subtitlecat.com

All language subtitles for 11. Generating Fake SSL Certificate

Afrikaans

Akan

Albanian

Amharic

Arabic Download

Armenian

Azerbaijani

Basque

Belarusian

Bemba

Bengali

Bihari

Bosnian

Breton

Bulgarian

Cambodian

Catalan

Cebuano

Cherokee

Chichewa

Chinese (Simplified)

Chinese (Traditional)

Corsican

Croatian

Czech

Danish

Dutch

English

Esperanto

Estonian

Ewe

Faroese

Filipino

Finnish

French

Frisian

Galician

Georgian

German

Greek

Guarani

Gujarati

Haitian Creole

Hausa

Hawaiian

Hebrew

Hindi

Hmong

Hungarian

Icelandic

Igbo

Indonesian

Interlingua

Irish

Italian

Japanese

Javanese

Kannada

Kazakh

Kinyarwanda

Kirundi

Kongo

Korean

Krio (Sierra Leone)

Kurdish

Kurdish (Soranî)

Kyrgyz

Laothian

Latin

Latvian

Lingala

Lithuanian

Lozi

Luganda

Luo

Luxembourgish

Macedonian

Malagasy

Malay

Malayalam

Maltese

Maori

Marathi

Mauritian Creole

Moldavian

Mongolian

Myanmar (Burmese)

Montenegrin

Nepali

Nigerian Pidgin

Northern Sotho

Norwegian

Norwegian (Nynorsk)

Occitan

Oriya

Oromo

Pashto

Persian

Polish

Portuguese (Brazil)

Portuguese (Portugal)

Punjabi

Quechua

Romanian

Romansh

Runyakitara

Russian

Samoan

Scots Gaelic

Serbian

Serbo-Croatian

Sesotho

Setswana

Seychellois Creole

Shona

Sindhi

Sinhalese

Slovak

Slovenian

Somali

Spanish

Spanish (Latin American)

Sundanese

Swahili

Swedish

Tajik

Tamil

Tatar

Telugu

Thai

Tigrinya

Tonga

Tshiluba

Tumbuka

Turkish

Turkmen

Twi

Uighur

Ukrainian

Urdu

Uzbek

Vietnamese

Welsh

Wolof

Xhosa

Yiddish

Yoruba

Zulu

Would you like to inspect the original subtitles? These are the user uploaded subtitles that are being translated: 1 00:00:00,720 --> 00:00:06,860 Okay now that we got everything working properly you seen in the previous lecture when someone connects 2 00:00:06,860 --> 00:00:14,310 to our fake access point now they'll automatically see Logan page that is our fake logon page. 3 00:00:14,310 --> 00:00:19,530 Also if they try to go to any other Web sites they'll be redirected to my logon page and they'll also 4 00:00:19,530 --> 00:00:25,880 see a bar at the top of the browser telling them that they need to log in which is all looks perfect. 5 00:00:26,280 --> 00:00:32,040 The only one issue that we have right now is if the person tries to go to a web page that uses hate 6 00:00:32,100 --> 00:00:40,560 as ts like Facebook Google Twitter and all of them they will see a message saying that the browser couldn't 7 00:00:40,560 --> 00:00:48,540 establish a secure connection because the browser knows that this website needs to use TTP as now to 8 00:00:48,540 --> 00:00:50,040 fix this issue. 9 00:00:50,040 --> 00:00:56,370 We need to enable hasty CPS on our own browser on our own web server. 10 00:00:56,610 --> 00:01:06,300 So I've already started Apache and if I just open my web browser here and just go to my local host so 11 00:01:06,330 --> 00:01:16,020 my local host is usually at 1 2 7 0 0 1 you'll see I have my dog page that my targets See the thing 12 00:01:16,030 --> 00:01:19,740 is now if I go here and put TTP as 13 00:01:22,440 --> 00:01:30,300 you'll see that the page will just not get displayed even for me even though I'm a local user and this 14 00:01:30,300 --> 00:01:38,050 is because Apache is not configured to handle Hastey CPS so in this lecture I'm actually not even going 15 00:01:38,050 --> 00:01:40,630 to use the fake access point. 16 00:01:40,630 --> 00:01:46,810 What I'm going to show you is how to enable TTP as an Apache and you'll see how that will automatically 17 00:01:46,990 --> 00:01:49,280 fix the problem that we used to have. 18 00:01:50,690 --> 00:01:57,350 So the first thing that we need to do to use a shitty piece is to generate a hasty type certificate 19 00:01:58,790 --> 00:02:05,780 so to generate HTP certificate we're going to use open SSL. 20 00:02:06,130 --> 00:02:14,470 We're going to tell it that we want to create a request and this is going to be a new request and we 21 00:02:14,470 --> 00:02:21,190 want this request to follow the 5 0 9 structure because that's actually required. 22 00:02:21,580 --> 00:02:26,440 We're going to set the number of days that this certificate will be valid for. 23 00:02:26,680 --> 00:02:29,370 So we're going to set it to be valid for a whole year. 24 00:02:30,890 --> 00:02:35,960 Then we're going to set the location where we want the certificate to be stored. 25 00:02:35,960 --> 00:02:48,890 And I'm just going to store it in road downloads fake AP and I'll just call it cert that PM. 26 00:02:49,160 --> 00:02:56,000 Now you'd want to save this usually in ATC but for me for now since I have all my files for the fake 27 00:02:56,030 --> 00:03:00,560 access point in root download fake access point I'm just going to leave it in there. 28 00:03:01,750 --> 00:03:06,820 We're also going to specify the location where the key for the certificate should be stored. 29 00:03:06,970 --> 00:03:08,740 And that's going to be key out. 30 00:03:08,830 --> 00:03:21,440 And again I'm going to put it in Rood downloads fake AP sarod and we'll call this the key. 31 00:03:21,620 --> 00:03:28,890 OK so there isn't a very simple command where do an open SSL with on it that we need to make request. 32 00:03:28,990 --> 00:03:35,050 This request is a new request that's going to create a certificate that follows the XO nice structure 33 00:03:35,470 --> 00:03:36,370 the certificate. 34 00:03:36,370 --> 00:03:40,840 I want it to be valid for 365 days. 35 00:03:40,840 --> 00:03:43,650 I want you to store the certificate in root downloads. 36 00:03:43,660 --> 00:03:45,120 Fake AP sarod. 37 00:03:45,490 --> 00:03:48,360 And I want you to store its key in root downloads. 38 00:03:48,370 --> 00:03:50,960 Fake AP sarod dot key. 39 00:03:51,100 --> 00:03:56,240 I'm going to hit enter and this should actually be days not day 40 00:03:59,930 --> 00:04:03,130 now it's asking me to set a passphrase for the certificate. 41 00:04:03,260 --> 00:04:04,990 So I'm just going to set it right now. 42 00:04:06,530 --> 00:04:11,390 You might notice that nothing is being displayed on screen but I've actually typed it and that's just 43 00:04:11,390 --> 00:04:12,570 a security feature. 44 00:04:12,740 --> 00:04:16,580 So just type it in here and enter and type it again. 45 00:04:20,140 --> 00:04:23,310 And that's done now it's asking me for the country. 46 00:04:23,350 --> 00:04:26,670 I'm just I'm just going to set it to IP for Ireland. 47 00:04:29,230 --> 00:04:34,780 Askin me for the states I'm going to set it to Dublin City again I'm going to set it to Dublin. 48 00:04:37,140 --> 00:04:40,200 Company name so we'll just call it Microsoft 49 00:04:43,570 --> 00:04:46,510 we'll call this the unit we'll call it networking 50 00:04:49,350 --> 00:04:54,620 this is usually set to the domain name or the cert is going to be used for us. 51 00:04:54,670 --> 00:04:59,380 We're just let's just call it royal because our network is called Royal Wi-Fi. 52 00:05:01,180 --> 00:05:06,320 Email address so we'll just send this to anything so let's just say info. 53 00:05:07,730 --> 00:05:09,820 Microsoft dot com 54 00:05:13,010 --> 00:05:18,530 and that's it now our certificates should be created so if we go to downloads 55 00:05:21,260 --> 00:05:28,400 and fake AP you'll see that we have the search key and the search to do it. 56 00:05:28,430 --> 00:05:35,770 PM Now we have the certificate ready and you can actually use the certificate with a lot of things and 57 00:05:35,770 --> 00:05:37,070 a lot of web servers. 58 00:05:37,150 --> 00:05:40,100 So generating the certificate is always the same. 59 00:05:40,150 --> 00:05:45,520 And then you want to integrate the certificate with the service that you want to use. 60 00:05:45,520 --> 00:05:51,100 So in our case we want to use that with apache so we can support TTP s and I'm going to show you how 61 00:05:51,100 --> 00:05:52,870 to do that in the next lecture. 6607