Goodness Vivek - I don't know how you find the time.  It must be almost a full-time job putting these videos together!

I'm sure that many here will be aware of Vivek's excellent video series on various aspects of security.  He has started a new series which deals with WLAN security and how detailed knowledge of this subject can be of use to pen testers.  There are four videos in the series so far and, if his previous series are anything to go by, I'm sure that there will be many more to come.

As expected, the videos start with the basics and build in a logical manner.

Disclaimer: I've nothing to do with Vivek's site, other than being an avid follower of his work!

I sent a PM to Vivek via another forum about the SBH videos.  He mentioned that he was concentrating on creating some videos dealing with assembly language and then he'd resume the SBH series.  I don't know the timescale though.

Definitely a face-palm moment ... I usually keep a close eye on Vivek's site (as well as this forum) but I missed this series completely!

I use Mailinator if I want to avoid spam into my usual e-mail inbox.

Hey sil, I've been watching this thread with great interest.  Thank you for your thorough and logical presentation of what you'd do and why.  I see comments on other sites about simply following recipe 1), 2) then 3) to penetrate a system but that is far too simplistic.  I'd rather understand what's happening "under the hood", exactly what I'm doing and why, so I can apply the principles to another system.

I'll keep an eye on further fascinating developments ...

I thought I was going crazy when I started to work through this myself.  I *thought* I knew how to do it ... but the maths just didn't work out.

The problem is that the decimal IP quoted (340590649) converts to
0x144D0039.  However, 3405906949 converts to 0xCB020405.

I confirmed this by using calc.exe in Scientific mode, rather than manually.

I don't know if this might be of interest to anyone:

http://www.mertsarica.com/
http://packetstormsecurity.org/filedesc/antimeter.zip.html

It seems that an updated version is due imminently.

I did the same in a test lab a while ago so now I commit the unforgivable ... I write the lab passwords down but then I lock them in a filing cabinet.  Of course, I don't write down my "real live system" passwords!

I suppose it's similar to the question:

"Is a kitchen knife illegal?"

If it's used in the kitchen to prepare food, I'd say not but if it's taken outside into the street or on public transport (not in a case or wrapped in protective material etc), I'd say that the Police would be correct to take the person aside and ask some detailed questions about why they have the knife in a public place without protection.

Surely it's related to the circumstances?

Yes, I've seen it mentioned on several fora but nada in the UK news.  *IF* it's all a big conspiracy (hmm, where have I read about conspiracy theories before?), maybe the news organisations are "in" on it too?

OK, I think you need to start by learning about how computers and networks work.  There's no easy way, I'm afraid.  Of course, it's possible to get a "recipe" to follow about how to access someone's PC or network (with their prior consent), but whether it works or not depends upon so many things ... firewall, Operating System and application patches etc.  Folks who use such "recipes" without knowing WHAT'S happening and WHY are often referred to as "skiddies".

If "hacking" (or penetration testing) were easy, everyone would be doing it and there wouldn't be any need for complex, expensive courses to teach how to do it!

I'm far from an expert, but it's important to know first how computers and networks work.  What are the components of the operating system and how do they interact?  How is information transferred normally from Host A to Host B along a network cable or through the air?

When you're happy understanding how things work normally, it's possible to work out how things can go wrong (or can be exploited) to allow someone (whether a pen tester or malicious hacker) to gain access.

Apologies if you are well informed and have lots of certs and practical experience but you didn't give any indication of your background.

I just read about the leak elsewhere but one poster wondered if it's clean.  I guess it will be analysed thoroughly by trusted (as well as untrusted!) folks to analyse what it does ... and how.

I'll be interested to know (in due course) if it makes you any more valuable to a potential employer.  Your post has made me decide what my Christmas present to me will be!