Networking For Hackers! (Common Network Protocols)

00:00

hey everyone today we're talking about

00:01

common Network protocols some of you

00:04

asked for a full guide on wire shark but

00:06

I realized that to use wi shark well you

00:09

need to understand Network protocols

00:11

first in the hacking World knowing about

00:13

Network protocols is essential because

00:15

you can't do much without them that's

00:18

why I'm making this video to help you

00:19

grasp the basics of network protocols

00:22

which will set you up for Success when

00:24

using tools like wire shark and hacking

00:27

let's begin with IP addresses internet

00:30

protocol addresses are like the backbone

00:31

of the digital world there would allow

00:34

us to do things like email video chat on

00:36

Zoom watch YouTube send tweets and

00:39

browse the web you could say they're

00:41

almost as important as the world itself

00:43

spinning in fact you're able to watch

00:45

this video on YouTube because of IP

00:47

addresses every digital device we use

00:49

whether it's a computer laptop phone or

00:52

tablet gets assigned an IP address this

00:55

address enables devices to communicate

00:57

and connect with each other think an IP

01:00

address as similar to your house address

01:03

without it no one would be able to find

01:04

you and send you mail now let's discuss

01:07

public and private IP addresses our IP

01:10

address system has a limitation there

01:12

aren't enough IP addresses to cover all

01:14

devices that need to connect to the

01:16

internet the current ipv4 system has

01:19

only 4.3 billion IP addresses which

01:22

isn't sufficient considering there are

01:24

over 8 billion people on the planet each

01:26

with multiple devices to address this

01:29

scarcity a system was developed to reuse

01:31

a group of IP addresses within a local

01:33

area network or Lan which are not

01:36

accessible over the Internet these

01:38

addresses can be used repeatedly within

01:40

each local network helping conserve The

01:42

Limited number of IP addresses available

01:45

these private addresses typically start

01:47

with numbers like

01:49

192 168 10 point or

01:53

17216 you might have noticed these

01:56

private IP addresses such as

01:58

192 16 8 or 10 point something when

02:02

checking your network configuration for

02:04

example using IF config on a collie

02:06

system these addresses are only usable

02:09

within your local area network and

02:11

cannot be used to communicate over the

02:13

Internet directly for internet

02:15

communication your private IP address

02:17

needs to be translated into a public IP

02:19

address by a network address translation

02:22

ornat device this translation process

02:25

allows devices within your local network

02:27

to access the internet using a shared

02:29

public IP

02:30

address this is necessary because

02:33

private IP addresses within a local area

02:35

network cannot be directly used on the

02:37

internet since they are not unique many

02:39

lands use the same private IP addresses

02:42

internally when a machine inside the

02:44

land wants to communicate over the

02:45

Internet it sends a request to the natat

02:48

device the natat device then records the

02:51

internal IP address of the machine in a

02:53

table and converts it to the external IP

02:55

address of the router when the response

02:57

packet returns from its destination on

02:59

the the internet the natat device checks

03:01

its table and forwards the packet to the

03:03

internal IP address of the original

03:05

machine within the Lan this whole

03:08

process happens seamlessly and

03:10

individual systems or users within the

03:12

Lan typically don't realize that their

03:14

private IP addresses are being

03:15

translated to a public IP address by the

03:18

natat device to enable internet

03:20

communication the next protocol is DHCP

03:24

Dynamic host configuration protocol or

03:26

DHCP is a protocol that dynamically

03:28

assigns IP address add es this means

03:31

that instead of having a fixed IP

03:33

address all the time your device gets a

03:35

new IP address each time it connects to

03:37

a network DHCP is commonly used on local

03:40

area networks or lands where private IP

03:43

addresses are used when a device joins a

03:45

lan it sends a request to the DHCP

03:48

server asking for an IP address the DHCP

03:52

server then assigns an IP address to

03:54

that device for a specific period known

03:56

as a lease this lease defines how long

03:59

the device can use that particular IP

04:01

address the interesting part is that

04:03

each time you connect to the Lan you're

04:05

likely to receive a different Dynamic IP

04:08

address although usually within the same

04:10

range this Dynamic allocation of IP

04:13

addresses by DHCP helps manage and

04:15

optimize the use of available IP

04:17

addresses within the network all right

04:20

let's talk about the next protocol IP or

04:23

Internet Protocol in an easy to

04:25

understand way IP is like a travel guide

04:27

for data packets on the internet it

04:29

helps these packets know where to go the

04:31

destination and where they're coming

04:33

from the source it's often paired up

04:35

with other protocols like TCP to form

04:38

what's commonly known as TCP IP now

04:41

let's take a peek at what's inside an IP

04:43

packet header this header is like the

04:45

packets ID card carrying information

04:48

that can be super useful for someone

04:49

exploring hacking or doing forensic

04:52

investigations in the first row of this

04:54

ID card version it tells us which

04:57

version of Ip is being used either V4 or

05:00

V6 internet header length this is all

05:03

about the length of the header moving on

05:05

to the second row type of service or to

05:08

this part describes the packet service

05:10

type like if it's focused on speed

05:12

reliability or cost Effectiveness total

05:16

length this tells us the overall size of

05:18

the packet including its data in the

05:21

third row identification each packet

05:24

gets a unique ID helpful for putting

05:26

together fragmented packets IP Flags

05:29

this field helps us know if the packet

05:31

is split into smaller parts or not which

05:34

can be sneaky for bypassing security

05:36

measures fragment offset if a packet is

05:39

split this field tells us where it

05:41

starts in the sequence now on to row

05:43

four and five Source or destination

05:46

these are super important because they

05:48

show where the packet is coming from and

05:50

where it's headed finally in row six

05:53

options this is a flexible part of the

05:56

header and it's optional to use padding

05:59

if needed this part fills in any extra

06:01

space in the header understanding these

06:04

details helps in figuring out how data

06:06

travels across the internet and can even

06:08

give clues about the systems sending and

06:11

receiving the data the next protocol is

06:13

TCP in the TCP header there are several

06:16

important fields that are crucial for

06:18

both aspiring hackers and forensic

06:20

investigators to grasp starting with row

06:23

One Source Port destination Port these

06:26

fields are vital as they determine the

06:28

source and destination port showing

06:30

where the communication is coming from

06:32

and where it's headed moving on to row

06:34

two sequence number this number is

06:37

generated by the sender's TCP stack and

06:39

ensures that packets are arranged in the

06:41

correct order when they arrive it's also

06:44

crucial in preventing man in the middle

06:46

attacks next in row three

06:48

acknowledgement number this Echoes back

06:51

the sequence number confirming that the

06:53

packet has been received if no

06:55

acknowledgement is received within a set

06:57

time the sender resends the packet to

06:59

ensure successful delivery this

07:02

reliability distinguishes TCP from UDP

07:05

which doesn't guarantee packet delivery

07:07

skipping ahead to the flags in row four

07:09

sin initiates a new connection Finn

07:13

signals the normal closing of a

07:15

connection a acknowledges receipt of a

07:18

packet crucial after the three-way

07:20

handshake RSD indicates a hard close of

07:23

a connection often used to communicate

07:25

errors urg marks urgent data in the

07:28

packet PS sh directs the data past the

07:31

buffer to the application understanding

07:33

these flags is essential especially for

07:36

those familiar with Recon tools like

07:38

nmap or hping 3 as they're used to

07:40

create packets for specific purposes

07:43

such as evading detection or eliciting

07:45

responses from secure systems in row

07:48

four the window siiz field manages

07:50

packet buffering aiding in flow control

07:53

it's also useful for OS identification

07:55

as different operating systems have

07:57

varying window sizes allowing for OS

08:00

prediction with about 80% accuracy the

08:03

cheim in row five ensures data Integrity

08:06

while the urg pointer indicates urgent

08:07

data if the urg flag is set lastly row

08:11

six contains options and padding

08:13

allowing for additional information and

08:15

aligning the TCP header to a multiple of

08:18

32 bits understanding these TCP header

08:20

Fields is crucial for analyzing Network

08:23

traffic identifying potential security

08:25

threats and gaining insights into the

08:28

systems communicating over the Network

08:30

every TCP connection starts with a

08:32

three-way handshake imagine you're

08:34

trying to start a conversation with

08:36

someone let's say ordering a pizza over

08:38

the phone you dial the pizza place and

08:40

say hey I'd like to order a pizza this

08:44

is like the sin packet where you're

08:45

initiating the connection and saying

08:48

hello I want to talk to you the pizza

08:50

place responds sure we're ready to take

08:53

your order this is like the sin act

08:55

packet where the server acknowledges

08:57

your request and says hi I'm here and

09:00

ready to chat let's get started you then

09:03

confirm great I'd like a large pepperoni

09:06

pizza please this is like the ACT packet

09:09

where you acknowledge the server's

09:10

response confirming that you're ready to

09:13

proceed with the conversation or in this

09:15

case the pizza order after this

09:17

three-way handshake the pizza place

09:19

knows you're ready to place your order

09:21

just like in TCP both the client and

09:24

server know they're ready to start

09:25

exchanging data it's a way of ensuring a

09:28

smooth and reliable connection before

09:30

diving into the main conversation or

09:32

data

09:33

transfer let's dive into UDP or user

09:36

datagram protocol UDP is a different

09:38

kind of Beast compared to TCP while TCP

09:42

is all about establishing a solid

09:44

connection like a handshake and ensuring

09:46

every piece of data gets delivered UDP

09:48

takes a more Carefree approach it's like

09:51

the difference between sending a formal

09:52

letter with tracking TCP versus tossing

09:55

a postcard in the male UDP here's what

09:58

makes UDP unique unlike TCP which

10:01

requires a Formal Connection setup like

10:03

the three-way handshake we talked about

10:05

earlier UDP doesn't bother with all that

10:08

it just sends packets out into the world

10:10

without worrying about getting a

10:11

confirmation of delivery because UDP

10:14

skips the whole connection Assurance

10:16

process it's lighter and faster than TCP

10:19

this makes it perfect for applications

10:21

where speed matters more than ensuring

10:23

every single packet gets through

10:25

perfectly UDP shines in scenarios where

10:28

efficiency is key and losing an

10:30

occasional packet isn't a big deal think

10:32

of streaming music or video missing a

10:34

few seconds here or there won't ruin

10:36

your experience but lagging behind

10:39

because of a slow connection would

10:40

definitely be a problem some of the key

10:42

protocols that use UDP include DNS SNMP

10:46

or ntp we'll dive deeper into these

10:48

protocols later on now let's talk about

10:51

the next protocol a RP or address

10:53

resolution protocol ARP is like a

10:56

translator for devices on an Ethernet

10:58

Network

10:59

its job is to match up IP addresses

11:02

which are logical with Mac addresses

11:03

which are physical this way when a new

11:06

device joins the network ARP assigns it

11:09

an IP address within the Network's range

11:11

and links it to its unique Mac address

11:14

this information is crucial for network

11:16

devices like routers gateways and

11:18

switches to correctly Route traffic to

11:20

the intended destination now here's how

11:23

the RP Works in simple terms imagine you

11:26

have two computers on the same ethernet

11:28

Network let's call them computer 1 and

11:30

computer 2 computer 1 wants to send a

11:33

message to computer 2 but it needs to

11:35

know computer 2's Mac address like a

11:37

home address computer one first checks

11:40

its ARP table which is a list of known

11:42

Mac addresses and their corresponding IP

11:45

addresses if it finds computer 2's Mac

11:47

address in the table great it can send

11:50

the message directly if computer 1

11:52

doesn't have computer 2's Mac address in

11:54

its ARP table it sends out a broadcast

11:57

message to all devices on the network

11:59

nwor asking hey who has IP address of

12:02

this computer 2 sees the broadcast

12:04

message and responds directly to

12:06

computer 1 saying I have IP address of

12:09

this and my Mac address is this now that

12:12

computer 1 knows computer 2's Mac

12:14

address it can send the message directly

12:16

to computer 2's Mac address and the

12:18

communication is successful ARP is

12:21

essential for smooth communication

12:23

within a network but it's also a

12:25

potential Target for attackers who might

12:27

try to manipulate Ark messages to

12:29

intercept or redirect Network traffic a

12:31

tactic known as a man in the- Middle

12:33

attack it's important to note that a RP

12:35

lacks authentication making it

12:37

vulnerable to exploitation by hackers

12:40

this feature can be used to discover all

12:43

the systems on a network easily this

12:45

becomes particularly useful when

12:47

attempting to hack into another system

12:49

within the local area network or when a

12:51

hacker compromises a single user on the

12:53

network and wants to Pivot to a more

12:55

valuable Target such as a database

12:58

server there are various tools available

13:00

to hackers for discovering systems on a

13:02

network these tools operate by sending

13:05

out gratuitous ARP requests prompting

13:08

systems on the network to respond with

13:10

their IP addresses and Mac addresses for

13:13

example in our Collie system we have a

13:15

tool called net discover that can be

13:17

used for this

13:28

purpose

13:34

now the next protocol is denas the

13:36

domain name system or DNS is a

13:38

fundamental protocol that plays a

13:40

crucial role in how we navigate the

13:42

internet imagine a world without DNS we

13:45

would have to remember countless IP

13:47

addresses just to access our favorite

13:49

websites picture having to memorize the

13:51

lengthy ipv4 32-bit addresses for Google

13:55

Facebook YouTube and other essential

13:57

sites let alone dealing with even longer

13:59

IPv6 128bit addresses it would be quite

14:03

a daunting task thankfully DNS comes to

14:06

the Rescue by translating domain names

14:08

something humans are good at remembering

14:10

into IP addresses the language of

14:12

internet routing in simpler terms DNS is

14:16

like a translation service that converts

14:18

a domain name like wwwg googlec into the

14:20

computer friendly IP address that the

14:23

internet understands and uses to Route

14:25

data so when you type a domain name into

14:27

your browser such as www googlec DNS

14:31

steps in behind the scenes to quickly

14:33

translate it into the corresponding IP

14:35

address allowing your device to connect

14:37

to the desired website seamlessly DNS is

14:40

what makes navigating the internet so

14:42

much easier and userfriendly for all of

14:44

us the domain name system has come a

14:47

long way in terms of security but it

14:49

used to be quite fragile and susceptible

14:51

to attacks while improvements have been

14:54

made over the years attacks on DNS still

14:56

occur albeit less frequently one common

14:59

type of attack involves harvesting

15:01

information from DNS servers on the

15:03

target Network a technique known as DNS

15:05

scanning and DNS reconnaissance

15:08

attackers can gather valuable data from

15:10

DN servers such as domain names and

15:13

Associated IP addresses which can be

15:15

used for further

15:18

exploitation on local area networks

15:20

attackers May exploit DNS

15:22

vulnerabilities by spoofing DNS

15:24

responses using tools like DNS spoof

15:27

this allows them to redirect client

15:29

traffic to a malicious local system

15:31

controlled by the attacker for example

15:34

an attacker could redirect banking

15:35

traffic to their own fraudulent website

15:38

capturing sensitive credentials and

15:40

financial

15:41

information the next protocol is FTP or

15:44

file transfer protocol the FTP is a

15:47

client server protocol used for

15:49

transferring files over a network here's

15:51

an overview of how FTP works and its

15:54

current usage FTP follows a client

15:57

server architecture where a client such

15:59

as a computer or device requests files

16:01

from a server and the server provides

16:03

the requested files FTP operates over

16:06

the TC pip Suite of protocols ensuring

16:09

reliable data transmission across

16:11

networks FTP uses two channels for

16:14

communication command Channel used by

16:16

the client to send commands to the

16:18

server such as requesting files or

16:20

directories data Channel used for actual

16:24

file transfers when a client requests a

16:26

file the server opens a data channel to

16:29

transfer the file to the client clients

16:31

can perform various actions on files

16:34

using FTP including downloading

16:36

uploading editing copying and deleting

16:39

files on the server while FTP was widely

16:42

used in the past for file sharing and

16:44

management its popularity has decreased

16:46

with the rise of HTTP for file transfers

16:49

especially for public file sharing on

16:51

the web however FTP remains a common

16:54

protocol for private and secure file

16:56

sharing such as in banking system or

16:59

other environments where data security

17:01

and privacy are

17:03

Paramount the next protocol we'll talk

17:06

about is SMB which stands for Server

17:08

message Block it's a communication

17:11

method that computers use to share files

17:13

printers and other resources over a

17:15

local network think of it as a way for

17:18

computers to talk to each other and

17:19

share stuff when you use SMB one

17:22

computer acts as the server that has the

17:24

files or printers others want to access

17:27

while the other computers are the

17:29

clients that want to get those files or

17:31

use the printers here's how it works in

17:33

simple steps clients computers connect

17:36

to servers other computers using tcpip

17:39

or

17:40

netbios which are just ways for

17:42

computers to talk to each other over a

17:44

network once connected clients can send

17:46

commands to the server to access shared

17:49

folders where files are stored read or

17:51

write files or even use shared printers

17:54

basically SMB lets you do on your

17:56

computer what you normally do like

17:58

access ing files or printing but over

18:00

the network so you can share things with

18:02

others on the same network SMB in

18:05

Windows and Samba in Linux Unix systems

18:08

have historically been significant

18:09

sources of critical vulnerabilities and

18:12

this trend is likely to continue in the

18:13

future over the past decade there have

18:16

been several critical vulnerabilities

18:18

related to SMB and windows these

18:20

vulnerabilities have allowed attackers

18:22

to send specially crafted packets to SMB

18:25

Services exploiting weaknesses in the

18:27

protocol by exploiting these

18:29

vulnerabilities attackers could execute

18:31

remote code with system privileges on

18:33

the target system in simpler terms

18:36

attackers could take control of

18:38

vulnerable systems and have full access

18:40

to everything on them the next protocol

18:43

we'll discuss is the simple male

18:44

transport protocol commonly abbreviated

18:47

as SMTP SMTP is a crucial protocol in

18:50

the digital world especially for

18:52

handling emails snp's main job is to

18:55

move emails from one user to another

18:58

even though SMTP was first standardized

19:00

back in 1983 it's still the fundamental

19:03

protocol used for sending emails today

19:06

albeit with some Modern upgrades and

19:08

improvements in simple terms SMTP acts

19:11

as the Postal Service of the internet

19:13

ensuring that your emails get delivered

19:16

the next protocol we'll look at is SNMP

19:18

which stands for simple Network

19:20

management protocol SNMP is a crucial

19:23

part of the Internet Protocol Suite

19:25

designed specifically for managing

19:27

computers and Network devices in simpler

19:30

terms SNMP allows computers and network

19:33

devices to communicate and share

19:35

information with each other it's like a

19:37

system of Administrators managers

19:39

keeping an eye on a group of computers

19:41

or devices agents to ensure everything

19:43

runs smoothly indeed the simple Network

19:46

management protocol SNMP is often

19:48

overlooked but plays a crucial role in

19:50

maintaining a smoothly functioning

19:53

Network however its importance also

19:55

makes it a prime target for attackers if

19:58

an attacker manages to breach SNMP they

20:00

gain access to a wealth of information

20:02

about your network they can potentially

20:04

decrypt encrypted VPN Communications

20:07

allowing them to eases drop on sensitive

20:09

data being transmitted additionally they

20:12

can view and potentially manipulate

20:14

every device connected to your network

20:16

SNMP operates on UDP ports 161 and 162

20:21

enabling network devices to communicate

20:23

with each other and allowing

20:24

administrators to manage and monitor

20:26

these devices however in the wrong hands

20:29

SNMP access can lead to disastrous

20:32

consequences attackers could Harvest

20:34

sensitive information disrupt network

20:37

operations or even take control of

20:39

critical devices like routers and

20:41

switches causing widespread Havoc the

20:44

next protocol is telnet telnet is a

20:46

protocol designed for remote

20:48

connectivity allowing a user to

20:50

establish connections between a remote

20:52

endpoint and a host machine to initiate

20:54

a remote session when a connection is

20:57

established tnet Pro prompts the user at

20:59

the remote endpoint to log in once

21:02

authenticated telnet grants the endpoint

21:04

access to network resources and data

21:06

located on the host computer originating

21:09

from the 1960s telnet can be considered

21:11

one of the earliest versions of remote

21:13

communication protocols used in the

21:15

development of the modern internet

21:17

however due to its lack of robust

21:20

security features suitable for

21:21

contemporary technology and

21:23

Communications telnet is no longer

21:25

widely used the main reason for Tel

21:27

Net's declining usage is its

21:29

vulnerability to security threats talet

21:32

transmits data including login

21:34

credentials in plain text making it

21:36

susceptible to interception by malicious

21:39

actors consequently modern secure

21:41

protocols such as SSH or secure shell

21:44

have largely replace telnet for remote

21:46

access due to their enhanced security

21:48

features such as encryption and stronger

21:50

authentication

21:52

mechanisms the next is HTTP protocol the

21:56

hypertext transfer protocol or http p is

21:59

a foundational technology of the

22:00

internet serving as the primary

22:02

communication protocol for web

22:04

applications originally designed for

22:06

retrieving static web pages HTTP has

22:09

evolved over time to support complex web

22:12

applications that we commonly use today

22:14

HTTP operates on a message-based Model

22:17

where a client sends a request to a

22:19

server and the server responds with a

22:21

corresponding response it's important to

22:24

note that HTTP is connectionless meaning

22:26

that a connection is established and

22:28

closed for each request response cycle

22:31

however it uses TCP transmission control

22:34

protocol as its underlying transport

22:36

mechanism for Reliable data transmission

22:39

in essence HTTP is the backbone that

22:41

enables seamless communication between

22:43

clients such as web browsers and servers

22:46

facilitating the transfer of web pages

22:49

data and multimedia content across the

22:51

internet hey everyone in this video we

22:54

covered some of the most used and

22:56

essential Network protocols while we

22:58

didn't dive deep into each protocol I

23:01

hope this overview helped you understand

23:03

their significance in networking if

23:05

you're interested in learning more about

23:06

any specific protocol feel free to drop

23:09

a comment below I'll consider your

23:11

requests for future videos and create

23:13

content that addresses your specific

23:15

interests and I am making video on wi

23:18

shark until then make sure to watch this

23:20

video and stay tuned for more

23:22

informative content on network protocols

23:24

and tools thanks for watching and I'll

23:27

see you in the next video

23:29

[Music]

23:41

deal