Schedule

Schedule

Tuesday, March 3

1425405600 Tech News Today
1425409200 MacBreak Weekly
1425418200 Security Now
1425427200 Tech News 2Night
1425430800 All About Android

Wednesday, March 4

1425486600 FLOSS Weekly
1425492000 Tech News Today
1425495600 Windows Weekly
1425502800 This Week in Google
1425513600 Tech News 2Night
1425515400 Android App Arena
1425520800 Ham Nation

Thursday, March 5

1425578400 Tech News Today
1425582000 Know How...
1425587400 Marketing Mavericks
1425592800 Home Theater Geeks
1425600000 Tech News 2Night
1425601800 The Giz Wiz

Friday, March 6

1425664800 Tech News Today
1425668400 This Week in Law
1425679200 Before You Buy
1425686400 Tech News 2Night
1425690000 Padre's Corner

Saturday, March 7

1425754800 The Tech Guy

Sunday, March 8

1425837600 The Tech Guy
1425852000 This Week in Tech

Monday, March 9

1425920400 Tech News Today
1425924000 Triangulation
1425929400 iPad Today
1425936600 Coding 101
1425942000 Tech News 2Night

Tuesday, March 10

1426006800 Tech News Today
1426010400 MacBreak Weekly
1426019400 Security Now
1426028400 Tech News 2Night
1426032000 All About Android

Wednesday, March 11

1426087800 FLOSS Weekly
1426093200 Tech News Today
1426096800 Windows Weekly
1426104000 This Week in Google
1426114800 Tech News 2Night
1426116600 Android App Arena
1426122000 Ham Nation

Thursday, March 12

1426179600 Tech News Today
1426183200 Know How...
1426188600 Marketing Mavericks
1426194000 Home Theater Geeks
1426201200 Tech News 2Night
1426203000 The Giz Wiz

Most Recent Episodes

Triangulation

Becky Worley is the tech contributor for ABC.

TWiT Live Specials

Samsung Galaxy S6 Edge, HTC One M9, Acer Liquid Jade Z, and more.

Tech News Today

Mobile World Congress coverage.

iPad Today

Cord cutting options and other TV apps.

This Week in Tech

Mobile World Congress preview, Apple Watch speculation, Title II, and more.

The Tech Guy
The Tech Guy 1166 March 1st, 2015

Samsung announces Galaxy S6.

TWiT Live Specials

The Samsung Galaxy S6, S6 Edge, and Samsung Pay launch.

The Tech Guy
The Tech Guy 1165 February 28th, 2015

Storing photos and files if an iPad is your only computer.

Tech News 2Night

Google is working on a spectacular new campus.

This Week in Law
Episode #294: Dingo Free FCC February 27th, 2015

Do fan films infringe copyright or fall under Fair Use?

Know How... 102

Intro to Linux, RC Suspension, & ARP Cache Poisoning Attack

July 17 2014

We talk about the new Raspberry Pi B+, expert guest Aaron Newcomb goes over the different flavors of linux, learn how a remote control car suspension works, and put your black hat on for ARP Cache Poisoning Attack.

News Topic
Raspberry Pi B+ Announced

Linux 101

Aaron Newcomb shows the different flavors of Linux.

Remote Control Car Suspension

Coil Overs and Ball Bearings explained

The ARP Cache Poisoning Attack

The ARP Cache Poisoning Attack
ARP = "Address Resolution Protocol"
MAC = "Media Access Control"

Most of us think that our computers are identified by their IP address.
- However, on an ethernet network, they're actually identified by their MAC address (Media Access Control)
- A MAC is a 6-byte Hexideximal string that looks like, "00:11:aa:bb:cc:dd"

When we connect a computer to a network, it needs to become aware of all the other devices on the network, and all the other devices on the network need to become aware of the device.
- That's what ARP does: It correlates an IP address to a MAC address so that we can find a computer on the network with a particular IP address

Here's how it works:
* Computer A needs to send a file to Computer B
* Computer A knows that Computer B has the IP address of 192.168.1.2
* Computer A does an ARP Broadcast saying, "Hey! Who has the IP address 192.168.1.2?"
* Computer B hears the broadcast and responds, "I Do! 00:00:00:aa:aa:aa"
* Computer A know knows how to send the file to Computer B

Here's how access to the Internet Works:
* Computer A connects to the Network and receives a DHCP address of 192.168.1.3 with a gateway of 192.168.1.1
* It wants to sent data through the gateway to the Internet, so it does an ARP Broadcast saying, "Hey! Which of you is the gateway at 192.168.1.1?"
* The router(gateway) responds, "I'm 192.168.1.1 aa:bb:cc:dd:ee:ff
* Computer A sends data through the gateway at aa:bb:cc:dd:ee:ff

** Important to note is that all the devices will CACHE that response: so they all know which IPs belong to which MAC addresses.

Here's how a CACHE Poisoning Attack Works:
* Computer A wants to send data to the Internet, so it does an ARP Broadcast saying, "Hey! Which of you is the gateway at 192.168.1.1?"
* The router responds, "I'm 192.168.1.1 aa:bb:cc:dd:ee:ff"
* The attacking computer takes note that the gateway is at aa:bb:cc:dd:ee
* The attacking computer responds CONTINUOUSLY "I'm 192.168.1.1 22:22:22:22:22:22"
* Computer A sends data through WHAT IT THINKS is the gateway at 22:22:22:22:22:22
* The attacking computer receives the data, sniffs it, then sends it on to the REAL gateway at aa:bb:cc:dd:ee:ff

Using Cain and Abel
1. Download and Install Cain and Abel
2. You may need to disable global taskoffloading (netsh int ip set global taskoffload=disable)
3. Run the Sniffer
4. Switch to the Sniffer tab and hit the "+" icon to add a range scan (Use the IP range you're a part of)
5. Switch to the "ARP" tab at the bottom of the screen
6. Hit the "+" icon to Select your router and the client that you want to poison (or multiple clients)
7. Hit the "ARP" icon in the top bar to start the attack
8. Run Wireshark for more clear information

Connect with us!
Don't forget to check out our large library of projects at www.twit.tv/kh.
- Google+ Community at gplus.to/twitkh
- Tweet at us at @padresj, @Cranky_Hippo and @Anelf3
-Check out our transcripts.