I’ve had a lot of fun hosting this class the first two times, so here’s a round three for those who haven’t been able to make it yet. I’ll also be working on some content to build upon this workshop!
The date is set for July 11th , and we’ll start at 7:30pm ! Feel free to RSVP here or in the Meetup
We all know to be careful on coffee shop (and Noisebridge) WiFi, but maybe you don’t know what an attack actually looks like. Let’s fix that!
This workshop is hands-on, with the goal of having every person walk away having intercepted some packets and popped some reverse shells! It’s facilitated online using a piece of infrastructure I hacked together dubbed Naumachia (I’m an engineer, not a marketer). You can check it out now at naumachiactf.com
Topics we’ll cover:
- Network crash course in peeling back the layers
- Network sniffing and the world of broadcast traffic
- Man-in-the-middle attacks through ARP poisoning
- Network scanning and finding your next target
- DNS poisoning so that your too can be facebook.com
What do I need to hack?
You’ll need a laptop and the following tools:
- Wireshark (tcpdump also works)
- netcat (nc)
It’s highly recommended that you use Linux or MacOS, but these tools are availible for Windows as well. If you have a Windows laptop, you can install Linux in a VM*. Kali is the canonical offensive security distribution if you need to pick one. (https://youtu.be/FVmWMogGX4Q )
*Windows subsystem for Linux if great, but doesn’t work with packet capturing, so you won’t be able to use it here
Disclaimer: I am by no means an expert in this topic; part of the reason it’s a 101