" Wow."

" I'm your wouldn't marry that nation's second oldest college have a little fun with the wireless network which is surprisingly secure. And up on today's episode of Hak5 minutes following series we're gonna be exploiting this network and its users. Where should I say. -- similar -- network. My name's Darren Kitchen you're watching Hak5."

" Yeah hi this got you by the united states air force the fly and domain dot com got a great idea -- all starts with degree domain. Well welcome back five my name is Darren Kitchen I'm Shannon. And I met last night and this is your kitten and puppy review -- show tonight we have a fabulous -- net we will be reviewing. In that right it is indeed it's a turtle shell. She's very very Loudon. And yet. Why don't want to bring our first subject up yacht. This is B cap we will be marching today -- not only lasers but. But I think we're actually gonna get her -- compressed. When you say. She's she's just -- Santa happy couple flux capacitor idea but I think if we just you know kinda. Surgically attached it to her ass you know you can time travel through which happens took her camera -- ones -- work out I think it's this is. -- It's nature quite ferocious. She's a month. Now this I was about hacking an IT and stuff like that so of course we have. Fun hacking stuff being guys this week we're gonna be taking over the William and Mary network. Except that I -- the lawyers told me that that would be a bad idea through the simulated. And all of that we have lawyers. And which means when you see the Daryn Wi-Fi and CW. Not doing anything bad yet here on your family vacation and and you happen via coffee shop and there's just on outside probably best around -- You know I think it's awesome that the Williamsburg. Strictly symbol is -- Apple because it's the international sign for welcome. I drive by that time like all the time and like. What's with the Virginia is for -- Virginia -- for loggers. That your see I would think we're doing that and we gotta -- and yes it yet. It's the YYU. Yeah because I'm the strongest of all the Hak5 ago. Look at look at these prolonged and hacking -- you're not backward and I am so important you would architecture you have -- the job easy. You foul. At a that'll happen and what else is gone. I answered it and it cut you off like a month. Yeah we don't have. Although no dairy farmer there -- and hold on for. Off on his little adventures and I'm sure he's going and another one where -- film way too much and you want you won't work either. Well why don't you think I'm in North Carolina or no delete the footage of a particular segment -- yeah and I mean it's totally like a my drink iMac had. Because I believe that's and last episode we did a segment with. With would Jason Apple bomb and we would -- lauded. He seven or nineteen inch LCD needed a screen and we've built into the whole thing this came out great. And -- all of the support material that's gonna use. To supplement the segment and I did not. It because we got this new camera and a pop if card and I forgot there was footage -- that would format that so yeah I don't blame. Because I mean idiots and I'm sorry that the last segment of the role that we should across this bring so they're gonna have this earth and you."

" Yeah there's a -- in your eyes. She had to and we'll -- our. Com -- you have a broken -- Yeah. And if I open it up one day and I was like what's this there's a little planet -- Acer what happens in you know -- I don't lake leaving in the middle of our -- and sat for anything don't leave it is actually for some ready walking on top of it like throw a camera down -- And that. Does like. What's the worst that is and -- an an end users on -- warranty on an issue of science and and and this lady called means that it was gonna -- nine bucks because it was -- issue. Now let me say hey I would have a problem with it if I knew how it happened right if I knew it was my thought I'd be like okay. -- just about. I want for like fifty bucks off eBay and yeah try to replace it myself hopefully break -- if I do."

" Oh well we'll show you guys how to actually replace the screen I'm looking to do the same thing and T sixty for IBM and I -- just it's a ten by seven and I need Ramirez so. And look to upgrade now. There's panel different public that you gotta be concerned about but you're in song touch screen. Machine."

" Well this and Obama I would do would be able that we have under adjacent against there -- I'll add them again and again. Problem solves that comes or circle wrong. I messy cleanup a vicious cycle it. Enjoy the show."

" Yeah. It's pretty well diet that's ridiculous. They did want to research so it turns out you can lose a lot early on as you can see. -- Its -- anger actually the best. However I'm sure the world are registered pre -- I can't no I'm motorists are resolved I 01 I put picture looked okay sure moron. -- Pop and I don't -- costs domain registration and all all the yes."

" dot coms from less than ten bucks without -- up selling. Reseller dedicated servers received panel and killer DPS -- with root access domain dot com is the place to go. Next time you're looking to start a website or build your new massively multi skilled side business. Best of all other offering Hak5 -- sweet deals on domain names private registrations and web hosting. Just -- domain dot com and use coupon code Hak5 at H a K five -- check out to get 15%. Off your order. Got a great idea it all starts with a great domain. Domain dot com."

" Lately we've been talking a lot about virtual private networks or VPN as we've talked about setting up PP TP servers on windows and Linux we didn't talk about setting up SS LV PN servers -- bit platforms. And that led me to use realization that we have not talked about as a cell -- here on the show. And because it's warm we have because it is such a cool tool and I think it really ties in with. VPN series in the sense that it's important to emphasize what it is that we are protecting ourselves from. When we tunnel -- traffic encrypted traffic what have you it's important to no -- the black -- side of this is. And this is actually tool they came out of black hat this here by a hacker by the name of moxie Merlin spike and I would love to demo it for you guys today. I think it is so very cool. And it is just one of these. Tools you need to having arsenal when every doing man in the middle attack and we've talked about being in the middle attacks -- Pineapples. Land and among key great fund schools were actually going to be using some software here today. To do all of this. So you know if you just got that PC and the network just you know load up your favorite. It -- with iPhone hack tools and actually using. Backtrack for here. And and that should get -- so. Out basically what this is going to allow us to do. Is once we have -- in the middle with our notebook here in between our target laptop and in the routers on the network. Is. Typically when we do this we start sniffing out and we try to get all of you fund passes so we can what happens when somebody used to. An asset sales site and we've said this time and time again it's a great way to protect yourself. But this is actually going to allow us to strip out the -- itself on our -- side so that we can see their password when they try to log into for example banking site. And this is again why you once you rather than rely on. The on the SSL connection. You or -- your web mail your bank site whenever I go ahead and encrypt everything just tunnel it through instead. So let's go ahead and take a look at what we're going to need to get this set up so as I said I -- here in. Backtrack. Land. I believe I've gone -- set myself up here on the network so real quick I'm just gonna do a little. And maps scan and see who my neighbors. Are so we've -- pretzel target here and it's 1010 O 159. A beautiful laptop and and less stock. With that can be the perfect for a demonstration here we're gonna initiate a man in the middle we're gonna run as to -- but what else are we gonna need to get all that set up. Prison while we're gonna need to modify our IP tables we are going to need a little are spoofing cash -- on on. And we're gonna -- in python so go ahead and make sure you have all that. And when we get back and justice -- will go ahead and put it all together but first let's think the united states air force."

" So let's go ahead and -- PC in the forwarding -- To to do so let's just take a look at this file here in slash -- Net access. -- that's backwards excess. Net. I PV four. And its IP underscore forward. Can we can see it's set to zero I excellent go ahead and change that. 21 -- in a nano led or revise or whatever. Just go ahead and use a single walk rather than double walker. To go ahead replace that with one in slash rock. Says its net I PV four. I. All right so -- take a look at that again it is set to one so we are going and forwarding IP. Next thing we need to do is have a little bit of fun with IP tables so let's go and issue IP tables. -- he for the table who want and we wanna adjust our Nat table. Known address translation -- to go ahead and -- add AM rule here and this is going to be for pre route team. And taxed. TCP. And we need to add a destination -- Tak -- destination. -- And that's going to be 84 all of -- HTTP traffic. -- So we're gonna say re direct. And redirect is essentially saying. Go ahead and take that and give it to the local host an on in this case -- do it on now localism. Some important. Port 88 that's what's on one. -- To. -- port. 8080."

" Are right so we've set up my. And we've talked about. Our cache poisoning in the past and I think it might be time for refresher don't think I think it's a lot the scope of this segment. But it's something you guys wanna hear more. Go ahead and email feedback but right now I'll just go ahead and -- reference he's in one. Episode. For."

" For the sake of main technical referred this to our cache poisoning attack. Now an art is an address resolution protocol. Its now its device and network. Uses this to build table all the other devices on network and I'm not in the table contains out its devices Mac address and its corresponding IP address. I'm not they do this by sandy out a series of our requests and our responses to the problem with this is it's susceptible to attack. We can exploit this vulnerability. Between two computers can be -- to devices. By telling each one that we're the other. So this will allow us to kind of intercept traffic keeps dropping again all we're doing -- business and herself and between two devices for example your computer and a firewall. And -- pick up all the network traffic at all."

" It's insurance it's good stuff seriously let's go ahead and get our our cash on our spoof so our spoof. And just -- for our interface and we are cheating. And using wired -- inner -- just make things easier. There -- a little demo network here so that would be F zero but it course if we're using. The alpha here it'd be like -- clear something like that. So and then we need to do -- T for our target and it like I said our target is that's little laptop here. It's a little bit you know I'm -- Eee PC things like a monster. Latitude. 6500. Since tech T 1010 doubt 159. And the hosts 1010 no doubt one and that is the rather than expected -- I go ahead and hit enter here and what happens is. A financially. We are convincing. The brouder that we -- him and him that we your browser and then we are everything in between imagine that how cool is that so. Now that we are essentially the man in the middle -- in the middle however you want but it we can see everything going between which is great. And we've used this before so many times stepped up instant message conversations all that fun stuff. But then there's always the we're forced to -- when they go to in and HT TPS site if only we could strip all of that out. So let's go ahead and do exactly that with us to sell strip -- create a new. -- terminal here let's go ahead and initiate Estes a strip so as the -- trip that he why. And we're getting to attack L for listen and we said port 8080. There Leo we have SS house -- running on them come over here to the client and we are going to -- to see. Capital One dot com that's on banking site. What happens is when you get a Capital One dot com you're greeted with this wonderful user friendly page greater -- you can log in. Here. Credit cards here war -- keying or your auto -- all these other fun things that we just love to know what's going on here so. We're gonna click login for credit cards. And I'm prompted for my username and passwords so let's go ahead and answer Bob for username. And 12345. For a password. This is an example. Now I want to something here on this page and that is greener on HTTP. Go ahead and try this on your computer at home I bet you -- go to capitol one dot com click log in. You're gonna be greeted by an HT TPS site what happened here let's take a look -- click log -- And obviously it's a bogus blog and more if it wasn't then I am just need. Lucky -- password guessing in the world Bob needs it now okay so. Yes so. What's happened here is. Our men in the middle. Has noticed. That we are actually trying to initiate a connection over two. Two AS's help site so what happens is we go to capitol one dot com right Paul Otellini TTP site which got that link. So we click log into the S itself you can try this on those bank sites totally going to be the same thing PayPal whatever. You're on an HTTP site and -- in here on HTTP that's what this does notices that and it. Well it removes it and and replaces it with -- HTTP but not just that because that's not gonna work if if you try this on your home computer without even using -- And and try to those -- site and just take the S out it's not gonna work -- gonna say listen. We needed to be an HT TPS site because it needs to be secure and it's also sell its secure. Yeah. Well thankfully our men in the middle here has gone heading connected securely to that HT TPS site on your behalf. How friendly of it and I hadn't reported that over to you the victim or -- TTP because I'm reading you need to spoof any eight and the we need to break -- to sell at all. And users are dumb enough that they're not gonna notice one thing about -- results live. There's there's a bunch of different options here but we even allowed to give an icon when those little you know -- bar that looks like a lock. I mean. Well I don't need to tell you guys about news you already known you work with them you good school with them. In IP related to them on sorry. But you know that -- are out there and that this is totally. Going to work on 99.9. Percent of those cases so let's take a look at what we actually captured and create new. Terminal here and let's take a look at our -- Elster blog. And hey would you look at that it's log in -- Capital One dot com. User. Equals Bob and password equals 123 or five. Mind blowing and another reason why you shouldn't just trust HTTP ads. You should go ahead and use an SL tunnel. SH tunnel a -- yen. And that you guys have been having a lot of fun with it -- stuff via open deep in -- if you will that we talked about a few weeks ago. So keep sending your feedback about that -- and just keep this in mind. Playing like I don't need to -- my stuff. -- Take a look you know just to keep that in mind. You know it it even if you're not you know. Just take a look at what's in your URL bar in your browser doesn't have that that's there. And then you're not and and even that well we can have a field day with this. I think this is something that you guys are gonna enjoy more of so we're gonna have some more fun with black hat stuff. Hear us and so there's any other stuff on the side of the fence you wanna see your hadn't emailed me. Feedback Hak5 dot org. Define moxie osment who at Cecil Smith head over to dot crime dot org and it's much of anything that we've talked about here on this show. And of course there is a wonderful little home act dot org."

" I wanna let everybody knows that. -- They are the largest online video game rental service and offer choice over 6000 new and classic titles across all -- hand -- we plants are you 1595. -- game plan members can -- one to four games at a time and keep them for as long. Ads like you can also purchase a game if you fall in love with it feels into the box and manual. Pornography. And over to gain -- dot com slash Hak5 to get. Two week free trial version. Games like dot com slash --"

" I guess I just about wraps up this week's episode of -- five. Punctured there would Mac Whitmore has its own tax even though we did highlight one you remember -- on hamster and when it. There -- yes good stuff I can actually do at. Next week. But you -- really all depends honestly I think people we can't emphasize enough how much the feedback -- Religious. Change is what we do -- show as well as what we. Lives because discipline and you just now coming up I've got a segment based on. Us. -- I don't know how to say it but basically it kind of takes hold rallying. Wind security. Access -- site to site BP ending. Rexall and one big recently. Updated licensing policy and protect right he's so we're gonna do that I can run it virtual appliance nice yet at the -- yet. You've got a bunch in bed and Linux devices on its way that's -- Believe it or not that lessons of the cable it just came in port that it when new CE device. The the game console believe there we're looking out."

" In the past oh excellent ten year old Austin this entering asked what was missing came. Right. -- yeah. Before you need though we won't let you guys know about Hak5 store. A lot of people have been asking Daryn where we can where you guys can get shirts that have hacks -- on -- night and I -- and Hak5 dot org slash. Store switch plant -- on chainsaw. All stuff that you just kind of dating like you at least nuke. It. Was to sell them. So I got an email. -- feedback that. I was apparently wrong of course your I'm never wrong notes. And sometimes wrong but never actually never around. -- So it's like Google I was in correct in saying that being. It's. Like wide release me. VMware player three. K button in VMware real logic to create virtual machines inside my head. -- that's -- subtle distinction. Now and it's it's available you had to go to different website to search for it dude what is limited -- yeah. Never heard of such thing so I had to go -- defend my honor. And and say this is the case -- search out. -- Search out the VMware player three release candidate you can actually create virtual machines how ever. There's another point that I wanted to make me which is the -- box on. Virtual box -- do -- favor -- recently and virtual box. If you've got an installation and is currently running and I'm not gonna say universal boxes the most efficient software because. That's exactly -- you remember a -- point repair now when that Dennis yes. You remember it. For those of you that don't know pair was the first power PC emulator that was fortunate -- this if you've got enough if you've got a version that's working don't screw with that. Error. I don't know how many I've seen looking in the box forums people having issues. Going off. X point -- point one version bridges now working video networking -- idea if it's working for you. You run three point 07. Three planets and don't screw it. Problems. That's because yes as I know that open source loves me and as long as Linus and Richard Stallman. Are around this world and every unit uses. I should Indians. Apparently -- So while one lets you guys know that a TE RS. Has come out with a new website new show format. News graphics openings all night and it says."

" We'll link you mean C. Match him. On every Tuesday for new episode -- Rancho. And revision3.com slash TR us and just reminding you real quick pace but dot com slash technolust. And -- up twitter.com. Slash. I have. Minimum I don't want all of ours to minimize thing and we MySpace I no clue what it is and I'm not -- you pizza they can't really knows anything happening right. So yeah you can find that to me. Like it's a plan. And it."

" It's right there."

" Basis she's still doing it right. That's about."

" Help -- PPP connections and I. No harm my head is. We talk about. Well we are first you can modify and live words. Lately we've been discussing points that. I am not in his sentence that today MI. I can military backed a little hungry and commercial there he -- response. That's dollars. -- Not a segment. Yeah."

" Wow."

" I'm your wouldn't marry that nation's second oldest college have a little fun with the wireless network which is surprisingly secure. And up on today's episode of Hak5 minutes following series we're gonna be exploiting this network and its users. Where should I say. -- similar -- network. My name's Darren Kitchen you're watching Hak5."

" Yeah hi this got you by the united states air force the fly and domain dot com got a great idea -- all starts with degree domain. Well welcome back five my name is Darren Kitchen I'm Shannon. And I met last night and this is your kitten and puppy review -- show tonight we have a fabulous -- net we will be reviewing. In that right it is indeed it's a turtle shell. She's very very Loudon. And yet. Why don't want to bring our first subject up yacht. This is B cap we will be marching today -- not only lasers but. But I think we're actually gonna get her -- compressed. When you say. She's she's just -- Santa happy couple flux capacitor idea but I think if we just you know kinda. Surgically attached it to her ass you know you can time travel through which happens took her camera -- ones -- work out I think it's this is. -- It's nature quite ferocious. She's a month. Now this I was about hacking an IT and stuff like that so of course we have. Fun hacking stuff being guys this week we're gonna be taking over the William and Mary network. Except that I -- the lawyers told me that that would be a bad idea through the simulated. And all of that we have lawyers. And which means when you see the Daryn Wi-Fi and CW. Not doing anything bad yet here on your family vacation and and you happen via coffee shop and there's just on outside probably best around -- You know I think it's awesome that the Williamsburg. Strictly symbol is -- Apple because it's the international sign for welcome. I drive by that time like all the time and like. What's with the Virginia is for -- Virginia -- for loggers. That your see I would think we're doing that and we gotta -- and yes it yet. It's the YYU. Yeah because I'm the strongest of all the Hak5 ago. Look at look at these prolonged and hacking -- you're not backward and I am so important you would architecture you have -- the job easy. You foul. At a that'll happen and what else is gone. I answered it and it cut you off like a month. Yeah we don't have. Although no dairy farmer there -- and hold on for. Off on his little adventures and I'm sure he's going and another one where -- film way too much and you want you won't work either. Well why don't you think I'm in North Carolina or no delete the footage of a particular segment -- yeah and I mean it's totally like a my drink iMac had. Because I believe that's and last episode we did a segment with. With would Jason Apple bomb and we would -- lauded. He seven or nineteen inch LCD needed a screen and we've built into the whole thing this came out great. And -- all of the support material that's gonna use. To supplement the segment and I did not. It because we got this new camera and a pop if card and I forgot there was footage -- that would format that so yeah I don't blame. Because I mean idiots and I'm sorry that the last segment of the role that we should across this bring so they're gonna have this earth and you."

" Yeah there's a -- in your eyes. She had to and we'll -- our. Com -- you have a broken -- Yeah. And if I open it up one day and I was like what's this there's a little planet -- Acer what happens in you know -- I don't lake leaving in the middle of our -- and sat for anything don't leave it is actually for some ready walking on top of it like throw a camera down -- And that. Does like. What's the worst that is and -- an an end users on -- warranty on an issue of science and and and this lady called means that it was gonna -- nine bucks because it was -- issue. Now let me say hey I would have a problem with it if I knew how it happened right if I knew it was my thought I'd be like okay. -- just about. I want for like fifty bucks off eBay and yeah try to replace it myself hopefully break -- if I do."

" Oh well we'll show you guys how to actually replace the screen I'm looking to do the same thing and T sixty for IBM and I -- just it's a ten by seven and I need Ramirez so. And look to upgrade now. There's panel different public that you gotta be concerned about but you're in song touch screen. Machine."

" Well this and Obama I would do would be able that we have under adjacent against there -- I'll add them again and again. Problem solves that comes or circle wrong. I messy cleanup a vicious cycle it. Enjoy the show."

" Yeah. It's pretty well diet that's ridiculous. They did want to research so it turns out you can lose a lot early on as you can see. -- Its -- anger actually the best. However I'm sure the world are registered pre -- I can't no I'm motorists are resolved I 01 I put picture looked okay sure moron. -- Pop and I don't -- costs domain registration and all all the yes."

" dot coms from less than ten bucks without -- up selling. Reseller dedicated servers received panel and killer DPS -- with root access domain dot com is the place to go. Next time you're looking to start a website or build your new massively multi skilled side business. Best of all other offering Hak5 -- sweet deals on domain names private registrations and web hosting. Just -- domain dot com and use coupon code Hak5 at H a K five -- check out to get 15%. Off your order. Got a great idea it all starts with a great domain. Domain dot com."

" Lately we've been talking a lot about virtual private networks or VPN as we've talked about setting up PP TP servers on windows and Linux we didn't talk about setting up SS LV PN servers -- bit platforms. And that led me to use realization that we have not talked about as a cell -- here on the show. And because it's warm we have because it is such a cool tool and I think it really ties in with. VPN series in the sense that it's important to emphasize what it is that we are protecting ourselves from. When we tunnel -- traffic encrypted traffic what have you it's important to no -- the black -- side of this is. And this is actually tool they came out of black hat this here by a hacker by the name of moxie Merlin spike and I would love to demo it for you guys today. I think it is so very cool. And it is just one of these. Tools you need to having arsenal when every doing man in the middle attack and we've talked about being in the middle attacks -- Pineapples. Land and among key great fund schools were actually going to be using some software here today. To do all of this. So you know if you just got that PC and the network just you know load up your favorite. It -- with iPhone hack tools and actually using. Backtrack for here. And and that should get -- so. Out basically what this is going to allow us to do. Is once we have -- in the middle with our notebook here in between our target laptop and in the routers on the network. Is. Typically when we do this we start sniffing out and we try to get all of you fund passes so we can what happens when somebody used to. An asset sales site and we've said this time and time again it's a great way to protect yourself. But this is actually going to allow us to strip out the -- itself on our -- side so that we can see their password when they try to log into for example banking site. And this is again why you once you rather than rely on. The on the SSL connection. You or -- your web mail your bank site whenever I go ahead and encrypt everything just tunnel it through instead. So let's go ahead and take a look at what we're going to need to get this set up so as I said I -- here in. Backtrack. Land. I believe I've gone -- set myself up here on the network so real quick I'm just gonna do a little. And maps scan and see who my neighbors. Are so we've -- pretzel target here and it's 1010 O 159. A beautiful laptop and and less stock. With that can be the perfect for a demonstration here we're gonna initiate a man in the middle we're gonna run as to -- but what else are we gonna need to get all that set up. Prison while we're gonna need to modify our IP tables we are going to need a little are spoofing cash -- on on. And we're gonna -- in python so go ahead and make sure you have all that. And when we get back and justice -- will go ahead and put it all together but first let's think the united states air force."

" So let's go ahead and -- PC in the forwarding -- To to do so let's just take a look at this file here in slash -- Net access. -- that's backwards excess. Net. I PV four. And its IP underscore forward. Can we can see it's set to zero I excellent go ahead and change that. 21 -- in a nano led or revise or whatever. Just go ahead and use a single walk rather than double walker. To go ahead replace that with one in slash rock. Says its net I PV four. I. All right so -- take a look at that again it is set to one so we are going and forwarding IP. Next thing we need to do is have a little bit of fun with IP tables so let's go and issue IP tables. -- he for the table who want and we wanna adjust our Nat table. Known address translation -- to go ahead and -- add AM rule here and this is going to be for pre route team. And taxed. TCP. And we need to add a destination -- Tak -- destination. -- And that's going to be 84 all of -- HTTP traffic. -- So we're gonna say re direct. And redirect is essentially saying. Go ahead and take that and give it to the local host an on in this case -- do it on now localism. Some important. Port 88 that's what's on one. -- To. -- port. 8080."

" Are right so we've set up my. And we've talked about. Our cache poisoning in the past and I think it might be time for refresher don't think I think it's a lot the scope of this segment. But it's something you guys wanna hear more. Go ahead and email feedback but right now I'll just go ahead and -- reference he's in one. Episode. For."

" For the sake of main technical referred this to our cache poisoning attack. Now an art is an address resolution protocol. Its now its device and network. Uses this to build table all the other devices on network and I'm not in the table contains out its devices Mac address and its corresponding IP address. I'm not they do this by sandy out a series of our requests and our responses to the problem with this is it's susceptible to attack. We can exploit this vulnerability. Between two computers can be -- to devices. By telling each one that we're the other. So this will allow us to kind of intercept traffic keeps dropping again all we're doing -- business and herself and between two devices for example your computer and a firewall. And -- pick up all the network traffic at all."

" It's insurance it's good stuff seriously let's go ahead and get our our cash on our spoof so our spoof. And just -- for our interface and we are cheating. And using wired -- inner -- just make things easier. There -- a little demo network here so that would be F zero but it course if we're using. The alpha here it'd be like -- clear something like that. So and then we need to do -- T for our target and it like I said our target is that's little laptop here. It's a little bit you know I'm -- Eee PC things like a monster. Latitude. 6500. Since tech T 1010 doubt 159. And the hosts 1010 no doubt one and that is the rather than expected -- I go ahead and hit enter here and what happens is. A financially. We are convincing. The brouder that we -- him and him that we your browser and then we are everything in between imagine that how cool is that so. Now that we are essentially the man in the middle -- in the middle however you want but it we can see everything going between which is great. And we've used this before so many times stepped up instant message conversations all that fun stuff. But then there's always the we're forced to -- when they go to in and HT TPS site if only we could strip all of that out. So let's go ahead and do exactly that with us to sell strip -- create a new. -- terminal here let's go ahead and initiate Estes a strip so as the -- trip that he why. And we're getting to attack L for listen and we said port 8080. There Leo we have SS house -- running on them come over here to the client and we are going to -- to see. Capital One dot com that's on banking site. What happens is when you get a Capital One dot com you're greeted with this wonderful user friendly page greater -- you can log in. Here. Credit cards here war -- keying or your auto -- all these other fun things that we just love to know what's going on here so. We're gonna click login for credit cards. And I'm prompted for my username and passwords so let's go ahead and answer Bob for username. And 12345. For a password. This is an example. Now I want to something here on this page and that is greener on HTTP. Go ahead and try this on your computer at home I bet you -- go to capitol one dot com click log in. You're gonna be greeted by an HT TPS site what happened here let's take a look -- click log -- And obviously it's a bogus blog and more if it wasn't then I am just need. Lucky -- password guessing in the world Bob needs it now okay so. Yes so. What's happened here is. Our men in the middle. Has noticed. That we are actually trying to initiate a connection over two. Two AS's help site so what happens is we go to capitol one dot com right Paul Otellini TTP site which got that link. So we click log into the S itself you can try this on those bank sites totally going to be the same thing PayPal whatever. You're on an HTTP site and -- in here on HTTP that's what this does notices that and it. Well it removes it and and replaces it with -- HTTP but not just that because that's not gonna work if if you try this on your home computer without even using -- And and try to those -- site and just take the S out it's not gonna work -- gonna say listen. We needed to be an HT TPS site because it needs to be secure and it's also sell its secure. Yeah. Well thankfully our men in the middle here has gone heading connected securely to that HT TPS site on your behalf. How friendly of it and I hadn't reported that over to you the victim or -- TTP because I'm reading you need to spoof any eight and the we need to break -- to sell at all. And users are dumb enough that they're not gonna notice one thing about -- results live. There's there's a bunch of different options here but we even allowed to give an icon when those little you know -- bar that looks like a lock. I mean. Well I don't need to tell you guys about news you already known you work with them you good school with them. In IP related to them on sorry. But you know that -- are out there and that this is totally. Going to work on 99.9. Percent of those cases so let's take a look at what we actually captured and create new. Terminal here and let's take a look at our -- Elster blog. And hey would you look at that it's log in -- Capital One dot com. User. Equals Bob and password equals 123 or five. Mind blowing and another reason why you shouldn't just trust HTTP ads. You should go ahead and use an SL tunnel. SH tunnel a -- yen. And that you guys have been having a lot of fun with it -- stuff via open deep in -- if you will that we talked about a few weeks ago. So keep sending your feedback about that -- and just keep this in mind. Playing like I don't need to -- my stuff. -- Take a look you know just to keep that in mind. You know it it even if you're not you know. Just take a look at what's in your URL bar in your browser doesn't have that that's there. And then you're not and and even that well we can have a field day with this. I think this is something that you guys are gonna enjoy more of so we're gonna have some more fun with black hat stuff. Hear us and so there's any other stuff on the side of the fence you wanna see your hadn't emailed me. Feedback Hak5 dot org. Define moxie osment who at Cecil Smith head over to dot crime dot org and it's much of anything that we've talked about here on this show. And of course there is a wonderful little home act dot org."

" I wanna let everybody knows that. -- They are the largest online video game rental service and offer choice over 6000 new and classic titles across all -- hand -- we plants are you 1595. -- game plan members can -- one to four games at a time and keep them for as long. Ads like you can also purchase a game if you fall in love with it feels into the box and manual. Pornography. And over to gain -- dot com slash Hak5 to get. Two week free trial version. Games like dot com slash --"

" I guess I just about wraps up this week's episode of -- five. Punctured there would Mac Whitmore has its own tax even though we did highlight one you remember -- on hamster and when it. There -- yes good stuff I can actually do at. Next week. But you -- really all depends honestly I think people we can't emphasize enough how much the feedback -- Religious. Change is what we do -- show as well as what we. Lives because discipline and you just now coming up I've got a segment based on. Us. -- I don't know how to say it but basically it kind of takes hold rallying. Wind security. Access -- site to site BP ending. Rexall and one big recently. Updated licensing policy and protect right he's so we're gonna do that I can run it virtual appliance nice yet at the -- yet. You've got a bunch in bed and Linux devices on its way that's -- Believe it or not that lessons of the cable it just came in port that it when new CE device. The the game console believe there we're looking out."

" In the past oh excellent ten year old Austin this entering asked what was missing came. Right. -- yeah. Before you need though we won't let you guys know about Hak5 store. A lot of people have been asking Daryn where we can where you guys can get shirts that have hacks -- on -- night and I -- and Hak5 dot org slash. Store switch plant -- on chainsaw. All stuff that you just kind of dating like you at least nuke. It. Was to sell them. So I got an email. -- feedback that. I was apparently wrong of course your I'm never wrong notes. And sometimes wrong but never actually never around. -- So it's like Google I was in correct in saying that being. It's. Like wide release me. VMware player three. K button in VMware real logic to create virtual machines inside my head. -- that's -- subtle distinction. Now and it's it's available you had to go to different website to search for it dude what is limited -- yeah. Never heard of such thing so I had to go -- defend my honor. And and say this is the case -- search out. -- Search out the VMware player three release candidate you can actually create virtual machines how ever. There's another point that I wanted to make me which is the -- box on. Virtual box -- do -- favor -- recently and virtual box. If you've got an installation and is currently running and I'm not gonna say universal boxes the most efficient software because. That's exactly -- you remember a -- point repair now when that Dennis yes. You remember it. For those of you that don't know pair was the first power PC emulator that was fortunate -- this if you've got enough if you've got a version that's working don't screw with that. Error. I don't know how many I've seen looking in the box forums people having issues. Going off. X point -- point one version bridges now working video networking -- idea if it's working for you. You run three point 07. Three planets and don't screw it. Problems. That's because yes as I know that open source loves me and as long as Linus and Richard Stallman. Are around this world and every unit uses. I should Indians. Apparently -- So while one lets you guys know that a TE RS. Has come out with a new website new show format. News graphics openings all night and it says."

" We'll link you mean C. Match him. On every Tuesday for new episode -- Rancho. And revision3.com slash TR us and just reminding you real quick pace but dot com slash technolust. And -- up twitter.com. Slash. I have. Minimum I don't want all of ours to minimize thing and we MySpace I no clue what it is and I'm not -- you pizza they can't really knows anything happening right. So yeah you can find that to me. Like it's a plan. And it."

" It's right there."

" Basis she's still doing it right. That's about."

" Help -- PPP connections and I. No harm my head is. We talk about. Well we are first you can modify and live words. Lately we've been discussing points that. I am not in his sentence that today MI. I can military backed a little hungry and commercial there he -- response. That's dollars. -- Not a segment. Yeah."