Slides here: /redirect?v=YImQys2Xlf0&event=video_description&redir_token=TLepHqIC1izCnyBTnevpkSRVP2x8MTUzNzM5MzA4NUAxNTM3MzA2Njg1&q=https%3A%2F%2Fwww.defcon.org%2Fimages%2Fdefcon-22%2Fdc-22-presentations%2FAnch%2FDEFCON-22-Anch-The-Monkey-In-the-Middle.pdf
The Monkey in the Middle: A pentesters guide to playing in traffic.
Anch (MIKE GUTHRIE)
Prank your friends, collect session information and passwords, edit traffic as it goes by.. become the Monkey(man)-In-The-Middle and do it all…
This presentation will teach you a penetration testers view of man in the middle (MITM) attacks. It will introduce the tools, techniques and methods to get traffic to your hosts. Demonstrations of the tools and methods involved will be presented. Come learn new and interesting ways to prank your friends, experience the all porn internet (redux), learn what mallory is and how to use it, learn how to direct traffic to your proxy, deal with SSL and certificates in interesting ways, and make sure you go (mostly) undetected.
Anch is the lead for the Chickasaw Nation Industries Red Team performing penetration tests, and accreditation's for the public and private sector.
Anch has 11 years experience in cyber security. He was the Network Security Architect at a major power administration. At Mentor Graphics he spent time as a network engineer providing enterprise networking, firewall and VPN support for a global network comprising of 72 connected sites worldwide. He has been involved in or lead over 75 penetration tests on over 200 networks.
Anch's background related to control systems is unrivaled in the bulk power generation and transmission areas. During this time he developed unique perspectives on the areas of compliance and regulation in the power industry.