Articles tagged with: exploit
In this HakTip from DEFCON 19 Darren is joined by Georgia Weidman of GRMn00bs to talk all things Android Botnets.
Rob Fuller and Raphael Mudge talk about Armitage; a cross-platform GUI front-end for Rapid7′s Metasploit. Mudge demonstrate setting up the software, scanning for targets, attacking hosts with client side attacks or remote exploits, and finally pivoting throughout the network using pass-the-hash techniques.
This demonstration Mubix joins us to add persistance to our penetration testing with a little Metasploit, Microsoft, and IP version 6.
The Hack Across America series continues in week 5 with Eighty of DualCore and PDF Exploits and malware analysis. Darren and Shannon take your questions at the Hak5 Springfield MO Meetup, and the perfect screenshot utility in this week’s Snubs Report.
This time on the show Shannon has a tool that’ll make that spring cleaning Windows reinstall a breeze in the Snubs Report. Then Mubix is unboxing the Nano Note, a pocket sized OpenWRT based bundle of Linux Lovin’. And finally Darren has the scoop on a new open source pen testing tool, the USB Rubber Ducky! Tune in and find out about special dev kits.
We head out to DC for Shmoocon, our favorite hacker conference on the east coast, to talk to some of the brightest minds in security. We talk to Tom Eston about social media security, TheX1le about his new tool airdrop-ng, Jason Scott about preserving our digital heritage, Chris Paget about man-in-the-middle attacks against GSM networks, and much more.
This week Darren is joined by Rob Ruller, aka Mubix for a little fun with Man-in-the-middle javascript keylogger using the Middler, and pwning with the Social Engineering Toolkit. Plus using Spotify in the US without a proxy, Mac Address spoofing in Linux or Windows, Virtual Appliances for VirtualBox, and much more! Take an hour lunch and prepare to feed your technolust!
After much request we’ve dedicated an episode to every hackers favorite framework, Metasploit. Room362.com’s very own Rob Fuller (aka Mubix) joins us in studio to show us the basics of exploiting and the power of auxiliary modules.
Darren demonstrates cracking Microsoft VPN tunnels using the MS-CHAPv2 authentication protocol using Joshua Wright’s tool ASLEAP and talks about the theory behind the attack.
Continuing with the VPN Series, Darren discusses the inherent weaknesses in Microsoft’s PPTP authentication protocol, MS-CHAPv2, and demos a Linux tool that exploits these weaknesses.
