I’m very excited to adapt to the new state of the world a host a long overdue edition of Network Hacking 101, online this time, on Thursday October 22nd at 6:00pm PT
2020-10-23T01:00:00Z → 2020-10-23T03:00:00Z
I’m excited to explore moving this class online, and since everything is designed to be done over the Internet, it will be a great time from wherever you are!
If you want to secure your home network, the best place to start is to learn how to attack it! Let’s do just that! By the end of this workshop, everyone can walk away having intercepted some packets and popped some reverse shells, and you’ll be able to use these skills on your own home network!
The content we will use is available online, and you can check it out now at naumachiactf.com. I encourage you to try the challenges ahead of time, and feel free to ask me any questions on Discord at chat.naumachiactf.com.
Topics we’ll cover:
- Network crash course in peeling back the layers
- Network sniffing and the world of broadcast traffic
- Man-in-the-middle attacks through ARP poisoning
- Network scanning and finding your next target
- DNS poisoning so that your too can be facebook.com
What do I need to hack?
You’ll need a laptop and the following tools:
- Connect to the challenges you will be hacking
- Wireshark (tcpdump also works)
- Capture and dissect network traffic
- Scan and search for vulnerable targets
- Intercept and manipulate traffic
- Another good way to intercept traffic
- bettercap (optional)
- Next-generation replacement for ettercap (but a bit unreliable)
- Build new attack tools
- netcat (nc)
- Swiss-army-knife of networking
It’s highly recommended that you use Linux or MacOS, but these tools are availible for Windows as well. If you have a Windows laptop, I recommend you install Linux in a VM*. Kali is the canonical offensive security distribution if you need to pick one. (https://youtu.be/FVmWMogGX4Q )
*Windows Subsystem for Linux (WSL) is great, but doesn’t work with packet capturing, so you won’t be able to use it here