States."

" Guys I was recently reading some interest -- stuff -- researchers with Switzerland and basically what they were able to do. Was get a SSL certificate from rapid as this though which is like Verisign company. And since it -- done with MD five as the -- they were able to whip like. 200 PS threes in -- collisions. Come up with a certificate authority certificate. With the same exact MD five hash and that basically let them. Be able to -- FSL certificates were just about any domain that they could possibly want. Take over the Internet and oh my god. The sky's falling. So I thought. What better way wait to bring its into the talking about MD five hashes and in particular the new dances and it that being. Brute forcing with our graphics cards. So. In order to make this a bit more fun decided I think it's and greens over here -- gets in the kitchen and we'll make it cocktail snobs about sound. Slow it down into the theory. -- to the theory that cocktails pretty simple basically we take all the ingredients and mix them up we drink it we feel pretty -- The theory behind the MD five cracking. Listening to be honest with you guys. We've been talking not password cracking here and I'll just quickly go over those you know say like route maps from Q we could. Guess his password and I couldn't turn colonies are Antonin unicorn and get and or we can use a dictionary attack would grab up. Oxford English dictionary text file equivalent and just keep trying. Or we could use of reports takitani we talking here so and brute force attack let's imagine we've got eight character password right. And we're just gonna try it. And then we're gonna try to race and we try eight days and -- incrementally got a a and then -- you know like. And we try every possibility in between and that's distorted letters mean imagine gently. Capitals to -- numbers -- symbols. So as you might imagine it can get I don't know little time consuming south where the cool part -- I and then there's also pre computed and at least I'm gonna talk about that a little later. And that is to say we're doin' the same thing is the brute force attack except work. Writing it down for future reference to the next and when do the same kind of attack we don't have to sit there and figure out all of those different possibilities would just come welcome and you table with. Plain text that's -- Open -- arms so how does it password -- work. Well let's say on -- computer here. -- can use MD five as an example let's say his computer stores this password. In an MD five hash and when they go to law again but I'm actually sending it is. The MD five hash equivalent of my plain text password that I'm not actually transmitting my point at Patrick air and whatnot over the wires. And then it just compares this has just make sure that they looked at him and if you hashes are identical. They should be the same exact plan text right so good but about it way cool how we did that pastor well. Some bikes SQL systems we can actually just going hadn't pour that and then that's like wholeness to it but we can -- we just pull the MD five hash a lot of them SQL databases while Hulu or we could just sniff them out of the traffic we've talked about packet -- we could. Put together some filters to look for that kind of stuff. But that basically all of this is leading you to be able to do you or password cracking off line. So let's say our online cracking is actually -- you -- on the website we're -- in front of Matt's computer and we're sitting there actually going through with a brute force attack. And I don't know maybe the systems administrators and group policy is that actually set -- on policies that make sense. Where after three failed attempts at locks -- for a set amount of time. And that can be a real pain in the ass so that he knew he taken from the authority and take forever and then now it's just. It's not possible stop -- whatsoever. Offline tracking once you've got hatched we can do all of bar -- through -- against -- to see if we can come up with another plain text equivalent. I had the same exact value. -- And then it just get into a little bit about MD five and then coup. The the architecture the MD five hash algorithm designed like 1990 one's supersede and the four. And just kind of found like to be -- little insecure back in 96 and then as of 2004. And then last year. Well let's just say I hope nobody using MD five. And and the problem is with collisions and that is to say now and is the woman and we -- deer collisions and would be kind of fun to do some illustrations callers. It's rental cars with -- insurance. And that is to say if I've got two inputs that have the same output so if I've got. This and goes through. Hash function and it creates this -- and then have got something else that goes through that and creates the same one. So anyway that's that's the theory behind and have links to things that that explain a lot better than I could handle five minute segment. But just wanted to let you guys know what that is. As for the API that we're actually going to be using to get our little past crack on here with their graphics card this is going to require. Nvidia graphics cards and it uses in the a nearly PI called -- out its new. As to the eight series Nvidia graphics cards and it's basically going to allow us to use GPU to do massively parallel operations and then that's. Beautiful for what the kinds of not that we're -- trying to do here so. Well actually he was general purpose nice and -- we can be used in the power Robert GPU to be doing some interesting stuff now just with like a modified version of C. So let's go take a look are ingredients. On the -- side of things were pretty much is can these engine will but it triple -- some rom. And I think -- vodka we're also going to need pineapple juice orange juice and cranberry juice plus a splash of evil server brand remedying. -- As for actually getting our MD five cracking on. We are going to need to burst open and MD five hash and take a look at this PHP it's really simple you can use just about any other MD five. Like on windows and -- some. The -- XQ -- it there's a similar one for unix systems but basically we're gonna take. Something simple like law and we're going to create an MD five hash out of it. And we're gonna take that over here. And then we're going to use the bars WF and and this is the application that is not only going to use all of the cores of her GPU's. And then this is beautifully you can like and its -- system with like. War Nvidia to -- graphics cards. But is also going to user CPAs if you got a Quad Core system plus that I've seen upwards of like four billion. Hashed tries per second and had no right so we're gonna go ahead and fire this up and start trying to practice. And here's what we get. Was actually doing here is taking the key here and this is the plain text equivalent and that's coming up with what -- would equal. And then it's comparing it to would have to give it and saying is this it and it's not it's gonna do it again. Well it's using all of these graphics cards all of these CPU cores as you can see it's going. Really freaking fast it's pretty easy for him to use available on windows who just that's by the house that the fire characters that whether it's capitals lower case. Numbers symbols. There is actually a Linux alternative so if you want to get on your next there's even in. One that uses your Nvidia graphics cards here to do and T LM hash is the hot links of that -- asked -- to be lot of fun. As for putting together the cocktail it's pretty simple would just take."

" better rom that's triple sec now rom. -- And was accidentally will be too much but but that's okay -- Hak5 -- glasses and then little bit. Pineapple juice. Some orange juice. And that's normal laptop here. And some cranberry juice. And then just like we did with our GPU's we're just gonna shake it up -- And given a dash grenadines. And I'm gonna put. A little drawn. Never got. You really don't want --"

" Anyway if you guys have any questions about MD five cracking with the graphics cards get some suggestions for other taxi would like to see. Let me know. Also I'm open to your -- suggestions and I hope to be doing some more. Hacking in the kitchen so stay -- next time. Also a little bit of the take away here what do we do with all this we've got these insecure and the five patches. And the key to all of this is what we need to consider. Pass phrases or -- long passwords. And and that's going to -- time really and in real key to this. Is salt. So tune in next time when we do margaritas. And password -- or touched -- and what we're gonna have some salt. Yeah."

" Pretty. Yeah just let. Where going to be playing quake three. On Saturday. January 10. I can join -- we're gonna play and came. Out nineteen Q three Hak5 our. Even -- you know own -- out you know her a little bit. Yeah. If Kuerten played games she would be costs -- it. Anyway. Yes or playing quake three. Q three dot Hak5 outward. And I'd really like T you think they're sponsors Netflix. With Netflix you can -- over 90000 titles online including lots of Blu-ray titles with free shipping both ways -- home. They now have -- forty shipping centers almost all deliveries happened in just one business day. Netflix plans start at four dollars and 99 cents and as a new member you can get a note -- two week free trial membership. Check it out at www. Netflix dot com slash Hak5 and please don't forget the WWW. And next up. Kirby and I and I take a break."

" Zone and on weekends ago. I had to help my sister with a little problem. One of her friends decided to change the windows password on her login screen on her own computer. Therefore if she wasn't able to a lot about her nice expensive computer. So I found this nifty little tool which was perfect for the job on USB off crack. It's basically free nineteen inches have very forgetful users or -- you little sisters who has about threat. It's this freak -- computed password recovery Apple or password crackers depending on look at it. It's only good for windows XP and Vista in as I said it's pre -- so like Darren said. During his segment that basically means that these bring the tables are already installed with all of their patches in. Our USB off crack is gonna do is -- and read this table real quick get try to figure out what these what this plain text is for this password. It's not gonna have to go through it -- every hats every single time. So these -- the tables. Those are basically just two columns in this really really long table. Which -- is on one side and plain text on the other it's gonna take this hash and turn it into its plain text so you can -- human -- And not have -- garbled and messed up like it is for windows hashes. On Hak5 we actually have -- on the Wiki it's a really really big. Rainbow table and it could probably find out a lot of the special characters that you -- get what the smaller ones like the one that's included not -- off crack. You only need three things. For this to ride first of all you need your windows computer obviously. -- nice little one gig USB flash drive. This Wednesday gates. That can -- a huge rainbow table. Yes and you need you as the off cracked by EXE. The first thing you might have to do is format your flash drive I'm not gonna show you how to do that today but there are really easy steps on the web page where I got this twelfth rock. The second thing you need going to need to do is download the exceed aren't here PC. And you're gonna open the dot bat file from there and followed it really easy on screen instructions and trust me they are simple I was able to do it myself. Installation on here flash drive it'll only take a couple of minutes so just chill out you know relax. And while you're waiting. Once it's done you get everything your PC. In open the bios screen so you can change your boot up from windows two years USB flash strapped. Or if you have a nice little EP feel like I have here are you do with his deep she's flash drive and you're good to go out. And as soon as the rainbow table start up in the background. And they go it party found. The first two years or passwords and I take a couple more minutes to find the last few user passwords because those ones are a little bit longer. So as you can see this -- It's fast. It's reliable it's a customizable tool for anybody who needs to use it you can change around arraignment cables to I ever bigger -- you might need. It's good for your I team Ninja's but that is very forgetful users again and well my little sister at save the day is it. You can find the -- and drug clinics dot com and all off the have a link -- a nice little explanation in my son. Thanks for us this."

" I guess I just about wraps up this week's episode of Hak5 one I think you can tune in and the first episode. -- 2009. Well you're really great time thinking Dave -- for coming on to the show. And in addition we want to think. We kid poster. For this amazing. Background yet I don't know if you guys can see it but. If you can great he created this is. Which one is this I don't know what I think in Jakarta. Okay I think I'm Jane way -- I -- movies in his -- and a lot. Could be I have really you know should they scribble on a -- with -- of the sinners. I don't either is that that this line that's a defiant. I need -- nine. It I'm watch like the first half needed."

" Yeah watt spotlight on time as well. And living room."

" Okay by I think that's the origin and I think I -- them better but it's. Much quicker. So. One to let you guys know that there -- gone and an order a metric (%expletive) ton of stickers. The designs. Which he will be featuring here after he gets done putting down -- Mean that's one Alan. And a lovely evil server which fits perfectly on cell phones. Yes yeah and it's. Takes little work and I can't going to Blackberry. That's it'll -- you can make it work unlike exactly what we want to let you guys know that we are coming out with a new stickers page yeah and for everybody who has ordered a sticker. Before."

" Right in the last in the last couple of days. From this -- taping or for the next couple of days as we go to -- because we're not be here villainy thing right. In that time period just if if you want to go and do the -- nation go ahead because you'll be presented with to beautiful. Little pineapples evil server names and it -- a ticket to become men but not walls that."

" It's in addition to the regular -- in the yields are yours yours he FiOS here Sager. He buys. It button it. And then through the air and it just alluded to the fact we're going to go be going to see yes they're. About this issue really doing line or excusing not line. -- episodes from sea gas via humor world that going to be special postings. Sickness war. Alive episodes oh thanks a lot my grew worse there and also we're going to do you see yes wrap up show. War on Wednesday actors yet that's ES. Is actually the days start date where this comes out. So if you are in. Biggest war us yes. -- follow one of us on Twitter so that and let us know feel like direct message so that we can go and meet up with everybody's going to be. -- yes and wants to go ahead factory. Mindful and that. They're better job titles under here's what if passed later. Let's see some yeah watched Tekzilla. They're gonna be doing -- episodes Thursday Friday and Saturday. And also doing the episode so. Tekzilla at five feature Revision 3 shows going to see yes. Want to let you guys know that it also we will be shooting HD from C yes and from that. Point on. So. You guys ask him to come in and find it is coming I know. Yet."

" See if we can settle on a file format with the powers that be yes we've seen it -- if they don't. There. 1. And -- and -- like. --"

" Thanks for watching this week's episode of act five -- last night."

" If it's available and we -- reminded. Trust and they're a lot there. Important."

" It was circus Shana -- serviced -- when I'm pretty drunk. Which by the way have to contentment you know the these horrible horrible secret idea. You know Tekzilla sad how they use the -- that you guys -- back in the day and yeah all we didn't notice. That that's entirely my faults. I was given a weekend to build Tekzilla sets without a shop built it and so I made this except well prick stole a quick and went down and bought something close."

" That -- You have watched the show war building it right. I had so I had planned to make it look considerably different unfortunately time just made it look at but the I think it is. I learned from the best now some as -- Sauce."

" 64 bit of the room thought no don't like it love it when it."

" War."

" Episode of Hak5 is brought to you by Netflix. GoDaddy. And my little exercises with pretty pretty pink hair."

" He left on my planners -- right. Yeah. --"

" Hello and welcome Hak5 I hope your Christmas in years with excellent I'm Darren Kitchen I'm -- last night. And and we're doing by the infinite. It -- all you me you know him as the tech extraordinary times shows such as system or maybe the rectory studio. Yet you ever check out revision through web site. Like towards of their studio -- and it's just like awesome goodness and the most amazing reviews and forget that ever yet and he did it all yeah. We -- through that costs. And lacks what's gone on there."

" Oh -- neatest thing in there I've been since they've -- have been -- kind of same thing just an idea much more accelerated scale."

" What do you mean by that accelerated down in like I mean come on that's going to be pretty hardcore to put together sat through studio. For like -- what half million -- million."

" but I half million -- studio there and blah lately I've been doing a lot of you know 12510. Million dollar deals. My parents -- Francisco. And the good thing is I now have kind of a team of people help me out with it I got sales guys and actually generate everything I've got installer -- it's not just -- making K."

" Rules. Mean a couple of Internet making us his nearest approval they. I mean and -- the top servers out -- and strippers. -- Davis he's the big man he's -- can get strippers. I thought well welcome to the 10000 dollars. Here that. That set and back area and is -- and I NC. Let's I. 1000005. Million dollars cannot manage -- studios I cannot imagine. I mean is it art are you doing stuff for like you know you know local TV networks were going HD here you know what what what I mean can give -- kind of an example of what. You know typical three million dollars studio would go in you know what we're going."

" the typical three million dollar studio usually requires maybe 1015 -- days. Nice large control room full and compressed HD clips side by side video effects boxes. CG everything like that custom furniture start to finish large studio giant you know lighting groups who thought Obama's. We're not Clinton does video we're talking like the lighting and audio with that construction. Like the whole shebang. Yes a lot of them little -- their art had to say we want to build a studio here. And he -- were put to show."

" And amp amp a but. -- if if we want to put its a studio in the back. I can tell you were put the shovel that I. But wow I guess that's that's incredible to even keep an open the whole IP TVC. And keep an Apple with a view album shows that I really liked. You know act five song and it's required to vote yes of course it is. On it it's yours it's interview. After we hang up all that's rock me."

" you're actually tell -- before we they're recording about the whole. That Tekzilla fat which I must say looks quite beautiful. As someone that has had with the quite the same deadline -- you."

" I'm just saying Lowe's has the exact same product skew in every city in this country. Bricks and iceman. As they work."

" You know. We need to get. Well I mean you know we're we're trying maybe Dave could help us find there -- thinking about what I let him crystals or. You know everybody makes brick. As in the standard like red brick yeah. I want cinder block brick. Lenders that are old cinder block like the home no fault like and you Wesley yet -- like the screen -- is -- is on the TV Canada. Do you. Daryn I'm not. I -- metal and plastic plants are not much. I don't to plaster or just want Dave. Dave you know."

" I mean there's there's tons of theaters shops up -- imaginary that stuff. What does he could do is they the a cheap way would be to go out -- large sheets of plastic and then he got it over one cinder block."

" I know what he got like history -- We'll see when I'm restricted -- is the cigarette lighter. Gone -- gone okay. You know and you can actually kindness he -- and be like stacking plastic form and you can kind of make your pattern. Rises when you know it's asleep on the plastic beads and when might we mind has been blown -- featuring -- Apple and I can use this. Real. Offs on our well they've -- it's must want you here. Please don't -- Hewlett not thing yeah. The orchestra news here. But up yeah so what I mean."

" So what have you what's what's been -- like biggest installation. Yeah I mean and you can give us specifics on the names of one now what you wanna. Me an idea of what's that open what's the craziest thing you've got to play wit in the last instantly simply yet."

" Oh boy -- Well on a weekly basis I get a bunch of like 10200000. Dollar camera succumbed through the office for -- to play live. And the -- all -- visual appeal docs and but you know they always have fun with those. Panasonic Mary cam had a couple red cameras come across my table. But a lot of its been like moving treaty studios that's been a big part of that your. Every every every three company now wants to move your production facilities to another building. Civil contract does that come in and kind of move their operations in the middle nights."

" In the middle of the night just yet you know the unplug the thing you -- what's the and that's about Robin and they'd go right in no stack. The 400 people in you know over weekend she -- Whatever you want good search just write the check. That anyone at night he knows what that on the weekend transition yeah. While this starts Friday flight. Yet we can transition starts on the first Monday of that week with an email other email reminder Friday and then an apology email on Monday."

" Because everything's still down and everybody's pissed off emailing ninety."

" they can get -- TV anyway. Rock on it. So that's pretty hardcore I mean like he lied to disc everything it's all a key for the win right."

" All XT for the win a lot of them are doing you know four K files for theatrical releases stuff like that. So. And playing with one company that built box. Still under kind of in the eight for the name but they've built it for. 3-D movies to do real time dailies of their animation so what do you mean by four K. Well it's -- up -- megapixel basically. Four megapixel what you plain white TV. Twice a state and that's basically kind of cinematic preview resolution. And the treaty got the rendered out what they want to look at it in real time to see how play back since so can help mostly -- play it apparent."

" He can yeah you can play port came in real time because I'm having problems the ABC he made it better Quad Core nevermind."

" Unfortunately that. Solution most of them usually have a tacit giants that's attached to -- San attached on. He's like 24 platters than an -- pretty intense."

" Yeah I can imagine the kind of disk array it would take to mean he you're talking 4444. K. It's -- and what are we talking about how many hundreds of hard drives per minute."

" Well we're talking that the smallest solutions have 24 drives attached to them. The average one or when I just recently had. Six of those 24 drive -- Well attached to it which was nice. So and emphasis temporary storage. -- he had I got the cash if there is an off the shelf stuff here argue. Well it's all this so hard drives that tax writers controllers and video playback solutions things like that. Cool so what you're looking forward to most any -- When I'm looking forward to the most I want to see reds new cameras coming out which I'm really excited about this. There's quite a few software solutions four asset management which is the biggest problem in the industry friendly way because avid just loves to talk to final cut. Oh absolutely. Well now counted -- but nobody. Wants to work with after effects in three studio nobody can track those different things that are used in chips. That there is an -- demo. --"

" And -- anyway they're launching go ahead write that spectrum sure everybody will adopt it."

" Sure let me just put that's my laundry list is oh my god can but anyway. We all need to give a hand they ran out because he's the one that let us know -- you can act together any these solution instead of spending what."

" Thirteen and four -- at a role noticed that even if you VTR in a sad thing is yeah is. -- we've got Dave on the shelves then we're still release -- and -- that because we here. We can't. Come to some agreement on file format that we've sent them whether it's an idea how much you've already threes are cracked that's."

" Like yet listen we you'll most likely be eight B ports the yes where that next week -- your daily episode Hak5 to be in acknowledged that showroom floor. Welcome to gadget goodness all sorts of stuff will be special guest on -- well and we will probably have quite a few on adventures with a pineapple lots of vote Wi-Fi. Vendors so we promised not to now now because TV on people word. -- The -- want to be book probably are right Dave think he's from her from joining us -- Pleasure thanks for me any time let them and trust us will be calling you -- for stuff right with that SM TP yet. Are right Dave thanks a lot -- I would get -- quick break and let me get back I will be talking to you guys about how to crack MD five hashes with your graphics card. States."

" Guys I was recently reading some interest -- stuff -- researchers with Switzerland and basically what they were able to do. Was get a SSL certificate from rapid as this though which is like Verisign company. And since it -- done with MD five as the -- they were able to whip like. 200 PS threes in -- collisions. Come up with a certificate authority certificate. With the same exact MD five hash and that basically let them. Be able to -- FSL certificates were just about any domain that they could possibly want. Take over the Internet and oh my god. The sky's falling. So I thought. What better way wait to bring its into the talking about MD five hashes and in particular the new dances and it that being. Brute forcing with our graphics cards. So. In order to make this a bit more fun decided I think it's and greens over here -- gets in the kitchen and we'll make it cocktail snobs about sound. Slow it down into the theory. -- to the theory that cocktails pretty simple basically we take all the ingredients and mix them up we drink it we feel pretty -- The theory behind the MD five cracking. Listening to be honest with you guys. We've been talking not password cracking here and I'll just quickly go over those you know say like route maps from Q we could. Guess his password and I couldn't turn colonies are Antonin unicorn and get and or we can use a dictionary attack would grab up. Oxford English dictionary text file equivalent and just keep trying. Or we could use of reports takitani we talking here so and brute force attack let's imagine we've got eight character password right. And we're just gonna try it. And then we're gonna try to race and we try eight days and -- incrementally got a a and then -- you know like. And we try every possibility in between and that's distorted letters mean imagine gently. Capitals to -- numbers -- symbols. So as you might imagine it can get I don't know little time consuming south where the cool part -- I and then there's also pre computed and at least I'm gonna talk about that a little later. And that is to say we're doin' the same thing is the brute force attack except work. Writing it down for future reference to the next and when do the same kind of attack we don't have to sit there and figure out all of those different possibilities would just come welcome and you table with. Plain text that's -- Open -- arms so how does it password -- work. Well let's say on -- computer here. -- can use MD five as an example let's say his computer stores this password. In an MD five hash and when they go to law again but I'm actually sending it is. The MD five hash equivalent of my plain text password that I'm not actually transmitting my point at Patrick air and whatnot over the wires. And then it just compares this has just make sure that they looked at him and if you hashes are identical. They should be the same exact plan text right so good but about it way cool how we did that pastor well. Some bikes SQL systems we can actually just going hadn't pour that and then that's like wholeness to it but we can -- we just pull the MD five hash a lot of them SQL databases while Hulu or we could just sniff them out of the traffic we've talked about packet -- we could. Put together some filters to look for that kind of stuff. But that basically all of this is leading you to be able to do you or password cracking off line. So let's say our online cracking is actually -- you -- on the website we're -- in front of Matt's computer and we're sitting there actually going through with a brute force attack. And I don't know maybe the systems administrators and group policy is that actually set -- on policies that make sense. Where after three failed attempts at locks -- for a set amount of time. And that can be a real pain in the ass so that he knew he taken from the authority and take forever and then now it's just. It's not possible stop -- whatsoever. Offline tracking once you've got hatched we can do all of bar -- through -- against -- to see if we can come up with another plain text equivalent. I had the same exact value. -- And then it just get into a little bit about MD five and then coup. The the architecture the MD five hash algorithm designed like 1990 one's supersede and the four. And just kind of found like to be -- little insecure back in 96 and then as of 2004. And then last year. Well let's just say I hope nobody using MD five. And and the problem is with collisions and that is to say now and is the woman and we -- deer collisions and would be kind of fun to do some illustrations callers. It's rental cars with -- insurance. And that is to say if I've got two inputs that have the same output so if I've got. This and goes through. Hash function and it creates this -- and then have got something else that goes through that and creates the same one. So anyway that's that's the theory behind and have links to things that that explain a lot better than I could handle five minute segment. But just wanted to let you guys know what that is. As for the API that we're actually going to be using to get our little past crack on here with their graphics card this is going to require. Nvidia graphics cards and it uses in the a nearly PI called -- out its new. As to the eight series Nvidia graphics cards and it's basically going to allow us to use GPU to do massively parallel operations and then that's. Beautiful for what the kinds of not that we're -- trying to do here so. Well actually he was general purpose nice and -- we can be used in the power Robert GPU to be doing some interesting stuff now just with like a modified version of C. So let's go take a look are ingredients. On the -- side of things were pretty much is can these engine will but it triple -- some rom. And I think -- vodka we're also going to need pineapple juice orange juice and cranberry juice plus a splash of evil server brand remedying. -- As for actually getting our MD five cracking on. We are going to need to burst open and MD five hash and take a look at this PHP it's really simple you can use just about any other MD five. Like on windows and -- some. The -- XQ -- it there's a similar one for unix systems but basically we're gonna take. Something simple like law and we're going to create an MD five hash out of it. And we're gonna take that over here. And then we're going to use the bars WF and and this is the application that is not only going to use all of the cores of her GPU's. And then this is beautifully you can like and its -- system with like. War Nvidia to -- graphics cards. But is also going to user CPAs if you got a Quad Core system plus that I've seen upwards of like four billion. Hashed tries per second and had no right so we're gonna go ahead and fire this up and start trying to practice. And here's what we get. Was actually doing here is taking the key here and this is the plain text equivalent and that's coming up with what -- would equal. And then it's comparing it to would have to give it and saying is this it and it's not it's gonna do it again. Well it's using all of these graphics cards all of these CPU cores as you can see it's going. Really freaking fast it's pretty easy for him to use available on windows who just that's by the house that the fire characters that whether it's capitals lower case. Numbers symbols. There is actually a Linux alternative so if you want to get on your next there's even in. One that uses your Nvidia graphics cards here to do and T LM hash is the hot links of that -- asked -- to be lot of fun. As for putting together the cocktail it's pretty simple would just take."

" better rom that's triple sec now rom. -- And was accidentally will be too much but but that's okay -- Hak5 -- glasses and then little bit. Pineapple juice. Some orange juice. And that's normal laptop here. And some cranberry juice. And then just like we did with our GPU's we're just gonna shake it up -- And given a dash grenadines. And I'm gonna put. A little drawn. Never got. You really don't want --"

" Anyway if you guys have any questions about MD five cracking with the graphics cards get some suggestions for other taxi would like to see. Let me know. Also I'm open to your -- suggestions and I hope to be doing some more. Hacking in the kitchen so stay -- next time. Also a little bit of the take away here what do we do with all this we've got these insecure and the five patches. And the key to all of this is what we need to consider. Pass phrases or -- long passwords. And and that's going to -- time really and in real key to this. Is salt. So tune in next time when we do margaritas. And password -- or touched -- and what we're gonna have some salt. Yeah."

" Pretty. Yeah just let. Where going to be playing quake three. On Saturday. January 10. I can join -- we're gonna play and came. Out nineteen Q three Hak5 our. Even -- you know own -- out you know her a little bit. Yeah. If Kuerten played games she would be costs -- it. Anyway. Yes or playing quake three. Q three dot Hak5 outward. And I'd really like T you think they're sponsors Netflix. With Netflix you can -- over 90000 titles online including lots of Blu-ray titles with free shipping both ways -- home. They now have -- forty shipping centers almost all deliveries happened in just one business day. Netflix plans start at four dollars and 99 cents and as a new member you can get a note -- two week free trial membership. Check it out at www. Netflix dot com slash Hak5 and please don't forget the WWW. And next up. Kirby and I and I take a break."

" Zone and on weekends ago. I had to help my sister with a little problem. One of her friends decided to change the windows password on her login screen on her own computer. Therefore if she wasn't able to a lot about her nice expensive computer. So I found this nifty little tool which was perfect for the job on USB off crack. It's basically free nineteen inches have very forgetful users or -- you little sisters who has about threat. It's this freak -- computed password recovery Apple or password crackers depending on look at it. It's only good for windows XP and Vista in as I said it's pre -- so like Darren said. During his segment that basically means that these bring the tables are already installed with all of their patches in. Our USB off crack is gonna do is -- and read this table real quick get try to figure out what these what this plain text is for this password. It's not gonna have to go through it -- every hats every single time. So these -- the tables. Those are basically just two columns in this really really long table. Which -- is on one side and plain text on the other it's gonna take this hash and turn it into its plain text so you can -- human -- And not have -- garbled and messed up like it is for windows hashes. On Hak5 we actually have -- on the Wiki it's a really really big. Rainbow table and it could probably find out a lot of the special characters that you -- get what the smaller ones like the one that's included not -- off crack. You only need three things. For this to ride first of all you need your windows computer obviously. -- nice little one gig USB flash drive. This Wednesday gates. That can -- a huge rainbow table. Yes and you need you as the off cracked by EXE. The first thing you might have to do is format your flash drive I'm not gonna show you how to do that today but there are really easy steps on the web page where I got this twelfth rock. The second thing you need going to need to do is download the exceed aren't here PC. And you're gonna open the dot bat file from there and followed it really easy on screen instructions and trust me they are simple I was able to do it myself. Installation on here flash drive it'll only take a couple of minutes so just chill out you know relax. And while you're waiting. Once it's done you get everything your PC. In open the bios screen so you can change your boot up from windows two years USB flash strapped. Or if you have a nice little EP feel like I have here are you do with his deep she's flash drive and you're good to go out. And as soon as the rainbow table start up in the background. And they go it party found. The first two years or passwords and I take a couple more minutes to find the last few user passwords because those ones are a little bit longer. So as you can see this -- It's fast. It's reliable it's a customizable tool for anybody who needs to use it you can change around arraignment cables to I ever bigger -- you might need. It's good for your I team Ninja's but that is very forgetful users again and well my little sister at save the day is it. You can find the -- and drug clinics dot com and all off the have a link -- a nice little explanation in my son. Thanks for us this."

" I guess I just about wraps up this week's episode of Hak5 one I think you can tune in and the first episode. -- 2009. Well you're really great time thinking Dave -- for coming on to the show. And in addition we want to think. We kid poster. For this amazing. Background yet I don't know if you guys can see it but. If you can great he created this is. Which one is this I don't know what I think in Jakarta. Okay I think I'm Jane way -- I -- movies in his -- and a lot. Could be I have really you know should they scribble on a -- with -- of the sinners. I don't either is that that this line that's a defiant. I need -- nine. It I'm watch like the first half needed."

" Yeah watt spotlight on time as well. And living room."

" Okay by I think that's the origin and I think I -- them better but it's. Much quicker. So. One to let you guys know that there -- gone and an order a metric (%expletive) ton of stickers. The designs. Which he will be featuring here after he gets done putting down -- Mean that's one Alan. And a lovely evil server which fits perfectly on cell phones. Yes yeah and it's. Takes little work and I can't going to Blackberry. That's it'll -- you can make it work unlike exactly what we want to let you guys know that we are coming out with a new stickers page yeah and for everybody who has ordered a sticker. Before."

" Right in the last in the last couple of days. From this -- taping or for the next couple of days as we go to -- because we're not be here villainy thing right. In that time period just if if you want to go and do the -- nation go ahead because you'll be presented with to beautiful. Little pineapples evil server names and it -- a ticket to become men but not walls that."

" It's in addition to the regular -- in the yields are yours yours he FiOS here Sager. He buys. It button it. And then through the air and it just alluded to the fact we're going to go be going to see yes they're. About this issue really doing line or excusing not line. -- episodes from sea gas via humor world that going to be special postings. Sickness war. Alive episodes oh thanks a lot my grew worse there and also we're going to do you see yes wrap up show. War on Wednesday actors yet that's ES. Is actually the days start date where this comes out. So if you are in. Biggest war us yes. -- follow one of us on Twitter so that and let us know feel like direct message so that we can go and meet up with everybody's going to be. -- yes and wants to go ahead factory. Mindful and that. They're better job titles under here's what if passed later. Let's see some yeah watched Tekzilla. They're gonna be doing -- episodes Thursday Friday and Saturday. And also doing the episode so. Tekzilla at five feature Revision 3 shows going to see yes. Want to let you guys know that it also we will be shooting HD from C yes and from that. Point on. So. You guys ask him to come in and find it is coming I know. Yet."

" See if we can settle on a file format with the powers that be yes we've seen it -- if they don't. There. 1. And -- and -- like. --"

" Thanks for watching this week's episode of act five -- last night."

" If it's available and we -- reminded. Trust and they're a lot there. Important."

" It was circus Shana -- serviced -- when I'm pretty drunk. Which by the way have to contentment you know the these horrible horrible secret idea. You know Tekzilla sad how they use the -- that you guys -- back in the day and yeah all we didn't notice. That that's entirely my faults. I was given a weekend to build Tekzilla sets without a shop built it and so I made this except well prick stole a quick and went down and bought something close."

" That -- You have watched the show war building it right. I had so I had planned to make it look considerably different unfortunately time just made it look at but the I think it is. I learned from the best now some as -- Sauce."

" 64 bit of the room thought no don't like it love it when it."