It wouldn’t be as easy as this seems to break the internet. If you are already connected to the Lan segment between two internet core routers you can do a lot more to harm the internet. Plus there has to be password authentication configured between the internet routers to prevent this. But raising awareness of network security is always a must
@@bradley6727 when you are connected to the lan segment, you can break their IGP or BGP neighborship, though there should be redundancy so shouldn't cause an outage. But injecting loop would. Like ARP attack to force traffic to be sent to your device and blachole it. This doesn't even need you to guess the BGP neighbor password.
you must have access to the internal network and pass the key authentication to do so , however maybe one of the internal network engineer have access to the network of FB caused this kind of issues , anyways great to wake awareness ,
Simple script to DoS Facebook by injecting fake BGP routes into the BGP routing table of a live BGP router. Disclaimer: This video is for educational purposes only. I own all equipment used for this demonstration. No actual attack took place on Facebook or Internet BGP routers. I demonstrate in this video how Python and scapy can inject fake routes into BGP routing tables if BGP routers are not hardened. See the links below on how to protect your routers. In other videos in this series, I showed you how to remove routes and reset BGP neighbor relationships. You need to learn to code! Learn Python. Learn Networking. You are going to be very powerful and very scary if you combine knowledge of networking with Python scripting! But, do good. Learn to code. Learn Linux. Learn Networking. // MENU // 0:00 ▶ Introduction 0:23 ▶ Facebook BGP issue 0:45 ▶ Add fake routes = routing loop 1:25 ▶ lol.... routing loop 2:26 ▶ Be warned 3:19 ▶ Routing tables before script 4:05 ▶ Why we need to two routers 4:25 ▶ Cisco ISR router 4:48 ▶ Kali and Python script 5:28 ▶ Python script details 11:38 ▶ Create Python script on Kali Linux 12:15 ▶ Run Python script 12:56 ▶ Verify new route in routing table 13:40 ▶ Verify connectivity to Facebook 13:55 ▶ Change Python script 14:33 ▶ New Python script 15:00 ▶ Test Python script 15:12 ▶ Issue with BGP and script 15:58 ▶ Test script again 16:46 ▶ Successful routing table update 17:05 ▶ Facebook is not available (routing loop) 18:54 ▶ BGP is important! // BGP MUSIC // You down with BGP: ruclips.net/video/RT-1DU33xIk/видео.html // SCRIPTS // DoS BGP network: davidbombal.wiki/bgpupdate Previous BGP video 1: ruclips.net/video/39DGVpMt7eQ/видео.html Previous BGP video 2: ruclips.net/video/IFYBIjjXLbQ/видео.html Playlist: davidbombal.wiki/scapy // SCAPY RESOURCES // Website: scapy.net/ Documentation: scapy.readthedocs.io/en/latest/ // SCAPY INSTALLATION // sudo apt update sudo apt install python3-pip sudo pip3 install scapy // SOCIAL // Discord: discord.com/invite/usKSyzb Twitter: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal RUclips: ruclips.net/user/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // BGP RESOURCES // NSA: www.nsa.gov/Portals/70/documents/what-we-do/cybersecurity/professional-resources/ctr-guide-to-border-gateway-protocol-best-practices.pdf Cisco: www.cisco.com/c/en/us/support/docs/ip/access-lists/13608-21.html AWS: docs.aws.amazon.com/directconnect/latest/UserGuide/limits.html Juniper: www.juniper.net/documentation/en_US/junos/topics/topic-map/bgp-tcp-sessions.html NSRC: nsrc.org/workshops/2017/apricot2017/bgp/bgp/preso/05-BGP-BCP.pdf Internet Society: www.internetsociety.org/deploy360/securing-bgp/ Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
Good morning sir, why are you not replying to message. I sent you thousands of messages and you haven't replied them I don't know how I could really follow those tutorials if you don't reply
Great Video David, I was working on the CCIE Routing track, and was shocked at how little focus they had on Encrypting network protocols ... so this attack is very real
Great video. What is the correct way to mitigate this kind of attack, is it: a)neighbor authentication b)inbound filters via prefix lists and acls c)either of the above plus physical security over the links d)some other way not mentioned? I've come across RBTH but can't say I understand it well enough to know whether it can mitigate this attack. Thank you.
@@davidbombal We share the same passion to keep on learning & sharing knowledge. I know you are giving your best - knowledge of great value - freely; & I fully understand how we draw strength from people who learn from us. Just re-channelling some positive energy back to you. Best of Wishes, Sincerely!
-Great content Professor David Bombal....!!! -Yeah... Look at the coincidence the teacher teaching scripts for BGP and Facebook goes down, warn these boys not to use it in the real world.... LOL -But the problem with Facebook is that they use a whole specific infrastructure that is almost custom made for them using an Arista hardware base but with SDN controllers only theirs using the so-called FBOSS network operating system which is the distributed network system, their Fabric Aggregator, so the error in BGP must have been something related to some update of this Fabric and the interaction with their edge devices, but only they can really know, right...? -Thank you very much for the knowledge professor David Bombal...!!!
Great video David, I really did not know that something like scapy exist before your video! Thx If I get it right, to make this work we must first capture traffic between two BGP peers (SPAN port or hub :D ) or we can create new frame without capturing traffic, but then we need to know src/dst MAC of both frame together with other parameters. What if BGP peers use authentication? Yes, it is not so secure, but it is some type of authentication. We can sniff that hash as well and put it to the new frame? How long would that prefix remain in the BGP table...
HELLO !! SIR, I know another wifi hacking tool name is EVIL TWIN ATTACK. In the next video can you make a video about the Evil Twin attack and what pkg should we install and what configure should we do to use that...LOVE YOUR VIDEO
Hey David, great video. I am using your script as a reference for my Network Security project which is to inject fake routes to reroute traffic in an internal network. However, I am unable to figure out how to modify the AS_PATH variable to make the fake route more favorable to the other route. Can you provide some insights as to how I can inject a route with a short AS_PATH value to cause the router to favor that path instead? Cheers, Jon
Hey can you teach us how to create an autonomous system and bgp running on my tp-link router and connecting to an internet exchange point? by the way i have a couple of tp-links.
I can't get past how you are capturing the frame to begin with. BGP sessions are unicast, so the only way I can think of that you can capture that frame is via span session. Just being connected to the same L2 segment wouldn't accomplish this. So, you would have to have administrative access to the switch to begin with to be able to configure the mirroring. How was that accomplished? Without capturing a frame, you can't forge the source mac of the router sending the forged BGP update.
@@davidbombal Yeah, I get taps as well. I guess it's a scenario that could happen, but not very likely, unless you have a rogue engineer with physical access who knows what they're doing (not likely) or a rogue cable / power contractor (even less likely). I guess I should focus on the how rather than the likelihood, which is the point of the exercise.
@@pavelkriukov4168 In eBGP, a router will not accept an update that includes it's own AS. In iBGP, a router will not advertise to iBGP neighbors a route that it learned from another iBGP neighbor. The exception, since a full mesh is a general rule in iBGP is, to avoid the necessity of a full mesh, route reflectors can be employed. Loop prevention with route reflectors include cluster lists and originator ID. Further, an iBGP AS can be broken up into confederations which would be like sub-ASes within an iBGP AS.
sir i am an intermediate in python but this code makes no sense to me can you tell me where i am wrong and i am also studying your ccna from udemy so i know some networking too
Hi sir, I've messaged you on messenger... Anyway I'm from Philippines and I would like to ask for your help in recovering my mother's Facebook account... It was hacked last week on October 27, 3:54am here in our country. He changed everything, the email, password, and he also removed the phone number...A day after, he deactivated it and we can't see the photos and videos posted there... We really need to get that account back sir because all our memories were there and we don't have any copy of those pictures.. We have the IP ADDRESS of the hacker We can't follow or do what you teach here sir, because we don't have stable internet Please help us sir... We badly needed your help sir.
@@n_persaud Totally agreed! Not only that, many will also learn and pick up the generousity and know that they can someday be able to give back the same magnitude of caring. Passing on a great tradition of learning & sharing.
Please I’m looking forward to a course in cyber security from you. Thanks for sharing all your experience, you are a blessing to the IT world.
Love that song BGP🤣
Agreed - great song :)
It wouldn’t be as easy as this seems to break the internet. If you are already connected to the Lan segment between two internet core routers you can do a lot more to harm the internet. Plus there has to be password authentication configured between the internet routers to prevent this. But raising awareness of network security is always a must
Explain. Please provide visuals and reference your source material. I am very interested in your explanation. Thank you
@@bradley6727 when you are connected to the lan segment, you can break their IGP or BGP neighborship, though there should be redundancy so shouldn't cause an outage. But injecting loop would. Like ARP attack to force traffic to be sent to your device and blachole it. This doesn't even need you to guess the BGP neighbor password.
you must have access to the internal network and pass the key authentication to do so , however maybe one of the internal network engineer have access to the network of FB caused this kind of issues , anyways great to wake awareness ,
I really like this series. How about getting John Hammond the guru of Python and pen-testing for his input. 😎
Follow and love your cours, you are moving me ahead to be a duplicate of you in my country thanks again sir for your class🇨🇲🇨🇲
you are a awesome teacher sir ; it's a pleasure to learn with you .
Simple script to DoS Facebook by injecting fake BGP routes into the BGP routing table of a live BGP router.
Disclaimer: This video is for educational purposes only. I own all equipment used for this demonstration. No actual attack took place on Facebook or Internet BGP routers. I demonstrate in this video how Python and scapy can inject fake routes into BGP routing tables if BGP routers are not hardened. See the links below on how to protect your routers.
In other videos in this series, I showed you how to remove routes and reset BGP neighbor relationships.
You need to learn to code! Learn Python. Learn Networking. You are going to be very powerful and very scary if you combine knowledge of networking with Python scripting! But, do good.
Learn to code. Learn Linux. Learn Networking.
// MENU //
0:00 ▶ Introduction
0:23 ▶ Facebook BGP issue
0:45 ▶ Add fake routes = routing loop
1:25 ▶ lol.... routing loop
2:26 ▶ Be warned
3:19 ▶ Routing tables before script
4:05 ▶ Why we need to two routers
4:25 ▶ Cisco ISR router
4:48 ▶ Kali and Python script
5:28 ▶ Python script details
11:38 ▶ Create Python script on Kali Linux
12:15 ▶ Run Python script
12:56 ▶ Verify new route in routing table
13:40 ▶ Verify connectivity to Facebook
13:55 ▶ Change Python script
14:33 ▶ New Python script
15:00 ▶ Test Python script
15:12 ▶ Issue with BGP and script
15:58 ▶ Test script again
16:46 ▶ Successful routing table update
17:05 ▶ Facebook is not available (routing loop)
18:54 ▶ BGP is important!
// BGP MUSIC //
You down with BGP: ruclips.net/video/RT-1DU33xIk/видео.html
// SCRIPTS //
DoS BGP network: davidbombal.wiki/bgpupdate
Previous BGP video 1: ruclips.net/video/39DGVpMt7eQ/видео.html
Previous BGP video 2: ruclips.net/video/IFYBIjjXLbQ/видео.html
Playlist: davidbombal.wiki/scapy
// SCAPY RESOURCES //
Website: scapy.net/
Documentation: scapy.readthedocs.io/en/latest/
// SCAPY INSTALLATION //
sudo apt update
sudo apt install python3-pip
sudo pip3 install scapy
// SOCIAL //
Discord: discord.com/invite/usKSyzb
Twitter: twitter.com/davidbombal
Instagram: instagram.com/davidbombal
LinkedIn: www.linkedin.com/in/davidbombal
Facebook: facebook.com/davidbombal.co
TikTok: tiktok.com/@davidbombal
RUclips: ruclips.net/user/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// BGP RESOURCES //
NSA: www.nsa.gov/Portals/70/documents/what-we-do/cybersecurity/professional-resources/ctr-guide-to-border-gateway-protocol-best-practices.pdf
Cisco: www.cisco.com/c/en/us/support/docs/ip/access-lists/13608-21.html
AWS: docs.aws.amazon.com/directconnect/latest/UserGuide/limits.html
Juniper: www.juniper.net/documentation/en_US/junos/topics/topic-map/bgp-tcp-sessions.html
NSRC: nsrc.org/workshops/2017/apricot2017/bgp/bgp/preso/05-BGP-BCP.pdf
Internet Society: www.internetsociety.org/deploy360/securing-bgp/
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
Good morning sir, why are you not replying to message. I sent you thousands of messages and you haven't replied them I don't know how I could really follow those tutorials if you don't reply
but this is offline. can you teach me online hack
I request to you to do more videos like this
You are a blessing to my IT career. Love from Ghana 🇧🇴🥰
I like Ghana my bru. Actually I like all of Africa.
Great Video David, I was working on the CCIE Routing track, and was shocked at how little focus they had on Encrypting network protocols ... so this attack is very real
Agreed. We definitely need more of an emphasis on blue team stuff.
Thanks so much, you educate us in so many topics, appreciated.
Thank you, great video.
I learn more in a very few minutes that used to take hours.
I can really speed up my learning by hanging out with you.
Great video. What is the correct way to mitigate this kind of attack, is it:
a)neighbor authentication
b)inbound filters via prefix lists and acls
c)either of the above plus physical security over the links
d)some other way not mentioned?
I've come across RBTH but can't say I understand it well enough to know whether it can mitigate this attack.
Thank you.
I always learn from you, actually I got as a network engineer due to you explanation
👍👍👍👍👍Dear David,
Great Job, Well Done!
Lot's of respect for your persistence and willingness to share knowledge.
Thank You once again!
Thank you very much Bob!
@@davidbombal We share the same passion to keep on learning & sharing knowledge. I know you are giving your best - knowledge of great value - freely; & I fully understand how we draw strength from people who learn from us. Just re-channelling some positive energy back to you.
Best of Wishes,
Sincerely!
Learning your Udemy Cisco..
This is just crossing my head
This is a more advanced topic. It will make sense once you complete your CCNP.
You are AMAZING SIR.. ❤️
Thank you very much!
Just waiting to get my second monitor since I enrolled in your free give away for the cisco CCNA 200-301!
Good video, great description and explanation.
Thank you Gavin. Glad you liked it!
-Great content Professor David Bombal....!!!
-Yeah... Look at the coincidence the teacher teaching scripts for BGP and Facebook goes down, warn these boys not to use it in the real world.... LOL
-But the problem with Facebook is that they use a whole specific infrastructure that is almost custom made for them using an Arista hardware base but with SDN controllers only theirs using the so-called FBOSS network operating system which is the distributed network system, their Fabric Aggregator, so the error in BGP must have been something related to some update of this Fabric and the interaction with their edge devices, but only they can really know, right...?
-Thank you very much for the knowledge professor David Bombal...!!!
I’m already feeling like a badass hacker. 😎
Just don't try this on a live network unless you have permission.
Best video ever and like how you tech but please make one video on how can I make a undetectable backdoor.
“So that i can cause problems 😈”
- David Bombal 😂
great videos. going for the ccna this month and next is pentest plus or sec+ training. thank you
Thank you Jonathan! And thank you for your support. All the best for your exam! Go and get that CCNA!
Great video David, I really did not know that something like scapy exist before your video! Thx
If I get it right, to make this work we must first capture traffic between two BGP peers (SPAN port or hub :D ) or we can create new frame without capturing traffic, but then we need to know src/dst MAC of both frame together with other parameters.
What if BGP peers use authentication? Yes, it is not so secure, but it is some type of authentication. We can sniff that hash as well and put it to the new frame?
How long would that prefix remain in the BGP table...
You know BGP? I feel a "naughty by nature" hacker :) Good choice of music!
Thank you. Great song that :)
HELLO !! SIR, I know another wifi hacking tool name is EVIL TWIN ATTACK. In the next video can you make a video about the Evil Twin attack and what pkg should we install and what configure should we do to use that...LOVE YOUR VIDEO
Thank you for introducing us this knowledge!!!
Ah, so that was YOU giving FB a headache, David. Thanks, we were glad of the break XD
lol... it wasn't me! 😂
I love the content you create. That BGP song!!
Hello "David sir " good to see you again!!! Diwali whishes act for me ! In srilanka
Thank you Sinos!
David goes dark side……..awesome! 😄
lol.... just having some fun with BGP 😂
Mr. David, please give us an episode on hacking websites, especially a loophole xss
Thanks David....
kali king, thanks sir
Thank you. But there are many others who should get that title rather than me.
Enjoying your videos!
Glad to hear it!
The song bgp 😂
Hey David, great video. I am using your script as a reference for my Network Security project which is to inject fake routes to reroute traffic in an internal network. However, I am unable to figure out how to modify the AS_PATH variable to make the fake route more favorable to the other route. Can you provide some insights as to how I can inject a route with a short AS_PATH value to cause the router to favor that path instead?
Cheers,
Jon
More ❤️ from 🇳🇬
Thank you!
You have my attention for rest of my life 👌
Thank you 😀
Love From India ❤️
Thank you!
Hi can you make video how to start with python ? Thx for all and your videos
You are the best hacker!
Great video!
Glad you enjoyed it
Super nice
Great
Hey can you teach us how to create an autonomous system and bgp running on my tp-link router and connecting to an internet exchange point? by the way i have a couple of tp-links.
You'll have to be able to sniff bgp session BTW the two routers.
any chance to get a video on how to prepare a network documentation?
Soo much good videos thanks !!
Glad you like them!
Hello sir, should I start the EH journey from OSCP?
Just imagine if Facebook went down again then Mark Zuckerberg be like I'm down with BGP.
😂
LOVE from india🇮🇳
Thank you Tamanna!
welcome back M.r
Thank you!
Thanks
How big is that monitor ? It’s amazing !!
Hi david can u do a video abowt fiching Facebook and other accounts
Any one from India?? Modi jih: kya scene hay! Har jagah bgp
I can't get past how you are capturing the frame to begin with. BGP sessions are unicast, so the only way I can think of that you can capture that frame is via span session. Just being connected to the same L2 segment wouldn't accomplish this. So, you would have to have administrative access to the switch to begin with to be able to configure the mirroring. How was that accomplished? Without capturing a frame, you can't forge the source mac of the router sending the forged BGP update.
I explain the use of network taps and the switch setup in the first video in this series: ruclips.net/video/39DGVpMt7eQ/видео.html
@@davidbombal Yeah, I get taps as well. I guess it's a scenario that could happen, but not very likely, unless you have a rogue engineer with physical access who knows what they're doing (not likely) or a rogue cable / power contractor (even less likely). I guess I should focus on the how rather than the likelihood, which is the point of the exercise.
Here we go again :D
Hope you enjoy the video :)
Love from 🇧🇩
Thank you Sayed!
Thank u sir
You're welcome!
The MAN!
Thank you :)
What about loop guard? Does this kind of injection deactivate loop guard on BGP routers?
Loopguard is a STP protection mechanism.
@@crazyredneck7244 I know, but I mean - does the same kind of "loop guard" protocol exist on BGP routers?
@@pavelkriukov4168 In eBGP, a router will not accept an update that includes it's own AS. In iBGP, a router will not advertise to iBGP neighbors a route that it learned from another iBGP neighbor. The exception, since a full mesh is a general rule in iBGP is, to avoid the necessity of a full mesh, route reflectors can be employed. Loop prevention with route reflectors include cluster lists and originator ID. Further, an iBGP AS can be broken up into confederations which would be like sub-ASes within an iBGP AS.
but this is offline. can you teach me online hack
hello, can you give subtitle Indonesian, please., i can't speak English. Thanks you.
Wish I could hack my brain to be smarter and learn Python faster.....ugh. It's ok, tho.
Sir, let's fry Facebook motherboards 😅😂🤣🤣
😂
wow, so the Internet was hacked?
sir i am an intermediate in python but this code makes no sense to me can you tell me where i am wrong and i am also studying your ccna from udemy so i know some networking too
bisa sub titel indo ?
Hi sir, I've messaged you on messenger... Anyway I'm from Philippines and I would like to ask for your help in recovering my mother's Facebook account...
It was hacked last week on October 27, 3:54am here in our country. He changed everything, the email, password, and he also removed the phone number...A day after, he deactivated it and we can't see the photos and videos posted there...
We really need to get that account back sir because all our memories were there and we don't have any copy of those pictures..
We have the IP ADDRESS of the hacker
We can't follow or do what you teach here sir, because we don't have stable internet
Please help us sir... We badly needed your help sir.
1st
Thank you for your support!
I don't use Facebook
🤣😂🤣🤣
Hmm no comments
Because you are quick :)
@@davidbombal appreciate what you are doing with the channel 💯. These free courses will help plenty persons.
@@n_persaud Totally agreed! Not only that, many will also learn and pick up the generousity and know that they can someday be able to give back the same magnitude of caring. Passing on a great tradition of learning & sharing.
How to hack Facebook id 🤣?
Pure evil. :)
lol... learn how to attack so you can protect 😀
@@davidbombal Yes & Yes-Yes!
With great power comes great responsibility! Keep learning, keep sharing, keep growing together.
I stopped watching it when I heard the hip hop cover... horrible... omg
Hello please activ the subtittle in indonesia.thsks
Great
Thank you!