1
00:00:00,390 --> 00:00:01,350
Welcome back.

2
00:00:01,370 --> 00:00:06,300
And this is the first video we are going to test two of our tools together.

3
00:00:06,400 --> 00:00:09,790
We're going to test our passwords today for the record in this project.

4
00:00:09,970 --> 00:00:14,390
And we're going to combine it with our art spoofing that we created in the previous section.

5
00:00:14,760 --> 00:00:18,230
So let's see how that will go first.

6
00:00:18,300 --> 00:00:25,590
But we need to do is open up our terminal and I go onto the actions and split terminal horizontally.

7
00:00:25,590 --> 00:00:30,740
So we'll have two of these screens right here in the first screen.

8
00:00:30,780 --> 00:00:38,940
I will navigate to PI charm and I will navigate to the past for Steve for Project and in the second

9
00:00:38,940 --> 00:00:41,550
screen I will navigate once again to buy charm.

10
00:00:41,550 --> 00:00:44,110
And to our spool for project.

11
00:00:44,110 --> 00:00:45,080
All right.

12
00:00:45,360 --> 00:00:52,770
So if I type L in the arch pooper you will remember that our our spoofing code requires us to specify

13
00:00:52,770 --> 00:00:58,810
the target IP address and if routers IP address as two arguments to a comment.

14
00:00:58,830 --> 00:01:01,220
So let's run the arbs for right away.

15
00:01:01,380 --> 00:01:10,200
I will type Python three arcs 4 4 1 8 2 that 168 that one that one and the IP address of my windows

16
00:01:10,200 --> 00:01:20,280
10 machine is one I add to that 168 dot one to run this and this will start working as we can see it

17
00:01:20,280 --> 00:01:26,520
is not closing it is sending two packets every two seconds if we want to check whether it work we can

18
00:01:26,520 --> 00:01:33,810
simply just go to the CND or the command prompt in windows and type our dash a and we will see that

19
00:01:33,840 --> 00:01:37,710
both of the clinics and Walter have the same MAC address.

20
00:01:37,740 --> 00:01:40,860
Therefore our are spoofing worked.

21
00:01:40,860 --> 00:01:45,990
Now let's see how this will help us to actually save the password on Windows 10 machine.

22
00:01:46,020 --> 00:01:49,310
Now if I go to my passwords differ and they simply just run it.

23
00:01:49,320 --> 00:01:56,160
So Python 3 password sniffer as we can see it seems to work correctly.

24
00:01:56,280 --> 00:02:02,100
All we're left to do right now is go on Windows 10 to Google Chrome or any search engine that you're

25
00:02:02,100 --> 00:02:10,420
using wait for it to open up and once it opens up let's first of all go to my router right here loops.

26
00:02:10,420 --> 00:02:14,490
It will not connect because you remember we forgot one thing.

27
00:02:14,500 --> 00:02:19,300
So let's just close our Article 4 for a second.

28
00:02:19,390 --> 00:02:21,670
We actually have to forward our packets first.

29
00:02:21,670 --> 00:02:24,100
So let's do that with the command echo.

30
00:02:24,130 --> 00:02:36,160
One two arrows to the right slash proc slash sis slash net slash IP before and slash IP underscore forward.

31
00:02:36,160 --> 00:02:39,630
Once we do that we can run our arsenal for once again

32
00:02:44,630 --> 00:02:48,530
OK so it is working let's go back to our page and try to reload it.

33
00:02:48,530 --> 00:02:49,500
Here it is.

34
00:02:49,550 --> 00:02:57,230
And if we type some random user name such as for example admin and password to be password pressed on

35
00:02:57,290 --> 00:03:02,870
Logan and go back to our clinic's machine we will get to the full packet printed out right here.

36
00:03:02,870 --> 00:03:08,510
Here is the username and the password due to security measures is actually set to be encrypted and we

37
00:03:08,510 --> 00:03:13,900
can also see the actual host or the website to which these two fields have been specified.

38
00:03:14,000 --> 00:03:19,640
And in this case it is 1 182 that 168 with one that one or our router.

39
00:03:19,640 --> 00:03:26,870
Now if we go onto the different website which is test BHP that former dot com and we go to the sign

40
00:03:26,870 --> 00:03:32,940
up specify right here admin and then password click on log in.

41
00:03:32,990 --> 00:03:34,900
Go back to our clinic's machine.

42
00:03:34,940 --> 00:03:37,290
We will also get that packet as well.

43
00:03:37,460 --> 00:03:37,770
OK.

44
00:03:37,810 --> 00:03:45,050
So here it is user name is admin password is password in plain text we can see it's right here and we

45
00:03:45,050 --> 00:03:52,250
can also see where are these fields specified in our case they are specified on this website right here.

46
00:03:53,070 --> 00:03:53,410
All right.

47
00:03:53,420 --> 00:03:55,020
So our password safe works.

48
00:03:55,130 --> 00:04:00,980
We combined our two tools our passwords differ and our ask for four in order to sniff the passwords

49
00:04:01,190 --> 00:04:05,970
from the HDP websites on the different machines on our local network.

50
00:04:05,970 --> 00:04:11,310
Now if you want to do this on multiple targets at once you can either just upgrade our arms fulfilled

51
00:04:11,350 --> 00:04:17,660
to be able to spoof every machine on the local area network or you can use a different tool with combination

52
00:04:17,660 --> 00:04:23,810
with our password sniffer so you can use a tool called for example and I TMF not really sure if it is

53
00:04:23,810 --> 00:04:24,950
installed right here.

54
00:04:25,400 --> 00:04:27,880
Yeah you can also use the MTM proxy.

55
00:04:28,070 --> 00:04:34,040
But I would advise you to go on to the Firefox if you want to use the real man in the middle and are

56
00:04:34,040 --> 00:04:40,050
spoofing tool that comes with bunch of different options that will help you fully execute your attack.

57
00:04:40,160 --> 00:04:44,370
You simply just go and download the tool called My DNS.

58
00:04:45,710 --> 00:04:47,600
You would simply just click on this first link

59
00:04:52,410 --> 00:04:53,970
go all the way down.

60
00:04:54,120 --> 00:04:56,490
You would call on this page with Kit clone.

61
00:04:56,730 --> 00:05:02,540
Then you can go to the installation instructions right here and follow these instructions and these

62
00:05:02,540 --> 00:05:05,690
commands in order to install and I TMF properly.

63
00:05:05,690 --> 00:05:10,850
Once you do that you can simply just use the tool to perform our spoofing and use our password sniffer

64
00:05:11,120 --> 00:05:15,110
in order to sniff passwords on every machine on local area network.

65
00:05:15,620 --> 00:05:16,000
OK.

66
00:05:16,220 --> 00:05:21,740
So that would be about it for the section we successfully saw how we can combine these the tools and

67
00:05:21,740 --> 00:05:26,780
in the next project We're also going to see another tool that will create that you can either combined

68
00:05:26,780 --> 00:05:32,600
with ours for if you'd like or you can simply just use it on your own with another tool perhaps such

69
00:05:32,600 --> 00:05:38,660
as I TMF or with the any other tool that performs men in the middle attack as well.

70
00:05:38,930 --> 00:05:39,330
OK.

71
00:05:39,350 --> 00:05:44,210
So thank you for watching this section and I will see you in the next project by.