Presents Ethical Hacking www.kaashivinfotech.com For Inplant Training / Internship, please download the "Inplant training registration form" from our website.

Slides:

Advertisements

Similar presentations

ETHICAL HACKING A LICENCE TO HACK

Advertisements

Preventing Infringement of Intellectual Property (IP) Rights in the Workplace Awareness raising to how to prevent infringement within [business name] September.

How to write an effective job description

ETHICAL HACKING.

1.8 Malpractice and Crime In this section you must be able to: Explain the consequences of malpractice and crime on information systems. Describe the possible.

Black, White, Grey Hat Hackers Not all hackers are bad…which one’s which?

Security and Personnel

Chapter 1 Ethical Hacking Overview. Who Am I?  Kevin Riley  Systems / Network Analyst Orange Coast College   Phone

Computer Threats I can understand computer threats and how to protect myself from these threats.

CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.

Computer Security and Penetration Testing

Penetration Testing Anand Sudula, CISA,CISSP SSA Global Technologies, India Anand Sudula, CISA,CISSP SSA Global Technologies, India.

About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning.

 Ethical Hacking is testing the resources for a good cause and for the betterment of technology.  Technically Ethical Hacking means penetration.

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

Hands-On Ethical Hacking and Network Defense

January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS © Abdou Illia.

Vulnerability Assessment & Penetration Testing By: Michael Lassiter Jr.

The 10 Deadly Sins of Information Security Management

Supplier Ethics: Program Checklist

Computer Hacking Cybercrime (1).

Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.

Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.

ETHICAL HACKING ETHICAL HACKING A LICENCE TO HACK Submitted By: Usha Kalkal M.Tech(1 st Sem) Information technology.

 Jonathan Trull, Deputy State Auditor, Colorado Office of the State Auditor  Travis Schack, Colorado’s Information Security Officer  Chris Ingram,

SEC835 Database and Web application security Information Security Architecture.

Chapter 1 Ethical Hacking Overview. Hands-On Ethical Hacking and Network Defense2  Describe the role of an ethical hacker  Describe what you can do.

BUS1MIS Management Information Systems Semester 1, 2012 Week 7 Lecture 1.

Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security.

C4- Social, Legal, and Ethical Issues in the Digital Firm

Information Systems Security Computer System Life Cycle Security.

Security Awareness: Applying Practical Security in Your World Chapter 1: Introduction to Security.

IT security By Tilly Gerlack.

Copyright © 2004 Pearson Education, Inc. Slide 5-1 Securing Channels of Communication Secure Sockets Layer (SSL): Most common form of securing channels.

Ethical Hacking

Sample Security Model. Security Model Secure: Identity management & Authentication Filtering and Stateful Inspection Encryption and VPN’s Monitor: Intrusion.

Security Awareness Challenges of Securing Information No single simple solution to protecting computers and securing information Different types of attacks.

HACKER Someone who attempts to break into computer system. Typically, this kind of hacker would be a proficient programmer or engineer with sufficient.

13.6 Legal Aspects Corporate IT Security Policy. Objectives Understand the need for a corporate information technology security policy and its role within.

Chapter 1 Ethical Hacking Overview. Objectives After reading this chapter and completing the exercises, you will be able to: Describe the role of an ethical.

Ethical Hacking and Network Defense NCTT Winter Workshop January 11, 2006.

Ethical Hacking Han Li  Ethical Hacking is testing the resources for a good cause and for the betterment of technology.  Technically Ethical Hacking.

Topic 5: Basic Security.

Introduction: Information security services. We adhere to the strictest and most respected standards in the industry, including: -The National Institute.

KaaShiv InfoTech Ethical Hacking For Inplant Training / I nternship, please download th e "Inplant training registration form" fr om our website

Networked Systems Survivability CERT ® Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA © 2002 Carnegie.

E NGINEERING STUDIES IN T ELECOMMUNICATIONS S ECURITY School of Communication Engineering.

Ethical Hacking License to hack. OVERVIEW Ethical Hacking ? Why do ethical hackers hack? Ethical Hacking - Process Reporting Keeping It Legal.

Computer Security By Duncan Hall.

Presents Ethical Hacking 1 For Inplant Training / Internship, please download the "Inplant training registration form" from our.

Web Security Introduction to Ethical Hacking, Ethics, and Legality.

Objectives  Legislation:  Understand that implementation of legislation will impact on procedures within an organisation.  Describe.

Chapter 1 Ethical Hacking Overview. Hands-On Ethical Hacking and Network Defense2  Describe the role of an ethical hacker  Describe what you can do.

Last revised A.A. Degree CNIT 120: Network Security Fundamentals of Network Security Preparation for Security+ Certification Essential for.

Ethical Hacking and Network Defense. Contact Information Sam Bowne Sam Bowne Website: samsclass.info Website:

Computer Security Sample security policy Dr Alexei Vernitski.

General Information: This document was created for use in the "Bridges to Computing" project of Brooklyn College. You are invited and encouraged to use.

Computer Security Keeping you and your computer safe in the digital world.

CITA 352 Chapter 1 Ethical Hacking Overview. Introduction to Ethical Hacking Ethical hackers –Hired by companies to perform penetration tests Penetration.

Department of Computer Science Introduction to Information Security Chapter 7 Activity Security Assessment Semester 1.

HACKING Submitted By: Ch. Leela Sasi, I M.C.A, Y11MC29011, CJJC P.G College.

Ethical Hacking By: Erin Noonan.

Responding to Intrusions

FORMAL SYSTEM DEVELOPMENT METHODOLOGIES

Unit 7 – Organisational Systems Security

Hands-On Ethical Hacking and Network Defense

Penetration Testing Computer Science and Software Engineering

Ethical Hacking.

Unit 32 Every class minute counts! 2 assignments 3 tasks/assignment

social Engineering and its importance during Security Audits

Presentation transcript:

Presents Ethical Hacking For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Describe the role of an ethical hacker  Describe what you can do legally as an ethical hacker  Describe what you cannot do as an ethical hacker For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

4 Ethical Hacking Online Materials Famous Hackers in History Ian Murphy Kevin MitnickJohan Helsinguis Mark AbeneRobert Morris For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Ethical hackers  Employed by companies to perform penetration tests  Penetration test  Legal attempt to break into a company’s network to find its weakest link  Tester only reports findings, does not solve problems  Security test  More than an attempt to break in; also includes analyzing company’s security policy and procedures  Tester offers solutions to secure or protect the network For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Hackers  Access computer system or network without authorization  Breaks the law; can go to prison  Ethical hacker  Performs most of the same activities but with owner’s permission For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Script kiddies or packet monkeys  Young inexperienced hackers  Copy codes and techniques from knowledgeable hackers  Experienced penetration testers write programs or scripts using these languages  Practical Extraction and Report Language (Perl), C, C++, Python, JavaScript, Visual Basic, SQL, and many others  Set of instructions that runs in sequence For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 This class alone won’t make you a hacker, or an expert  It might make you a script kiddie  It usually takes years of study and experience to earn respect in the hacker community  It’s a hobby, a lifestyle, and an attitude  A drive to figure out how things work For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Tiger box  Collection of OSs and hacking tools  Usually on a laptop  Helps penetration testers and security testers conduct vulnerabilities assessments and attacks For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 White box model  Tester is told everything about the network topology and technology  Tester is authorized to interview IT personnel and company employees  Makes tester’s job a little easier For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

11 For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Black box model  Company staff does not know about the test  Tester is not given details about the network  Tests if security personnel are able to detect an attack For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Gray box model  Hybrid of the white and black box models  Company gives tester partial information For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Designated by the Institute for Security and Open Methodologies (ISECOM)  Uses the Open Source Security Testing Methodology Manual (OSSTMM)  Test is only offered in Connecticut and outside the USA, as far as I can tell For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Issued by the International Information Systems Security Certifications Consortium (ISC 2 )  Usually more concerned with policies and procedures than technical details. For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 SysAdmin, Audit, Network, Security (SANS)  Offers certifications through Global Information Assurance Certification (GIAC)  Top 20 list  One of the most popular SANS Institute documents  Details the most common network exploits  Suggests ways of correcting vulnerabilities For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Laws involving technology change as rapidly as technology itself  Find what is legal for you locally  Laws change from place to place  Be aware of what is allowed and what is not allowed For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Tools on your computer might be illegal to possess  Contact local law enforcement agencies before installing hacking tools  Written words are open to interpretation  Governments are getting more serious about punishment for cybercrimes For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Ch 1l1: Lycos starts anti-spam screensaver plan: Dec 2, 2004  Ch 1l2: Lycos Pulls Anti-Spam 'Vigilante' Campaign -- Dec 3, 2004  Ch 1l3: Lycos's Spam Attack Network Dismantled -- Spammers sent the DOS packets back to Lycos -- Dec 6, For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 Ch 1m: Blue Frog begins its "vigilante approach" to fight spam -- July, 2005  Ch 1n: Russian spammer fights back, claims to have stolen Blue Frog's database, sends threating -- DOS attack in progress -- May 2, 2006  Ch 1o: Blue Frog compromised and destroyed by attacks, urgent instructions to uninstall it, the owners have lost control -- May 17, For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

 What it takes to be a security tester  Knowledge of network and computer technology  Ability to communicate with management and IT personnel  Understanding of the laws  Ability to use necessary tools For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to

GTEK

Thank you For Inplant Training / Internship, please download the "Inplant training registration form" from our website Fill the form and send it to