Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cyber Operation and Penetration Testing Online Password Cracking Cliff Zou University of Central Florida.

Published byJoan Lindsey Gray Modified over 5 years ago

Similar presentations

Presentation on theme: "Cyber Operation and Penetration Testing Online Password Cracking Cliff Zou University of Central Florida."— Presentation transcript:

1 Cyber Operation and Penetration Testing Online Password Cracking Cliff Zou University of Central Florida

2 Acknowledgement Content from the book:
“The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy”, Second Edition

3 Two Types of Password Cracking
Offline password cracking Compromise target computer Obtain password file (encrypted or hashed) from target computer Use cracking software to guess correct password on hacker’s own computer Con: require compromising first Pro: once obtaining password file, can find password easily

4 Two Types of Password Cracking
Online password cracking Repeatedly send login request with guessed password Trial speed depends on login roundup time, parallel enabled or not, etc. Pro: no need for compromising, anyone can do it There are many systems allowing a user to try as many passwords as he/she wants Restriction on trial may introduce DoS attack vulnerability Con: Password guessing speed is usually very slow compared with off-line password cracking Generate clear abnormal traffic

5 Motivation for Offline Password Cracking
You should already have root privilege, why need to crack user accounts password? Attackers conduct hacking in multiple steps: compromising an easy target first Gain internal access, conduct scanning, and obtain user accounts password file Crack password file to obtain users’ passwords Because many users reuse the same password for most of their accounts, attackers can try the same password to access more important targets

6 Online Password Cracking
We will introduce online password cracking in this lecture Offline cracking will be introduced later after we finish exploiting

7 Prepare Windows VM On Win7 VM (and all Win VM from Microsoft):
Username: IEUser Password: Passw0rd! You can change the account password in “control panel” “user account” section Create another target account for exploitation Such as account: cnt5410 Give it a simple password for password cracking exploitation Such as: abc123, 1234, 1024, abc123, secret, hello, …..

8 Prepare Windows VM By default, the Windows VM has enabled “remote desktop assistance” Then, if we know an account name/password on the Windows, we can remote log in it. Add the “cnt5410” account to the remote desktop” user list Right click “my computer” Click “properties”  “remote” tab  “select remote users…” “add…”

9 Prepare Windows VM On your Kali Linux VM:
Suppose your Win VM IP is: On Kali: #rdesktop You will be able to see the GUI of Windows! For Win7 VM, you need to logout any user account on the Win7 in order for the rdesktop to login without further asking permission!

10 Hydra: Remote Online Password Cracking
Hydra is included in Kali Linux Give it a discovered user name, give it a password dictionary, hydra could be very effective to find out an account password Goal: Gain access to remote services opened on some machines SSH: by Unix or Mac OS; VNC (virtual network computing): Linux Remote desktop: by Windows OS Password dictionary included in Kali Linux: A dictionary directory: /usr/share/wordlists/ John the Ripper: /usr/share/john/password.lst (a small list)

11 Hydra: Remote Online Password Cracking
Suppose the Win7 VM remote desktop is open, and has IP of , we attack the account “cnt5410”: #hydra -t 1 -V -l cis6395 -P /usr/share/john/password.lst rdp -t 1: only use one connection (no parallel sessions since rdp does not like concurrent connection requests) -V: show each attempt -l: usename -P: password list file rdp: service name (remote desktop, tcp 3389) Note: We need to make the Win7 target logging out all user accounts in order for this rdesktop to work!

12 Ncrack: Remote Online Password Cracking
#ncrack -p v -user cnt5410 -P /usr/share/john/password.lst It does not show the process of passwords attempted but failed, so be patient with the list

13 Hydra and Ncrack: Remote Online Password Cracking
A good Youtube tutorial on hydra and Ncrack: Another webpage shows how to use a few more password crackers: with-ncrack-hydra-and-medusa/

14 User Password Selection against Password Cracking
Password dictionary included in Kali Linux: A dictionary directory: /usr/share/wordlists/ A big notorious list: rockyou.txt John the Ripper: /usr/share/john/password.lst (a small list) If you are IT security staff: Ask each of your employee checking his/her own password against the above password list $ cat rockyou.txt |grep user_password If above command returns results, then the user’s password exists in the password list and should never be used!

Download ppt "Cyber Operation and Penetration Testing Online Password Cracking Cliff Zou University of Central Florida."

Similar presentations

Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.

Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.
Crack WPA Lab Last Update 2014.06.11 1.0.0 1Copyright 2014 Kenneth M. Chipps Ph.D. www.chipps.com.

Crack WPA Lab Last Update Copyright 2014 Kenneth M. Chipps Ph.D.
Chapter One The Essence of UNIX.

Chapter One The Essence of UNIX.
15.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.

15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.

11 SUPPORTING LOCAL USERS AND GROUPS Chapter 3. Chapter 3: Supporting Local Users and Groups2 SUPPORTING LOCAL USERS AND GROUPS  Explain the difference.
Guide To UNIX Using Linux Third Edition

Guide To UNIX Using Linux Third Edition
CSCI 530 Lab Authentication. Authentication is verifying the identity of a particular person Example: Logging into a system Example: PGP – Digital Signature.

CSCI 530 Lab Authentication. Authentication is verifying the identity of a particular person Example: Logging into a system Example: PGP – Digital Signature.
Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.

Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.
Internet Relay Chat Chandrea Dungy Derek Garrett #29.

Internet Relay Chat Chandrea Dungy Derek Garrett #29.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.

Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.
CSN08101 Digital Forensics Lecture 1B: Essential Linux and Caine Module Leader: Dr Gordon Russell Lecturers: Robert Ludwiniak.

CSN08101 Digital Forensics Lecture 1B: Essential Linux and Caine Module Leader: Dr Gordon Russell Lecturers: Robert Ludwiniak.
bWAPP – Bee Bug – Installation

bWAPP – Bee Bug – Installation
Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.

Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.
Introduction to Unix/Linux Chapter One The Essence of UNIX.

Introduction to Unix/Linux Chapter One The Essence of UNIX.
Lecture 10 Intrusion Detection modified from slides of Lawrie Brown.

Lecture 10 Intrusion Detection modified from slides of Lawrie Brown.
With Windows XP, you can share files and documents with other users on your computer and with other users on a network. There is a new user interface.

With Windows XP, you can share files and documents with other users on your computer and with other users on a network. There is a new user interface.
| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.

| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.
Computer Security and Penetration Testing Chapter 16 Windows Vulnerabilities.

Computer Security and Penetration Testing Chapter 16 Windows Vulnerabilities.
FTP Server and FTP Commands By Nanda Ganesan, Ph.D. © Nanda Ganesan, All Rights Reserved.

FTP Server and FTP Commands By Nanda Ganesan, Ph.D. © Nanda Ganesan, All Rights Reserved.

Similar presentations

Ads by Google