WEBVTT 00:01.490 --> 00:07.880 Understanding networking is a circle for any inspiring Keiko in many situations, you will be taking 00:07.880 --> 00:15.860 sometimes something over a network and the good hacker needs to know how to connect to and interact 00:15.860 --> 00:16.700 with that network. 00:17.090 --> 00:23.780 For example, you may need to connect to a computer with your internet protocol address hidden from 00:23.780 --> 00:24.210 view. 00:24.560 --> 00:31.430 Or you may need to redirect their target's domain name system DNS queries to your system. 00:31.850 --> 00:36.770 These kinds of tasks are relatively simple, but require a little Linux network. 00:36.770 --> 00:38.090 Know how. 00:38.990 --> 00:47.180 So this lecture shows you some essential installs for analyzing and managing networks during your network 00:47.180 --> 00:48.290 hacking adventures. 00:48.770 --> 00:51.190 So analyzing networks with if! 00:51.410 --> 00:52.460 Conquering the cash? 00:52.760 --> 00:54.560 Yeah, if conflict comes. 00:56.180 --> 00:59.720 If conflict, if conflict, as you can see here. 01:01.250 --> 01:01.670 So. 01:03.560 --> 01:05.510 Actually, uh, I will. 01:07.800 --> 01:08.300 Uh. 01:10.240 --> 01:13.570 Stop my network here for now. 01:16.470 --> 01:20.270 It you to kind of see here for more understanding here. 01:20.540 --> 01:28.340 So the if coming, if conflict common is one of the most basic tools for examining and interacting with 01:28.340 --> 01:30.230 active network interfaces. 01:31.720 --> 01:40.330 Uh, you can use it, uh, to cure your active network connections by simply entering if something in 01:40.330 --> 01:41.020 the terminal. 01:41.740 --> 01:49.450 Try it yourself and you should see output like similar to this, uh, if not you. 01:49.540 --> 01:55.680 This means you have more Ethernet adapters or, uh, you have velan adapters as well. 01:55.690 --> 01:56.530 There's no problem. 01:56.800 --> 01:58.060 It's a usual thing. 01:58.930 --> 02:05.290 So as you can see here, the uh, ifconfig commands show off some useful information about the active 02:05.290 --> 02:09.450 network interfaces on the system at the top of the at. 02:09.460 --> 02:13.450 What is the name of the first detected interface? 02:13.450 --> 02:15.940 A T zero? 02:18.050 --> 02:21.770 And, uh, which is, uh, sort of short for eternity. 02:21.800 --> 02:24.050 Zero years just means eternity. 02:24.240 --> 02:24.680 Zero. 02:25.700 --> 02:30.860 So then you start counting at zero rather than one as some programming languages. 02:31.730 --> 02:34.100 Actually, the wide range of programming languages. 02:34.610 --> 02:38.480 So this is the first we are wired connected network connection. 02:39.150 --> 02:40.490 And so this means zero. 02:41.300 --> 02:48.140 So if there were no more wired ethernet interface, team, uh, would show up in the output using the 02:48.140 --> 02:49.250 same format here. 02:49.250 --> 02:49.670 Like that? 02:49.670 --> 02:55.640 Eighty one or eighty two like that or eighty three. 02:57.480 --> 02:57.870 So. 02:59.280 --> 02:59.910 And so on. 03:00.270 --> 03:07.190 So the type of network being used, Ethernet, yeah, here, um. 03:08.650 --> 03:14.470 He's list next, followed by hardware on the dash and an address. 03:14.800 --> 03:20.320 So this is the globally unique address and stamped on every piece of network hardware. 03:20.710 --> 03:26.620 In this case, the network interface card and I see usually referred to as the media access control 03:27.460 --> 03:27.940 Mac. 03:30.670 --> 03:38.650 As you can see here, this is the Mac address of my Ethernet adapter, so this Mac address can be changeable, 03:38.650 --> 03:43.420 but it's usually unique for every network interface controls. 03:46.640 --> 03:53.600 So now the second line contains information on the IP address currently assigned to the NAT, that network 03:53.600 --> 04:06.110 interface in this case 109 to a two one hundred eight two six eight six two eight fifty eight and one 04:06.110 --> 04:07.730 hundred twenty nine here. 04:09.920 --> 04:18.320 And, uh, we have the broadcast here as well, broadcast IP address, which is the address used to 04:18.320 --> 04:23.660 send out information to all IP, is on the subnet. 04:27.060 --> 04:34.680 Finally, we have a network mask netmask here, which is used to determine what part of the IP address 04:34.680 --> 04:36.750 is connected to the local network. 04:37.080 --> 04:43.080 You will also find more technical information in the section of the output, but it's beyond the scope 04:43.080 --> 04:45.810 of the Linux networking basics section. 04:46.320 --> 04:48.840 Here you will learn later about this. 04:49.200 --> 04:54.690 So the next section of the article shows another network connection called Load. 04:56.490 --> 04:57.630 Uh, so. 04:59.140 --> 05:11.140 Which is, uh, short of the low back, low back otherness and is sometimes called local mosque. 05:13.600 --> 05:22.300 And this is special software at the that connects to your own system, software and services not running 05:22.300 --> 05:24.790 on your system can't use it. 05:25.510 --> 05:33.130 We will use the law to test something on your system, such as your own web server, so the localhost 05:33.160 --> 05:37.000 is localhost is generally represented. 05:39.100 --> 05:42.940 With the iPad is one hundred twenty eight point zero point zero point flyer. 05:43.390 --> 05:44.370 As you can see. 05:45.630 --> 05:52.200 So let's not confront it because it will not show anything I'd put here that the third section of our 05:52.440 --> 05:55.710 interface, if you're using, uh. 05:57.350 --> 06:01.510 And notebook and you have a real then adaptive wireless adapter. 06:01.680 --> 06:08.330 Uh, this, uh, will appear you'll only if you have a wireless adapter interface or rather there. 06:09.170 --> 06:15.200 But in my case, I have not wireless set up there because this is a virtual machine here I'm using. 06:15.830 --> 06:25.890 And uh, if you install to your laptop computer here, it will show you will see like that land zero. 06:27.950 --> 06:37.460 So um, we have checked, uh, we can check the wireless network devices with the eye w Conkling. 06:37.970 --> 06:43.190 If you have a wireless adapter and you can use them i w conflict coming together. 06:43.190 --> 06:49.300 Circular information for wireless hacking such as adapters IP address here, I mean and check. 06:49.550 --> 06:54.200 So such as a wireless adapter IP address here. 06:54.740 --> 06:59.330 Um, its Mac address, uh, what mode it's seen and more. 06:59.990 --> 07:06.140 So the information you can glean from this command is particularly important when you are using violence 07:06.140 --> 07:13.250 hacking tools like a crack in a crack and you hear like that. 07:14.720 --> 07:16.940 Uh, so using the term, will it? 07:17.150 --> 07:22.430 Now let's look at some wireless devices with E W conflict here. 07:25.230 --> 07:26.640 He don't believe conflict. 07:27.220 --> 07:28.260 So you can see it. 07:28.650 --> 07:30.960 We have no wireless extensions. 07:33.460 --> 07:40.240 So the output here tells us that the only network interface with wireless extension is VLANs zero. 07:40.330 --> 07:45.070 If you have it on zero battery, in my case, I have not because it's a virtual machine. 07:46.390 --> 07:49.360 We can change network information as well. 07:49.990 --> 07:55.540 So being able to change your IP address and other network information is a useful skill because it helps. 07:56.350 --> 08:01.870 It will help you access other networks while appearing as a trusted device on those networks. 08:02.740 --> 08:12.430 For example, in a denial of service, the or else attack, you can support your IP so that the attack 08:12.430 --> 08:19.270 appears to come from another source who is helping you evade IP capture during forensic analysis. 08:19.890 --> 08:22.690 That is the relatively simple tasks in Linux. 08:23.500 --> 08:27.190 So and it's done with the ifconfig command. 08:28.710 --> 08:32.940 Um, changing your IP address to change your IP address, you enter. 08:33.120 --> 08:41.800 If config, if config followed by the interface you want to reassign and the new IP unrest you want 08:41.800 --> 08:43.320 to assign to the interface. 08:43.980 --> 08:52.440 So in my case, for example, to assign IP address, uh, some IP address eight three zero here, uh, 08:52.440 --> 08:55.460 and then enter your IP address 128. 08:55.500 --> 08:58.530 Uh, what was, uh, our first IP address here? 08:58.860 --> 09:04.170 As you can see, our default IP address one hundred twenty eight and twenty nine twenty nine. 09:04.320 --> 09:08.800 They changed it to, uh, one hundred twenty one hundred fifteen. 09:08.960 --> 09:09.180 Yeah. 09:09.920 --> 09:11.880 Uh, here. 09:11.910 --> 09:14.430 Uh, and fifty eight. 09:14.670 --> 09:19.050 One hundred and twenty, actually one hundred fifteen. 09:20.560 --> 09:23.860 As you can see, the operation is not planned for. 09:27.940 --> 09:33.100 Or doing this door here, collar and password, as you can see it. 09:33.430 --> 09:35.740 Linux will not return anything to us. 09:36.790 --> 09:41.860 When you do this correctly, Linux will simply return to command, prompt and see nothing. 09:42.310 --> 09:43.930 So this is a good thing here. 09:44.230 --> 09:52.480 And then you can again check your network connections with new config here and use. 09:52.810 --> 09:54.250 You should see. 09:56.070 --> 10:02.290 Um, see that your IP address has changed to new IP address, as you can see here, I. 10:02.580 --> 10:03.010 All right. 10:03.150 --> 10:12.890 This is was to a last um number was one hundred twenty nine and this is now one hundred fifteen. 10:14.820 --> 10:25.580 So you can also change your network masks and net netmask and broadcast ad broadcast address with Eve 10:25.640 --> 10:27.120 Ifconfig Command. 10:27.840 --> 10:34.680 For instance, if you want to assign the same 80 zero interface with internet masks, two hundred fifty 10:34.680 --> 10:41.910 five point two hundred fifty five point zero point zero and the broadcast address to one hundred ninety 10:41.910 --> 10:47.910 two point one hundred eighty eight to six and four point one point. 10:48.870 --> 10:50.130 Two hundred fifty five. 10:50.660 --> 11:01.590 Um, then your shoulder Typekit this in your tunnel, for example, cornflake and that's a sign our 11:02.430 --> 11:06.570 I Ethernet adapter here and the first out. 11:08.100 --> 11:09.270 IP address here. 11:09.600 --> 11:10.360 Uh, here. 11:10.380 --> 11:13.890 One hundred twenty one hundred sixty eight. 11:15.540 --> 11:16.140 Want her? 11:17.900 --> 11:20.690 One point one hundred fifteen. 11:25.120 --> 11:28.690 One, 230 point, for example. 11:28.960 --> 11:32.720 There's just no one hundred fifteen here. 11:33.460 --> 11:42.100 And we showed you sudo for the second month and actually let's change the next month as well here. 11:42.460 --> 11:48.820 Netmask two hundred fifty five point two hundred fifty five point zero point zero As you can see here, 11:48.820 --> 11:57.960 we have the latest for the last 255, and part of from our common was learn all about this what, uh, 11:58.000 --> 12:00.100 what is netmask and what is broadcast? 12:00.610 --> 12:06.870 I will just show you how it is done and, uh, broadcast here. 12:06.940 --> 12:13.930 One hundred twenty nine to two point one hundred sixty eight point one point two hundred fifty four. 12:16.950 --> 12:23.050 Yes, the country I see here now, we changed our IP address once again. 12:23.100 --> 12:29.220 If you're done correctly, everything collected the next response with a new command prompt here. 12:30.210 --> 12:36.410 So now enter ifconfig command again to verify the huge of the parameters has been changed accordingly. 12:36.420 --> 12:40.350 Here, as you can see here, we changed all of that. 12:43.370 --> 12:43.730 So. 12:45.530 --> 12:48.590 In Linux, we can spoil the IPA as well. 12:50.190 --> 12:56.040 Um, actually, in next lecture, we will do it, so I am waiting you in next lecture.