Anyone here used Back-Track ?

Back | Track 4 is a penetration tool, so you can use it to hack(or try) to hack into say, your wifi or something. I tested it out on my wifi - and i actually got the password correct, and using back-track, i was able to access my wireless router and change the password to the wifi, and also to infect the machine connected to the router(which was my dads)[but don't worry - i only wrote a script to shut down and not actually "infect" my dad's computer ]

This is back-track: http://www.backtrack-linux.org/w

And also, using a app in Backtrack ( called S.E.T[ social engineering toolkit]) i sent my-self an email with a cloned website(which was actually this website) and what it was - was i sent myself a link to a website ( which said http://sevenforums.com) and when i clicked it, it bypassed my AV(which was Microsoft Security Essentials) and then using a meterpreter(just this one process thingy, can run commands) i told my "infection" to hide under explorer.exe and i then shut-down my computer(using a meterpreter command).

And i was able to learn/do all that after probably only like 8 hours of messing around with all the tools in Back-Track. If you wanna "hack" (but legally) hack - i would check it out. Really fun and cool. (I recommed atleast basic experience with Ubuntu/Linux)

polarbear said:

I have tested some of it's features and posted in the forums here for ppl to use very strong passwords for wpa systems in the past... Made a bootable DVD and also have a version on a large usb stick... Time to time I have a little play time... GL :)

Honestly though - i used a PUBLIC(or so) exploit on my-self for the latest Adobe reader( like 9.X) and it got past my entire windows 7 stuff and also my own AV an all. Its pretty crazy. I had full control of my test system(was my Win7 laptop) (i attacked from my very old HP laptop - running only backtrack)

Like - it really shows what can happen in a worst-case scenario lol. I even installed a key-logger and a backdoor, so when i logged in to here, it showed everything i was typing and everything - was actually kind-a cool

But as for WPA/WPA2/WEP passwords - go to https://www.grc.com/passwords.htm
Those are nearly uncrackable and will require a brute-force attack

DarkDavil said:

Honestly though - i used a PUBLIC(or so) exploit on my-self for the latest Adobe reader( like 9.X) and it got past my entire windows 7 stuff and also my own AV an all. Its pretty crazy. I had full control of my test system(was my Win7 laptop) (i attacked from my very old HP laptop - running only backtrack)

depends on what you have on that hp laptop though (there are ways of stopping the Adobe exploit)....:)

But as for WPA/WPA2/WEP passwords - go to https://www.grc.com/passwords.htm
Those are nearly uncrackable and will require a brute-force attack

have fun trying a brute force with those passwords....
you wouldn't find it even if you took pretty much every computer available in the world to brute-force

I use backtrack often as a way to asses the network security at home and as a demonstration with clients. Or if I just feel like taking linux for a quick spin. I have a little usb booting model and it makes a nice change on my normally xp netbook too.

polarbear said:

wpa is not hard to crack... it takes just a min to grab the packets but time to grab the password if you have a full dictionary with all the possibilities... A very strong password is likely all you need but companies are now out there will millions of words to run your packets against for a small price or they will also sell you there dictionary for a rather low price if you want to do it on your own... Suggest a very very strong password and you will likely be safe... GL :)

its the same with any encryption algorithm that is patented or public....
these tables are all pre-calculated hashes of those simple passwords which you can do since the function has to give the same hash every time...
the only way to combat this is with a password using numbers letters and symbols (in essence a very strong password just like you said...)