1
00:00:00,420 --> 00:00:05,520
Hello everyone and welcome to our new project which is going to be a password cracker.

2
00:00:05,520 --> 00:00:10,560
So in the previous project we took a look at how we can create passwords sniffer and we can combine

3
00:00:10,560 --> 00:00:10,680
it.

4
00:00:10,680 --> 00:00:15,270
We power our people for an order together all of the passwords that targeting puts in their browser

5
00:00:15,480 --> 00:00:18,630
overreach CTP on the same local area network.

6
00:00:18,630 --> 00:00:22,980
And right now we're going to deal with a little bit different thing which is going to be a password

7
00:00:22,980 --> 00:00:23,970
cracker.

8
00:00:23,970 --> 00:00:28,400
Now this would be a rather short project and this tool will be used only in specific users and that

9
00:00:28,400 --> 00:00:32,110
will show you an example of when you can use this tool if you want.

10
00:00:32,820 --> 00:00:34,350
So let's get straight into this.

11
00:00:34,620 --> 00:00:38,470
All right so what you're going to need for this is you're going to need your smart exploit the virtual

12
00:00:38,490 --> 00:00:42,770
machine and you're also going to need your clinic's virtual machine.

13
00:00:43,470 --> 00:00:44,870
I already created this project.

14
00:00:44,880 --> 00:00:46,620
So we have the password cracker project.

15
00:00:46,620 --> 00:00:50,000
You can create it if you want and then we're going to create the new file.

16
00:00:50,000 --> 00:00:51,590
So right click new.

17
00:00:51,600 --> 00:01:00,030
And then python file and right here we can call this cracker password the b y

18
00:01:03,750 --> 00:01:04,390
OK.

19
00:01:04,480 --> 00:01:06,730
So we got the file ready.

20
00:01:06,730 --> 00:01:07,960
What will this program do.

21
00:01:08,980 --> 00:01:11,510
Well it is not what you might think that it will do.

22
00:01:11,530 --> 00:01:15,640
And you might actually think that this is some kind of a brute force.

23
00:01:15,640 --> 00:01:19,180
So we're going to crack the passwords for your social media accounts.

24
00:01:19,180 --> 00:01:21,630
It is not that type of thing.

25
00:01:21,890 --> 00:01:27,480
We're going to use this program in order to crack the hash the value of a password.

26
00:01:27,490 --> 00:01:33,760
Now what they mean by that is many Web sites and many databases store all the passwords in some hashed

27
00:01:33,760 --> 00:01:37,420
value whether it is empty five or sharp one or SHA 512.

28
00:01:37,480 --> 00:01:38,380
It doesn't really matter.

29
00:01:38,380 --> 00:01:41,170
They all store it in some type of a hashed value.

30
00:01:42,100 --> 00:01:44,760
So what happens from the database is breached.

31
00:01:44,860 --> 00:01:49,540
Well we gather the user names and we gather all the hash values of the passwords.

32
00:01:49,540 --> 00:01:51,370
So we don't get the passwords.

33
00:01:51,490 --> 00:01:53,260
What can we do with those hash values.

34
00:01:53,260 --> 00:01:59,110
Well we can use all of our passwords cracker in order to crack that hash value and gain the actual passwords

35
00:01:59,200 --> 00:02:00,730
in plain text.

36
00:02:00,730 --> 00:02:02,550
So let me show you an example of this.

37
00:02:02,710 --> 00:02:07,390
If you go to your room at this point and you start up your virtual machine then you navigate to your

38
00:02:07,390 --> 00:02:12,260
google chrome and type in the IP address of your met display table.

39
00:02:12,310 --> 00:02:17,950
And in case you don't know how to get it you can simply just type like config inside of them at this

40
00:02:17,950 --> 00:02:24,490
point table and it will give you your IP address which is 192 that 168 that found that six in my case.

41
00:02:24,490 --> 00:02:29,590
Once you type that thing inside of this page it will lead you to this method potable to that page when

42
00:02:29,590 --> 00:02:31,850
you have a few different options.

43
00:02:31,900 --> 00:02:34,760
We want to navigate to the TV w a option.

44
00:02:34,970 --> 00:02:37,560
It will ask you for the user name and password.

45
00:02:37,690 --> 00:02:41,530
And right now we can type admin and password.

46
00:02:41,980 --> 00:02:46,810
And in case you're wondering when we are going to do the different type of past tracking which is the

47
00:02:46,960 --> 00:02:48,580
logging brute forcing.

48
00:02:48,580 --> 00:02:49,510
Well don't worry.

49
00:02:49,510 --> 00:02:51,850
We're also going to do that later on in the course.

50
00:02:51,880 --> 00:02:55,780
From now on we're just going to cover the cracking of the hash value of a password.

51
00:02:56,550 --> 00:02:56,880
OK.

52
00:02:56,980 --> 00:03:01,050
So let's go to the SPL injection part right here.

53
00:03:01,060 --> 00:03:06,310
This meant to split the bill has its own database and there are bunch of users that actually belong

54
00:03:06,310 --> 00:03:12,870
to this database for example if we type 2 it will give us the user I.D. for someone named Gordon and

55
00:03:12,940 --> 00:03:14,170
Brown.

56
00:03:14,230 --> 00:03:19,900
Now this person Gordon Brown has his own password saved inside of this database.

57
00:03:19,900 --> 00:03:25,360
So we're going to use an attack called SSL injection in order to actually hack this database or gather

58
00:03:25,390 --> 00:03:27,520
the information from the database.

59
00:03:27,520 --> 00:03:29,980
I'm not going to go into the details of the SSL injection.

60
00:03:29,980 --> 00:03:33,430
I'm simply just going to copy and paste it and here it is.

61
00:03:33,430 --> 00:03:36,010
This is the full scale injection.

62
00:03:36,010 --> 00:03:37,650
You should be able to see it on the screen.

63
00:03:37,660 --> 00:03:39,010
I will copy and paste this.

64
00:03:39,010 --> 00:03:41,560
So this is the SSL injection.

65
00:03:41,680 --> 00:03:47,480
If I go to the view and assume this a little bit so you can all see in case you don't.

66
00:03:47,530 --> 00:03:48,920
Here it is.

67
00:03:49,270 --> 00:03:50,380
Once a copy this

68
00:03:53,300 --> 00:04:01,310
and paste it right here we will get all of the users their surnames their I.D. and their hash the value

69
00:04:01,370 --> 00:04:02,180
of a password.

70
00:04:02,570 --> 00:04:03,570
And this is it.

71
00:04:03,590 --> 00:04:04,880
This is their password.

72
00:04:04,910 --> 00:04:06,730
It is just not in plain text.

73
00:04:06,740 --> 00:04:07,150
All right.

74
00:04:07,370 --> 00:04:13,170
So our goal is to use our program in order to get these hashes in plain text.

75
00:04:13,200 --> 00:04:14,540
All right.

76
00:04:14,640 --> 00:04:19,310
Now in case you're not getting these output even though after you typed the same command that I did

77
00:04:19,370 --> 00:04:26,210
or the same SSL injection make sure that your security level is set to low and you can change that inside

78
00:04:26,210 --> 00:04:28,620
of the DV w a security.

79
00:04:28,710 --> 00:04:29,510
Right.

80
00:04:29,570 --> 00:04:35,180
So now that we got this first thing that we need to do is we need to check out which type of hash is

81
00:04:35,180 --> 00:04:36,180
this.

82
00:04:36,200 --> 00:04:43,850
Well the easiest way to do that is to copy the actual hash and to paste it inside of your browser click

83
00:04:43,880 --> 00:04:44,440
enter.

84
00:04:44,750 --> 00:04:49,740
And what this will do is it will give you the output that this is the end the five hash.

85
00:04:49,760 --> 00:04:56,360
So here it is the empty five reverse for this was successfully reversed into string.

86
00:04:56,390 --> 00:04:58,180
And let's see which string is this.

87
00:04:58,330 --> 00:05:00,160
It is the string of password.

88
00:05:00,200 --> 00:05:06,170
So now we know that this actual hash value is password in plain text.

89
00:05:06,380 --> 00:05:09,710
But for others it might not be that easy to do that.

90
00:05:09,740 --> 00:05:16,250
So therefore we need to create a program for someone that has more complex password if you type that

91
00:05:16,250 --> 00:05:18,070
hash value inside of your Google Chrome.

92
00:05:18,080 --> 00:05:20,670
It will most likely not return any result.

93
00:05:20,780 --> 00:05:26,180
Therefore we need to create the program that will be able to brute force a dictionary and compare all

94
00:05:26,180 --> 00:05:31,490
of the hashes until it finds a hash that matches this one right here for example.

95
00:05:31,490 --> 00:05:35,990
And if they do match that means that we found the plaintext password and we'll just print it to the

96
00:05:35,990 --> 00:05:37,280
screen.

97
00:05:37,280 --> 00:05:37,850
All right.

98
00:05:37,880 --> 00:05:41,780
So that would be the basic of this program.

99
00:05:41,780 --> 00:05:46,750
We're going to code it in the next lecture the entire program will be coded in the next lecture.

100
00:05:46,850 --> 00:05:50,930
And also one more thing before we close this tutorial at the end of this project.

101
00:05:50,960 --> 00:05:55,760
And at the end of the section we're going to have a bonus lecture where I will show you how you can

102
00:05:55,850 --> 00:05:57,610
actually create the small program.

103
00:05:57,740 --> 00:06:02,870
Just a few lines of code that will try to brute force the password for any wireless networks.

104
00:06:02,870 --> 00:06:03,450
All right.

105
00:06:03,470 --> 00:06:08,120
So thank you for watching this tutorial and I will see you in the next lecture where we will code our

106
00:06:08,120 --> 00:06:09,620
program by.