Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Penetration Testing & Defense

Published byวรรณ พิศาลบุตร Modified over 5 years ago

Similar presentations

Presentation on theme: "Network Penetration Testing & Defense"— Presentation transcript:

1 Network Penetration Testing & Defense
Password Attacks                     Peer Instruction Questions for Cybersecurity: Pentesting by William E. Johnson, Allison Luzader, Irfan Ahmed is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

2 When attempting to crack an unknown Windows XP LM hash, which method is most efficient?
Complete brute force Rainbow tables Dictionary attack with a large wordlist Passing the hash Birthday attack Answer: B Category: password cracking, hashes

3 A machine that you have accessed stores password hashes without salts
A machine that you have accessed stores password hashes without salts. How would you best crack the hashes? Complete brute force Rainbow tables Dictionary attack with a large wordlist Passing the hash Password guessing Answer: B Category: password cracking, hashes

4 You obtain a leaked database of SHA-1 hashes of LinkedIn passwords
You obtain a leaked database of SHA-1 hashes of LinkedIn passwords. They are unsalted. How would you quickly crack as many passwords as possible? Complete brute force Rainbow tables Dictionary attack with a large wordlist Passing the hash Password guessing Answer: B Category: password cracking, hashes

5 You obtain a dump of password hashes that are salted
You obtain a dump of password hashes that are salted. What is the best approach to obtain as many passwords as possible? Complete brute force Rainbow tables Dictionary attack with a large wordlist Passing the hash Birthday attack Answer: C Category: password cracking, hashes

6 A remote machine within scope is up and accepting NTLM logins
A remote machine within scope is up and accepting NTLM logins. What is necessary to connect to this machine? An NTLM hash A username and an LM password A username and an NTLM password A username and an NTLM hash A username and an LM hash Answer: D Category: pass-the-hash

7 A remote machine within scope is up and accepting LM logins
A remote machine within scope is up and accepting LM logins. What is necessary to connect to this machine? An LM hash A username and an LM password A username and an NTLM password A username and an NTLM hash A username and an LM hash Answer: E Category: pass-the-hash

8 You’ve gained full access to a Windows XP SP2 machine
You’ve gained full access to a Windows XP SP2 machine. How do you obtain its password hashes? They are available in the passwd file They are available in the SAM registry hive They are available in the shadow file They are available in the Ntuser.dat registry hive Answer: B Category: password cracking

9 You’ve gained full access to a modern Ubuntu machine
You’ve gained full access to a modern Ubuntu machine. How do you obtain its password hashes? They are available in the passwd file They are available in the SAM registry hive They are available in the shadow file They are available in the Ntuser.dat registry hive Answer: C Category: password cracking

10 Given an online service that takes unlimited login attempts, which tool would be best to use to crack a password without hashes? John Ophcrack Hydra Hashcat A or C Answer: C Category: password cracking

11 Given a set of LM hashes and a rainbow table, which of these tools would be most efficient to crack some of these hashes? John Ophcrack Hashcat Hydra A or C Answer: B Category: password cracking

12 Which of these tools would be best used on a set of modern Ubuntu password hashes?
John Ophcrack Hashcat Hydra A or C Answer: E Category: password cracking

Download ppt "Network Penetration Testing & Defense"

Similar presentations

Password Cracking With Rainbow Tables

Password Cracking With Rainbow Tables
Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions October 12, 2014 DRAFT1.

Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions October 12, 2014 DRAFT1.
The Cain Tool Presented by: Sagar Chivate CS 685F.

The Cain Tool Presented by: Sagar Chivate CS 685F.
COEN 350: Network Security Authentication. Between human and machine Between machine and machine.

COEN 350: Network Security Authentication. Between human and machine Between machine and machine.
With a Penetration Tester’s Toolkit.  Background  What to Expect  Topics  Demonstrations.

With a Penetration Tester’s Toolkit.  Background  What to Expect  Topics  Demonstrations.
Password CrackingSECURITY INNOVATION ©2003 1 Sidebar – Password Cracking We have discussed authentication mechanisms including authenticators. We also.

Password CrackingSECURITY INNOVATION © Sidebar – Password Cracking We have discussed authentication mechanisms including authenticators. We also.
Cryptography and Network Security Chapter 20 Intruders

Cryptography and Network Security Chapter 20 Intruders
Chapter 3 Passwords Principals Authenticate to systems.

Chapter 3 Passwords Principals Authenticate to systems.
CSCI 530 Lab Authentication. Authentication is verifying the identity of a particular person Example: Logging into a system Example: PGP – Digital Signature.

CSCI 530 Lab Authentication. Authentication is verifying the identity of a particular person Example: Logging into a system Example: PGP – Digital Signature.
CSE 461 INTEGRITY CHECKING AND HASHING. JOKE: TELNET.

CSE 461 INTEGRITY CHECKING AND HASHING. JOKE: TELNET.
Nothing is Safe 1. Overview  Why Passwords?  Current Events  Password Security & Cracking  Tools  Demonstrations Linux GPU Windows  Conclusions.

Nothing is Safe 1. Overview  Why Passwords?  Current Events  Password Security & Cracking  Tools  Demonstrations Linux GPU Windows  Conclusions.
MS systems use one of the following: LanManager Hash (LM) LanManager Hash (LM) NT LanManager (NTLM) NT LanManager (NTLM) Cached passwords Cached passwords.

MS systems use one of the following: LanManager Hash (LM) LanManager Hash (LM) NT LanManager (NTLM) NT LanManager (NTLM) Cached passwords Cached passwords.
WARNING! Sample chapter -Materials in this sample chapter is selected advanced penetration from https://training.zdresearch.com https://training.zdresearch.com.

WARNING! Sample chapter -Materials in this sample chapter is selected advanced penetration from
Windows This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added material. Dr. Stephen.

Windows This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added material. Dr. Stephen.
VPN AND SECURITY FLAWS Rajesh Perumal Clemson University.

VPN AND SECURITY FLAWS Rajesh Perumal Clemson University.
What Password Cracking Password cracking is the process of recovering secret passwords from data that has been stored in or transmitted by a computer.

What Password Cracking Password cracking is the process of recovering secret passwords from data that has been stored in or transmitted by a computer.
IS 302: Information Security and Trust Week 7: User Authentication (part I) 2012.

IS 302: Information Security and Trust Week 7: User Authentication (part I) 2012.
Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.

Karlstad University Introduction to Vulnerability Assessment Labs Ge Zhang Dvg-C03.
The Truth About Protecting Passwords COEN 150: Intro to Information Security Mary Le Carol Reiley.

The Truth About Protecting Passwords COEN 150: Intro to Information Security Mary Le Carol Reiley.
Chapter 4 System Hacking: Password Cracking, Escalating Privileges, & Hiding Files.

Chapter 4 System Hacking: Password Cracking, Escalating Privileges, & Hiding Files.

Similar presentations

Ads by Google