class: center, middle ## .color[MitM] ### Man-in-the-Middle https://dumpco.re/slides/mitm --- ## Introduction <img style="width: 20%; margin-left: 70%; margin-right: none; margin-bottom: 40%; margin-top: 0;position:fixed;" src="me.jpg"> - Magnus Klaaborg Stubman - Security Advisor @ Improsec, OSCE, OSCP - Red Teaming - Secure Development Training - Application Security - Source Code Review - Linux Security - @: mks@improsec.com - T: (+45) 31 23 01 58 --- class: middle ## .color[Agenda] ### - Rogue DHCP "DHCP Spoofing" ### - Rogue DHCPv6 on IPv4 networks --- class: middle, center ## Rogue .color[DHCP] --- class: middle ## Legitimate .color[DHCP] <img style="width: 75%" src="dhcp.png"> --- ## Malicious .color[DHCP] <img style="width: 100%" src="rogue1.png"> --- ## Malicious .color[DHCP] <img style="width: 100%" src="rogue2.png"> --- ## Malicious .color[DHCP] <img style="width: 100%" src="rogue3.png"> --- ## Malicious .color[DHCP] <img style="width: 100%" src="rogue4.png"> --- ## Malicious .color[DHCP] <img style="width: 100%" src="rogue5.png"> --- class: middle ### Full packet capture at #### http://dumpco.re/lab/ipv4-dhcp-spoofing-mitm.pcapng --- class: center, middle # demo #### https://youtu.be/lYAnG1zFJDg --- <iframe width="100%" height="600px" src="https://www.youtube-nocookie.com/embed/lYAnG1zFJDg" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe> --- class: middle, center ## .color[Rogue DHCPv6] on IPv4 networks --- class: middle ## By default <img style="width: 60%" src="meme.jpg"> --- <img style="width: 100%" src="dhcpv6.png"> --- <img style="width: 110%" src="dhcpv62.png"> --- class: middle ### Full packet capture at #### http://dumpco.re/lab/mitm6.pcapng --- class: center, middle # demo https://youtu.be/LMhWYsfCiJo --- <iframe width="100%" height="600px" src="https://www.youtube-nocookie.com/embed/LMhWYsfCiJo" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe> --- class: center, middle # .color[Fuzzing] ## slides: http://dumpco.re/fuzz --- class: middle ## .color[Suggestions] ### - Fuzz something, e.g. UPX with AFL ### - Analyze packet captures ### - Try mitm6 or other MitM techniques ## .color[Tools] ### - VirtualBox: virtualbox.org/wiki/Downloads ### - Kali VM: www.kali.org/downloads/ ### - mitm6: https://github.com/fox-it/mitm6 --- class: center, middle # ty @magnusstubman