Destroying VNC with Cain and Abel

Поделиться
HTML-код
  • Опубликовано: 29 окт 2024
  • НаукаНаука

Комментарии • 168

  • @davidbombal
    @davidbombal  3 года назад +8

    Menu:
    Overview: 0:00
    Packet Capture: 0:34
    Cain Software: 0:50
    FTP: 1:34
    Telnet: 2:30
    HTTP: 3:29
    VNC: 3:44
    Wordlist: 5:26
    Bruteforce: 5:51
    ================
    Connect with me:
    ================
    Discord: discord.davidbombal.com
    Twitter: twitter.com/davidbombal
    Instagram: instagram.com/davidbombal
    LinkedIn: www.linkedin.com/in/davidbombal
    Facebook: facebook.com/davidbombal.co
    TikTok: tiktok.com/@davidbombal
    RUclips: ruclips.net/user/davidbombal
    ================
    Support me:
    ================
    Join thisisIT: bit.ly/thisisitccna
    Or, buy my CCNA course and support me:
    DavidBombal.com: CCNA ($10): bit.ly/yt999ccna
    Udemy CCNA Course: bit.ly/ccnafor10dollars
    GNS3 CCNA Course: CCNA ($10): bit.ly/gns3ccna10
    ======================
    Special Offers:
    ======================
    Cisco Press: Up to 50% discount
    Save every day on Cisco Press learning products! Use discount code BOMBAL during checkout to save 35% on print books (plus free shipping in the U.S.), 45% on eBooks, and 50% on video courses and simulator software. Offer expires December 31, 2020. Shop now.
    Link: bit.ly/ciscopress50
    ITPro.TV:
    itpro.tv/davidbombal
    30% discount off all plans Code: DAVIDBOMBAL
    Boson software: 15% discount
    Link: bit.ly/boson15
    Code: DBAF15P
    Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

    • @shihab6573
      @shihab6573 3 года назад

      Is ccna certificate mandatory to get into a job as L1 engineer i have knowledge in ccna.But my plan is to directly write ccnp after hands on real experience and attending classes.

  • @sayedsekandar
    @sayedsekandar 3 года назад +9

    Thank you for making straight quality content related to the specific subject.

  • @sabirbaloch6315
    @sabirbaloch6315 3 года назад +1

    Best instructor ever, I have passed my CCNA ROUTING AND SWITCHING, CCNP Encore just because of this instructor. They way you explain the stuff is amazing. You make everything simple and easy understand. As a refugee in UK from nothing to become a CCNP ENCORE certified is a big achievement for me and soon I will get certified CCNP ENARSI as well. A massive thank you from a refugee to you Sir David Bombal

    • @davidbombal
      @davidbombal  3 года назад +1

      Thank you so much Sabir. CONGRATULATIONS!!! That is fantastic news. And you did all of that starting with nothing in the UK!

    • @sabirbaloch6315
      @sabirbaloch6315 3 года назад

      @@davidbombal All of that from nothing, I have got myself routers and switches and just started learning. I am struggling to get a job but I am positive I will get my entry level job because I hold a solid understanding how network and protocols works. Thank you very much Sir

  • @vyasG
    @vyasG 3 года назад +2

    Yet another great video. Thank you so much. Appreciate your efforts.

  • @krisnapranavelangovan6453
    @krisnapranavelangovan6453 3 года назад +2

    David is an inspiration for me. Your doing a great job👍❤️

  • @walidtahir9170
    @walidtahir9170 3 года назад +5

    I click on I like before seeing the whole video and I never regretted to have done it because really it's a beautiful content

  • @O2C69
    @O2C69 3 года назад

    Always great videos, great explanations and with great clarity... 💎

    • @davidbombal
      @davidbombal  3 года назад +1

      Thank you, really appreciate it!

  • @74mada
    @74mada Год назад

    The DEVELOPER of "Cain and Abel" is an absolute genius ☠🎩

  • @anuradhalakruwan1918
    @anuradhalakruwan1918 3 года назад +1

    Good lesson sar..... 👍👍👍👍👍

  • @tuos5155
    @tuos5155 3 года назад

    Nice vid David 👍

  • @vardhangoud8851
    @vardhangoud8851 3 года назад

    Fantastic video David

  • @naeem8434
    @naeem8434 3 года назад

    Amazing video sir, I think this software is very underrated

  • @navidmafi
    @navidmafi 3 года назад

    Great as always!!!!

  • @guilherme5094
    @guilherme5094 3 года назад

    Thank you David.

  • @ronetteprinsloo5048
    @ronetteprinsloo5048 3 года назад

    Thank you David!

    • @davidbombal
      @davidbombal  3 года назад +1

      You're welcome. Good to see you here again.

  • @ilirgashi6819
    @ilirgashi6819 3 года назад

    You rock my man, I am learning more form you than all my teacher's at schools, idk how it's called "Autodidact" self-learning or
    "Auto Bombal" learning haahha :D, nice work from you.

  • @educastellini
    @educastellini 3 года назад

    -Thanks for the quality content and knowledge.
    -So the video shows that all protocols even with encryption can be broken, in the case the video showed that 3DES was being used so the handshake was encrypted.
    -I use RealVNC which by their security paper says it uses with the AES-GCM encryption connection tool and that all their connections
    use 128-bit AES encryption, whereas in their commercial version of the company, up to 256-bit AES can be used, and they say verbatim in the paper "All encryption is end-to-end, ensuring no one can read the data in transit, including RealVNC ".
    -Now I was in doubt whether the tools of kali or other pentest distro can break their hanshake ...?
    -The question that changes everything is just the character size of the password or with a more complex encryption, the gross attack becomes more difficult ...?
    -I'm going to put the address of the RealVNC paper in case the teacher wants to analyze whether it is safe or not, if I was not involved in studying now for the CCNA I would test it myself, but if God wants there by March with the CCNA and the certification of Linux I will be able to take the security course for the teacher and Chuck (who is a teacher I highly recommend too), to prepare for compTIA Security.
    -Thanks for the master knowledge ... !!!
    www.realvnc.com/media/documents/vncconnect-security-whitepaper.pdf

    • @davidbombal
      @davidbombal  3 года назад

      Great feedback as usual Eduardo!

  • @skmostofa1087
    @skmostofa1087 3 года назад

    very infomative video

  • @MrRobot222
    @MrRobot222 3 года назад

    I've not used Cain since I started messing around with hacking back in 2007. It was amazing then and looks like it's still holding it's own even now!

  • @kemalsoydere4296
    @kemalsoydere4296 3 года назад +1

    Love it

    • @davidbombal
      @davidbombal  3 года назад +1

      Thank you Keemal

    • @kemalsoydere4296
      @kemalsoydere4296 3 года назад

      @@davidbombal You're welcome... I really loved it and I learn a lot from you.

  • @nawid1687
    @nawid1687 3 года назад

    YESSS!! another vid!

  • @orleydoss3171
    @orleydoss3171 3 года назад

    Wow... excellent content. Just seems too easy. Complexity and length really need to be implemented. Thank you sir!

    • @davidbombal
      @davidbombal  3 года назад +1

      It can be too easy, but I'm using a controlled environment here :)

  • @ujithadharshana7397
    @ujithadharshana7397 3 года назад

    🔥🔥 Nice Work Sir 🔥🔥

  • @kr4k3nn
    @kr4k3nn 3 года назад

    Great One

  • @Sambeats69005
    @Sambeats69005 3 года назад

    Amazing info

  • @fahmidjuje2634
    @fahmidjuje2634 3 года назад +1

    may ask which security system is suitable for securing video conferencing application servers??

  • @armincal9834
    @armincal9834 3 года назад

    I have a question which is not directly related to this video, but let's say we are using https to send our login info right? Before we can establish an https connection, we have to exchange keys right? What is preventing a man in the middle from capturing the keys while they are being exchanged and pretend to be the user? (it can even sign all documents correctly).
    People say stripping https to http for famous websites like Facebook is impossible because browsers know out of the box that they should use https for them, but again they have to exchange keys right?

  • @sunman.official
    @sunman.official 3 года назад

    Great video!

  • @derezzed5588
    @derezzed5588 3 года назад

    I have only recently stumbled upon the Cain and Abel tool and have done a bit of research but I can't seem to find whether Cain can be used to access remote networks. Is it strictly for LAN use?

  • @sudarshan2415
    @sudarshan2415 3 года назад +1

    Hello Bombal
    Rockyou.txt is not opening it is coming like uft-8 valid error with mousepad please help me reply 🙏🙏

  • @realhomy
    @realhomy 3 года назад +1

    Yessir

    • @davidbombal
      @davidbombal  3 года назад

      Great to see you here so quickly :)

  • @spryzenshu989
    @spryzenshu989 3 года назад

    I know you are awesome sir

  • @achhatkumargupta2954
    @achhatkumargupta2954 3 года назад

    Ooo boom sir 😎

  • @ohhmypenniereview8505
    @ohhmypenniereview8505 3 года назад

    Can i use virtual box with proxychains for realworld pratice?

  • @myshuker1978
    @myshuker1978 7 месяцев назад

    this tools not available on internet anymore .... where can i get it __?

  • @adambrown3918
    @adambrown3918 3 года назад

    Thank you! Very informative. I disabled telnet/ssh on my old home Cisco equipment( still good stuff to learn from ) awhile ago and opted to connect via console cable instead to reduce the attack surface. Nothing is foolproof but at least gives me a little piece of mind from these types of proven attacks. Thanks for posting! 😊

    • @davidbombal
      @davidbombal  3 года назад +1

      Good thing to do Adam to reduce the attack surface :)

  • @shazeali5883
    @shazeali5883 3 года назад

    PLS Post this question; "If two PCs on the same Ethernet tried to use the same MAC address, to which PC should frames sent to that MAC address be delivered?"

  • @amrezzat2192
    @amrezzat2192 3 года назад

    Can I create a temp phone number and receive SMS using Kali?

  • @realhomy
    @realhomy 3 года назад +1

    Nice video

    • @davidbombal
      @davidbombal  3 года назад

      Thank you 06_8B!

    • @realhomy
      @realhomy 3 года назад

      @@davidbombal your welcome it’s very good so far it explains a lot of detail

  • @aaanalyst
    @aaanalyst 3 года назад

    I have forget the number with which my facebook account was connected how can I recover my account please next video I need help

  • @eiddiAmin
    @eiddiAmin 6 месяцев назад

    vnc passward is preventing me to run kali linux on my andriod somsung A13

  • @manudigitalstudio5564
    @manudigitalstudio5564 3 года назад +1

    sir plz tell which is the best Cisco manageable switch for home use and plz tell

    • @davidbombal
      @davidbombal  3 года назад +2

      I'll cover this in another video. Do you want a new switch or an older one from eBay? Basically, how much money do you have?

    • @manudigitalstudio5564
      @manudigitalstudio5564 3 года назад +1

      @@davidbombal older switch

    • @bbowling619
      @bbowling619 3 года назад

      2960 should work and also let you have the ssh option. I just did this with a 2950 and realized that the OS on the switch can’t upgrade to a firmware that supports ssh. :(

  • @balajisharathkumar9753
    @balajisharathkumar9753 3 года назад

    in normal it companies security analyst will not bother about vnc attacks because it is default blocked in cisco firepower as well as cisco asa firewalls

  • @adiflorense1477
    @adiflorense1477 3 года назад

    Sir btw where I must install cain and abel software? is it in victim computer?

    • @davidbombal
      @davidbombal  3 года назад +1

      It is installed on the attacker computer. You can see the installation here: ruclips.net/video/Y2fhWtZedTQ/видео.html

  • @bbowling619
    @bbowling619 3 года назад

    Lolz...literally destroying VNC!
    Does C and A come on Kali or Parrot newest versions pre installed David?

    • @davidbombal
      @davidbombal  3 года назад

      No, it is a Windows application. You can see how to install it here: ruclips.net/video/Y2fhWtZedTQ/видео.html

  • @subhrothetechnoguru
    @subhrothetechnoguru 3 года назад

    Nice.. I had a simple question that can anybody who is using VPN and tor combination can be tracked in some way ?( this question is only for knowledge purpose)

    • @bbowling619
      @bbowling619 3 года назад

      Look up tails ... that might help you to some degree if your trying to be discrete.

  • @williamwiehahn7777
    @williamwiehahn7777 3 года назад

    What program did you use? With a interface. Thanks

    • @yoda8319
      @yoda8319 3 года назад

      Cain and Abel

    • @davidbombal
      @davidbombal  3 года назад +1

      Cain and Abel - watch this video to install: ruclips.net/video/Y2fhWtZedTQ/видео.html

  • @itsme7570
    @itsme7570 3 года назад

    Hello brothers and sisters. Can anybody help me with using vnc for remote access on my kali raspberry pi? I've tried a few things, ssh only works if I'm on same network and I need to control it while away from home

  • @benterki_aboubakerseddiq3993
    @benterki_aboubakerseddiq3993 3 года назад

    But how I can redirect the traffic if port security and Dia is enabled

    • @bbowling619
      @bbowling619 3 года назад

      Why do you have port security on yourself ?
      Mac spoofing might could work but I’m not sure what you are trying to accomplish. Also .. just look it up..the info is readily available and I would hate to think I’m helping someone do something illegal. You’ll get it if you really want it...research it my dude.
      As far as you not having direct access to the internet.. that would be a whole different world of issues.
      I mean after all your on you tube so not sure how much more dia your looking for?

  • @DailyGK24
    @DailyGK24 3 года назад

    David Sir.... i am mechanical engineer ....but i intrested in networking......i want to be a cisco certification and work as cisco engineer...please suggest me .....what track i am go to get cisco......

  • @marttiinnanen4911
    @marttiinnanen4911 3 года назад

    Only problem is that nobody uses VNC without SSH and nobody uses SSH without a pubkey... And if SSH is open, it's going to be protected by IDF/IPS and ban anyone trying to brute force it. But I guess these tricks would work on a private persons home network with zero security.

  • @realhomy
    @realhomy 3 года назад +1

    What up Bombal

    • @davidbombal
      @davidbombal  3 года назад

      Hello!

    • @realhomy
      @realhomy 3 года назад

      @@davidbombal video is good so far

    • @realhomy
      @realhomy 3 года назад

      @@davidbombal Hi Keep making these amazing video

  • @amirkaddoura6872
    @amirkaddoura6872 3 года назад

    Pretty nice video and enjoyable. Can you teach us how to make our own operating system?

    • @davidbombal
      @davidbombal  3 года назад

      Thank you Amir. Great suggestion.

  • @adiflorense1477
    @adiflorense1477 3 года назад

    5:26 yes I thought brute force algorithm is not efficient .that is drawback because its need loop every node until found

    • @davidbombal
      @davidbombal  3 года назад +1

      Agreed. But, it will get the job done eventually

    • @adiflorense1477
      @adiflorense1477 3 года назад

      @@davidbombal is it can be replace with divide and conquer algorithm sir?

  • @ManishKumar-pr7hs
    @ManishKumar-pr7hs 3 года назад

    Hi David,
    I need your help for GCP. Pl help me.
    Nested Virtualization on gcp
    1.configure vm window and linux gui
    2.Install vmware, virtualbox and Hyper-v for windows (Both of them Windows and Linux gui)
    3.Install guest os (Windows and linux gui) all of them.
    Upload Custom OS Image on GCP
    1.Upload OS images (Window and linux gui) from vmware, virtualbox and Hyper-v
    2.Configure VM's and Access them from rdp
    and ssh
    3.Gui and Cli
    Step by step

  • @Shivansh_dev2312
    @Shivansh_dev2312 3 года назад

    Is comptia+ good for getting into ethical hacking sir?

    • @davidbombal
      @davidbombal  3 года назад +1

      Yes. Good start if you are new to this.

  • @user-dz4qq7gv1w
    @user-dz4qq7gv1w 3 года назад

    Nice

  • @HoloScope
    @HoloScope 3 года назад +1

    Yeah my password is very secure since I made it very long, I even got it memorized. It's "7ad60ab279213459fa"

  • @neosmith7272
    @neosmith7272 3 года назад

    Rainbow tables cracking is much faster try that in your next video

    • @davidbombal
      @davidbombal  3 года назад

      Agreed. Got to lay the foundations first :)

  • @kabirkhankabir
    @kabirkhankabir Год назад

    What's the software name

  • @sgtfoose8842
    @sgtfoose8842 3 года назад

    Nice video! I have a request, could you do a video with a captive portal on wifipumpkin3, customize one of the defaults a little and run it?

    • @davidbombal
      @davidbombal  3 года назад

      Thank you. Great suggestion.

  • @venkateshhariharan4341
    @venkateshhariharan4341 3 года назад +1

    Bro, Is this work in wifi network?

    • @davidbombal
      @davidbombal  3 года назад +1

      Sure. But you may need to do more work like I show here: ruclips.net/video/EGlq6J1E7no/видео.html

    • @venkateshhariharan4341
      @venkateshhariharan4341 3 года назад

      @@davidbombal thanks bro, this helps alot❤️❤️❤️

  • @cloudsystem3740
    @cloudsystem3740 3 года назад

    thank you very much and that works and with https ?

    • @davidbombal
      @davidbombal  3 года назад

      https is encrypted. This video shows you how to how to use Cain and Abel with https = ruclips.net/video/EGlq6J1E7no/видео.html

  • @syd_ajhussain8084
    @syd_ajhussain8084 3 года назад

    hi David wich tool is using for hacking ..but nice work good job .very informative video .thanks

    • @davidbombal
      @davidbombal  3 года назад

      In this video I'm using Cain and Abel. See more here: ruclips.net/video/Y2fhWtZedTQ/видео.html

  • @ronetteprinsloo5048
    @ronetteprinsloo5048 3 года назад

    I plan on taking Sec+ and after that Pentest+

    • @davidbombal
      @davidbombal  3 года назад +1

      Go for it Ronette!

    • @ronetteprinsloo5048
      @ronetteprinsloo5048 3 года назад

      @Ludwigvan I tried the ccna last year but could only score 760 or something like that. But thank you, I will def do that!

    • @ronetteprinsloo5048
      @ronetteprinsloo5048 3 года назад

      @Ludwigvan yes OSCP is so expensive. I am from South Africa 😄

  • @smdazar8193
    @smdazar8193 3 года назад

    Cain software available in Kali Linux or windows

  • @kartikkachhawa5902
    @kartikkachhawa5902 3 года назад

    its good
    o o
    !

    u

  • @eliudmuniz6145
    @eliudmuniz6145 Год назад

    link for download Cain % abel?

  • @saiarisetti9848
    @saiarisetti9848 3 года назад

    hi sir where i can obtain these software

    • @davidbombal
      @davidbombal  3 года назад

      Watch this video that shows you the installation process: ruclips.net/video/Y2fhWtZedTQ/видео.html

  • @hooobythedestroy9688
    @hooobythedestroy9688 3 года назад +1

    I am, a beginner

  • @noorgul1176
    @noorgul1176 3 года назад

    Hellow pls teach us footprinting of mobile number that work world wide, i mean no matter that number from which country

    • @davidbombal
      @davidbombal  3 года назад

      Great suggestion :)

    • @noorgul1176
      @noorgul1176 3 года назад

      @@davidbombal i glad ☺️☺️

  • @pioneermotors4168
    @pioneermotors4168 3 года назад

    I think I can take down Google by watching your videos, 🤔🤔😜

  • @nateo7045
    @nateo7045 3 года назад

    I guess this requires being able to log into their network though first, no?

    • @ecomtechnet
      @ecomtechnet 3 года назад

      Definitely, as long as your system has internal network connectivity legally or illegally😀

  • @DailyGK24
    @DailyGK24 3 года назад

    Work as cisco engineer is my dream....suggest me proper track

  • @jakehowe8864
    @jakehowe8864 4 месяца назад

    I first used cain and abel in 2006 lol

  • @anuradhalakruwan1918
    @anuradhalakruwan1918 3 года назад +1

    David sar...... CAIN software...... Don't install personal my computer???? 🤔🤔🤔🤔🤔🤔🖥️🖥️🖥️🖥️🖥️🖥️

    • @davidbombal
      @davidbombal  3 года назад

      No. Install it in a VM. I show that here: ruclips.net/video/Y2fhWtZedTQ/видео.html

    • @anuradhalakruwan1918
      @anuradhalakruwan1918 3 года назад

      @@davidbombal your lesson good sar.... 👍👍👍thank you david sar..... 👍👍👍

    • @anuradhalakruwan1918
      @anuradhalakruwan1918 3 года назад

      @@davidbombal I'm from Sri Lanka.... David sar🇱🇰🇱🇰🇱🇰🇱🇰🇱🇰what's your from country David sar? 🤔🤔🤔🤔

    • @davidbombal
      @davidbombal  3 года назад +2

      @@anuradhalakruwan1918 I currently live in the UK, but am originally from South Africa :)

    • @anuradhalakruwan1918
      @anuradhalakruwan1918 3 года назад

      @@davidbombal okay sar.... 👍👍👍👍

  • @johnpaulkumar4938
    @johnpaulkumar4938 3 года назад

    How to hack CCTV Camera... Tell as briefly ....

  • @AnimeThings_
    @AnimeThings_ 3 года назад

    Comment.send('Awesome')
    //for programmers

  • @manudigitalstudio5564
    @manudigitalstudio5564 3 года назад +1

    sir if u don't mind plz replay me on Instagram

  • @shadowelite-sec
    @shadowelite-sec 3 года назад

    Again first

  • @hooobythedestroy9688
    @hooobythedestroy9688 3 года назад

    602th

  • @troysipple2591
    @troysipple2591 3 года назад

    Very neat

  • @aaanalyst
    @aaanalyst 3 года назад

    I have forget the number with which my facebook account was connected how can I recover my account please next video I need help

  • @aaanalyst
    @aaanalyst 3 года назад

    I have forget the number with which my facebook account was connected how can I recover my account please next video I need help