Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hacking Windows Damian Gordon.

Published byAugust Poulsen Modified over 5 years ago

Similar presentations

Presentation on theme: "Hacking Windows Damian Gordon."— Presentation transcript:

1 Hacking Windows Damian Gordon

2 Hacking Windows Most Windows vulnerabilities are well-known, and variations of vulnerabilities that have been around for a very long time. Thus if patches are applied correctly many Windows attacks are preventable, but Security Management is prevalent in a lot of organisations.

3 Hacking Windows If you can connect to a Windows computer, you can usually extract a lot of information, particularly if the system has been set up with the default configurations.

4 Hacking Windows What sort of tools does Windows provide that can be used to discover system information?

5 nbtstat Displays protocol statistics and current TCP/IP connections using NBT (NetBIOS over TCP/IP)

6 nbtstat Displays protocol statistics and current TCP/IP connections using NBT (NetBIOS over TCP/IP) network Network I/O network

7 nbtstat

8 netstat Displays network statistics and current TCP.

9 netstat Displays network statistics and current TCP. network

10 netstat

11 MBSA Microsoft Baseline Security Analyzer
Test for missing patches and basic Windows security settings.

12 MBSA

13 Non-Free Tools GFI LanGuard Nexpose
Metasploit Framework and Metasploit Pro NetScanTools Pro SoftPerfect Network Scanner TCPView Winfo

14 Gathering Information
1. Run a scan for open ports, use something like NetScanTools Pro.

15

16 Gathering Information
2. Scan for shares, and versions of the Server Message Block, using LanGuard.

17

18 How to stop scanning Make sure the network firewall is up and running, and running Internet Information Services (IIS) Have personal firewalls on each machine, and consider blocking ports, such as RPC (port 135) and NetBIOS (ports 137, 138, 139, 445) Disable any unnecessary services

19 Misconfigured Shares Windows allows you to easily share folders or devices Share can be misconfigured, allowing users, malware, and external attackers to access information (once there are in the network) LanGuard has a Share Finder Tool to search for shares

20

21 Windows 10 Security Windows 10 is a very secure system
Patch management is much improved BitLocker and full-disc encryption are also improved Lots of tools in Windows Defender Improved User Authentication

Download ppt "Hacking Windows Damian Gordon."

Similar presentations

SYSTEM ADMINISTRATION Chapter 19

SYSTEM ADMINISTRATION Chapter 19
Paula Kiernan Senior Consultant Ward Solutions

Paula Kiernan Senior Consultant Ward Solutions
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.
Vulnerability Analysis Borrowed from the CLICS group.

Vulnerability Analysis Borrowed from the CLICS group.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Microsoft Security Resources. URL’s for this talk All URL’s mentioned in this talk can be found here: All URL’s mentioned in this talk can be found here:

Microsoft Security Resources. URL’s for this talk All URL’s mentioned in this talk can be found here: All URL’s mentioned in this talk can be found here:
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Enumeration. Local IP addresses Local IP addresses (review)  Some special IP addresses  localhost 127.0.0.1 (loopback address)  Internal networks 

Enumeration. Local IP addresses Local IP addresses (review)  Some special IP addresses  localhost (loopback address)  Internal networks 
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
Microsoft Baseline Security Analyzer INLS 187 Security Software Presentation by Hinár György Polczer

Microsoft Baseline Security Analyzer INLS 187 Security Software Presentation by Hinár György Polczer
1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.

1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.

TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
Security Audit Tools Project. CT 395 IT Security I Professor Igbeare Summer Quarter 2009 August 25, 2009.

Security Audit Tools Project. CT 395 IT Security I Professor Igbeare Summer Quarter 2009 August 25, 2009.
Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.

Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.
Chapter 6 Enumeration Modified 9-28-09. Objectives  Describe the enumeration step of security testing  Enumerate Microsoft OS targets  Enumerate NetWare.

Chapter 6 Enumeration Modified Objectives  Describe the enumeration step of security testing  Enumerate Microsoft OS targets  Enumerate NetWare.
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.

1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.
1 GFI LANguard N.S.S VS NeWT Security Scanner Presented by:Li,Guorui.

1 GFI LANguard N.S.S VS NeWT Security Scanner Presented by:Li,Guorui.
Hands-On Ethical Hacking and Network Defense Chapter 8 Microsoft Operating System Vulnerabilities.

Hands-On Ethical Hacking and Network Defense Chapter 8 Microsoft Operating System Vulnerabilities.

Similar presentations

Ads by Google