Mallory Bob Alice Mallory "Hi Bob, it's Alice. Give me your key"--> Bob Alice Mallory <--[Bob's_key] Bob Alice <--[Mallory's_key] Mallory Bob Alice "Meet me at the bus stop!"[encrypted with Mallory's key]--> Mallory Bob Alice Mallory "Do not meet me!"[encrypted with Bob's key]--> Bob"> Mallory Bob Alice Mallory "Hi Bob, it's Alice. Give me your key"--> Bob Alice Mallory <--[Bob's_key] Bob Alice <--[Mallory's_key] Mallory Bob Alice "Meet me at the bus stop!"[encrypted with Mallory's key]--> Mallory Bob Alice Mallory "Do not meet me!"[encrypted with Bob's key]--> Bob">

Presentation is loading. Please wait.

Presentation is loading. Please wait.

Christopher Avilla. What is MiTM?Computer MiTMGSM MiTM Tips for Detection of MiTM.

Published byAustyn Crosthwait Modified over 10 years ago

Similar presentations

Presentation on theme: "Christopher Avilla. What is MiTM?Computer MiTMGSM MiTM Tips for Detection of MiTM."— Presentation transcript:

1 Christopher Avilla

2 What is MiTM?Computer MiTMGSM MiTM Tips for Detection of MiTM

3

4 Alice "Hi Bob, it's Alice. Give me your key"--> Mallory Bob Alice Mallory "Hi Bob, it's Alice. Give me your key"--> Bob Alice Mallory <--[Bob's_key] Bob Alice <--[Mallory's_key] Mallory Bob Alice "Meet me at the bus stop!"[encrypted with Mallory's key]--> Mallory Bob Alice Mallory "Do not meet me!"[encrypted with Bob's key]--> Bob

5 Computer Network – ARP cache poisoning Cell Phone Networks – IMSI catcher and VBTS RFID Chips and Readers

6 Send ARP Reply to Client acting as Server Send ARP Reply to Server acting as Client Then View, Edit, Modify and Inject packets to and from target

7 Cain and Able EttercapDsniff

8 Injection DNS Spoofing SSL Strip Sniffing

9 International Mobile Subscriber Identity (IMSI) GSM equivalent to a username Universal Software Radio Peripheral (USRP) http://revision3.com/hak5/shmoocon2010

10 Ability for base station to tell hand set that it will not get cipher Plain text between phone and SIM card

11 Secret Key in SIM Card Base station sends 128 bit Random number SIM Card concats 128 with Secret Key Hashes the result and splits in two Half is sent back to base station Half is used for cypher A5 A53 is 3G encryption

12 OpenBTS Hooks in to Asterisk (VoIP) SIP proxy with voice changer Target specific phone number and route all calls to 911 Sniff all SIP packets and replay conversations http://openbts.sourceforge.net/

13 Third Party Applications – AntiARP or XArp http://www.raymond.cc/blog/archives/2009/08/07/protect-your-computer-against-arp-poison-attack- netcut/ http://www.raymond.cc/blog/archives/2009/08/07/protect-your-computer-against-arp-poison-attack- netcut/ Look at your ARP table by ARP/a or ARP –a Use static ARP tables A fine tuned IDS will alert you when youve fallen GSM phone should alert you when non-encrypted

14

15 http://en.wikipedia.org/wiki/Universal_Software_Radio_Periph eral http://en.wikipedia.org/wiki/Universal_Software_Radio_Periph eral http://en.wikipedia.org/wiki/ARP_spoofing http://www.irongeek.com/ http://www.monkey.org/~dugsong/dsniff/faq.html http://openmaniak.com/ettercap_filter.php http://www.shmoocon.org/presentations-all.html http://openbts.sourceforge.net/ http://revision3.com/hak5/pineapples http://revision3.com/hak5/shmoocon2010

Download ppt "Christopher Avilla. What is MiTM?Computer MiTMGSM MiTM Tips for Detection of MiTM."

Similar presentations

Ethical Hacking Module VII Sniffers.

Ethical Hacking Module VII Sniffers.
Security Lab 2 MAN IN THE MIDDLE ATTACK

Security Lab 2 MAN IN THE MIDDLE ATTACK
Man in the Middle Attack

Man in the Middle Attack
ARP Spoofing.

ARP Spoofing.
ARP Caching Christopher Avilla. What is ARP all about? Background Packet Structure Probe Announcement Inverse and Reverse Proxy Tools Poisoning MAC Flooding.

ARP Caching Christopher Avilla. What is ARP all about? Background Packet Structure Probe Announcement Inverse and Reverse Proxy Tools Poisoning MAC Flooding.
ARP Cache Poisoning How the outdated Address Resolution Protocol can be easily abused to carry out a Man In The Middle attack across an entire network.

ARP Cache Poisoning How the outdated Address Resolution Protocol can be easily abused to carry out a Man In The Middle attack across an entire network.
Siyang Tian. TOPIC 1.SIM CARD card embedded with subscriber identity module 2. 3G network 3rd generation mobile telecommunications.

Siyang Tian. TOPIC 1.SIM CARD card embedded with subscriber identity module 2. 3G network 3rd generation mobile telecommunications.
Islamic University-Gaza Faculty of Engineering Electrical & Computer Engineering Department Global System for Mobile Communication GSM Group Alaa Al-ZatmaHosam.

Islamic University-Gaza Faculty of Engineering Electrical & Computer Engineering Department Global System for Mobile Communication GSM Group Alaa Al-ZatmaHosam.
GSM: SRSLY?. What’s coming up Overview of GSM arch & crypto –Hacking as we go... OpenBootTS-1.0 –GSM Base Station LiveCD Demo BTS is live – feel free.

GSM: SRSLY?. What’s coming up Overview of GSM arch & crypto –Hacking as we go... OpenBootTS-1.0 –GSM Base Station LiveCD Demo BTS is live – feel free.
Chapter 17 Telecom abuses. Attacks on Metering 50’s operator listened for coins to hit metal plate Operator had to ask for number you were calling from.

Chapter 17 Telecom abuses. Attacks on Metering 50’s operator listened for coins to hit metal plate Operator had to ask for number you were calling from.
Media Access Control (MAC) addresses in the network access layer ▫ Associated w/ network interface card (NIC) ▫ 48 bits or 64 bits IP addresses for the.

Media Access Control (MAC) addresses in the network access layer ▫ Associated w/ network interface card (NIC) ▫ 48 bits or 64 bits IP addresses for the.
An Attack at Indiana University ARP Poison Routing David A. Greenberg, GSEC, GCWN, GCFA Principal Security Engineer University Information Security Office.

An Attack at Indiana University ARP Poison Routing David A. Greenberg, GSEC, GCWN, GCFA Principal Security Engineer University Information Security Office.
Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.

Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
Network Attacks Mark Shtern.

Network Attacks Mark Shtern.
Key Escrow System “like leaving your key with a neighbour in case of an emergency” 10-11-2009 SSIN – MIEIC Micael Fernando Fonseca Oliveira.

Key Escrow System “like leaving your key with a neighbour in case of an emergency” SSIN – MIEIC Micael Fernando Fonseca Oliveira.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types.

WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types.
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Similar presentations

Ads by Google