Presentation is loading. Please wait.

Presentation is loading. Please wait.

MIS 5211.001 Week 3 Site:

Published byViolet Griffith Modified over 9 years ago

Similar presentations

Presentation on theme: "MIS 5211.001 Week 3 Site:"— Presentation transcript:

1 MIS 5211.001 Week 3 Site: http://community.mis.temple.edu/mis5211sec001f14/ http://community.mis.temple.edu/mis5211sec001f14/

2  Upcoming Career Fair for IT Students  September 24 th  http://ibit.temple.edu/careerfair/ http://ibit.temple.edu/careerfair/ MIS 5211.0012

3  Questions from last week  In the news  Google Hacking  Reconnaissance 3MIS 5211.001

4  Weekly items  An article you found during the week related to hacking, pen-testing or that you think the class may find interesting.  Similar to the items in the news at the beginning of week 2's presentation  An observation and question from the reading.  Can post as comment to class blog, or send to me by e-mail MIS 5211.0014

5  MAC Address Assignments  Assigned by IEEE according to one of three rule  MAC-48  EUI-48  EUI-64 (New Standard)  Link for IEEE Site  http://standards.ieee.org/develop/regauth/oui/public.html http://standards.ieee.org/develop/regauth/oui/public.html MIS 5211.0015 Questions From Last Week

6  Cisco Guideline on Subnetting  http://www.cisco.com/c/en/us/support/docs/ip/routing-information- protocol-rip/13788-3.html http://www.cisco.com/c/en/us/support/docs/ip/routing-information- protocol-rip/13788-3.html MIS 5211.0016

7  Network Icons  Cisco  http://www.cisco.com/web/about/ac50/ac47/2.html http://www.cisco.com/web/about/ac50/ac47/2.html  Microsoft  http://www.microsoft.com/en- us/download/details.aspx?id=4604 http://www.microsoft.com/en- us/download/details.aspx?id=4604 MIS 5211.0017

8  Certifications  Starter Certs  CompTia’s Security+  CompTia’s Network+ or Cisco CCNA  Technical Certs  GIAC GSEC and GCIH  Higher Level Certs  ISC 2 CISSP  ISACA CISM MIS 5211.0018

9  Scripting  You will not need to write scripts for this course  You will likely find yourself looking at a few  Which scripting language to learn (Just my opinion) 1. Perl – The language of lots of tools – The language of Linux 2. Ruby – The language of many tools and “MetaSploit” 3. Python – The language of some tools 4. VBA – Microsoft’s Office language – Generally already installed in most enterprises 5. JavaScript – You can’t escape it, It’s everywhere – Especially if you move toward Web Application Testing MIS 5211.0019

10  Submitted  https://www.trustedsec.com/uncategorized/powershell-reconnaissance/ https://www.trustedsec.com/uncategorized/powershell-reconnaissance/  http://www.csoonline.com/article/2604345/security-leadership/openssl-warns-vendors- against-using-vulnerability-info-for-marketing.html#tk.rss_news http://www.csoonline.com/article/2604345/security-leadership/openssl-warns-vendors- against-using-vulnerability-info-for-marketing.html#tk.rss_news  http://thehackernews.com/2014/09/malware-can-bypasses-chrome-extension.html http://thehackernews.com/2014/09/malware-can-bypasses-chrome-extension.html  http://www.technewsworld.com/story/80991.html http://www.technewsworld.com/story/80991.html  http://www.itsecurityguru.org/gurus/legalities-penetration-testing/#.VA_Wanl0yUl http://www.itsecurityguru.org/gurus/legalities-penetration-testing/#.VA_Wanl0yUl  http://www.darkreading.com/perimeter/mobile-cloud-partners-wheres-the-weak- link/d/d-id/1307064 http://www.darkreading.com/perimeter/mobile-cloud-partners-wheres-the-weak- link/d/d-id/1307064  http://www.theregister.co.uk/2014/09/03/car_makers_space_craft_manufacturers_infect ed_with_targeted_recon_tool/ http://www.theregister.co.uk/2014/09/03/car_makers_space_craft_manufacturers_infect ed_with_targeted_recon_tool/  https://twitter.com/hackappcom/status/505743531789406208 https://twitter.com/hackappcom/status/505743531789406208  What I noted  http://krebsonsecurity.com/2014/09/in-wake-of-confirmed-breach-at-home-depot- banks-see-spike-in-pin-debit-card-fraud/ http://krebsonsecurity.com/2014/09/in-wake-of-confirmed-breach-at-home-depot- banks-see-spike-in-pin-debit-card-fraud/  http://threatpost.com/research-finds-no-large-scale-heartbleed-exploit-attempts- before-vulnerability-disclosure/108161 http://threatpost.com/research-finds-no-large-scale-heartbleed-exploit-attempts- before-vulnerability-disclosure/108161  http://arstechnica.com/tech-policy/2014/09/why-comcasts-javascript-ad- injections-threaten-security-net-neutrality/ http://arstechnica.com/tech-policy/2014/09/why-comcasts-javascript-ad- injections-threaten-security-net-neutrality/ 10MIS 5211.001

11  Search Bar Commands  -  Site:  Filetype:  Inurl:  Intitle:  Intext:  Allinurl:  Allintext:  Search Terms MIS 5211.00111

12  Simple one that tells google to not include items that match what comes directly after “-”  Example:  Hacking –ethical – gives all results that include information about hacking as long as they do not include the term “ethical” MIS 5211.00112

13  Site: restricts searches to a specific site  Examples  Site:edu – Restricts searches to only sites ending in.edu  Site:temple.edu – Restricts searches to a specific top level site  Site:mis.temple.edu –Restricts searches to a sub-site MIS 5211.00113

14  Restricts searches to a specific file type  Examples  Filetype:pdf – Only responds with sites linked to Adobe documents with file extension of pdf  Filetype:xls – Only responds with sites linked to Microsoft spreadsheets documents with file extension of xls  Filetype:xlsx – Only responds with sites linked to Microsoft spreadsheets documents with file extension of xlsx – Excel’s newer file format MIS 5211.00114

15  Restricts searches to sites where specific word or phrase is in the url  Examples  inurl:"/root/etc/passwd“  inurl:admin  inurl:j2ee/examples/jsp  inurl:backup MIS 5211.00115

16  Restricts searches to sites where specific words are used in the title of a page  Examples  intitle:index.of  intitle:"Test Page for Apache"  intitle:"Apache Status"  intitle:"PHP Explorer" MIS 5211.00116

17  Restricts results to documents containing term in the text  Examples  intext:"root:x:0:0:root:/root:/bin/bash"  intext:"SteamUserPassphrase="  intext:"SteamAppUser=" -"username" -"user"  intext:"Usage Statistics for MIS 5211.00117

18  Restricts results to those containing all the query terms you specify in the URL  Examples  allinurl:/hide_my_wp=  allinurl:"/main/auth/profile.php"  allinurl:"owa/auth/logon.aspx"  allinurl:forcedownload.php?file= MIS 5211.00118

19  Restricts results to those containing all the query terms you specify in the text of the page  Examples:  allintext: /iissamples/default/  allintext: "Please login to continue..."  allintext:"Browse our directory of our members top sites or create your own for free!"  allintext:"fs-admin.php" MIS 5211.00119

20  Key search terms  “index of /”  “Please re-enter your password it must match” MIS 5211.00120

21  GoogleGuide  http://www.googleguide.com/advanced_operators_reference. html http://www.googleguide.com/advanced_operators_reference. html  Exploit Database  http://www.exploit-db.com/ http://www.exploit-db.com/  Wikipedia  http://en.wikipedia.org/wiki/Google_hacking http://en.wikipedia.org/wiki/Google_hacking  Google Hacking Volume 2  http://www.amazon.com/Google-Hacking-Penetration- Testers- Johnny/dp/1597491764/ref=sr_1_1?ie=UTF8&qid=1410311674 &sr=8-1&keywords=google+hacking http://www.amazon.com/Google-Hacking-Penetration- Testers- Johnny/dp/1597491764/ref=sr_1_1?ie=UTF8&qid=1410311674 &sr=8-1&keywords=google+hacking MIS 5211.00121

22  Attacker gathers publicly available data  People  Corporate culture  Technologies in use  Terminology  This is an important step as it will help focus later activities MIS 5211.00122

23  Maintain an inventory of what you find  Keep a log bog  Create a spreadsheet  Whatever works for you  Record key information  IP Addresses  Target names  Search queries used  Oss in use  Known vulnerabilities  Any passwords found MIS 5211.00123

24  Leave room to annotate future information that may be discovered as you go  Examples:  Open ports from port scanning  Search from compromised hosts  Etc… MIS 5211.00124

25  Think like a business competitor  Lines of business  Major products or services  Who’s in charge  Officers  VPs  Press Releases  Where are their physical locations  Who are the major competitors in there market place  The same kind of information you would gather for a job interview. MIS 5211.00125

26  Don’t just use Google  Bing  Yahoo  Ask  DuckDuckGo  All search engines filter data, but they don’t all filter the same way MIS 5211.00126

27  Combine techniques from Google Hacking  Site:temple.edu -www.temple.edu MIS 5211.00127

28  WayBack Machine  http://archive.org/web/web.php http://archive.org/web/web.php MIS 5211.00128

29  Job requirements can often provide insight into technologies in use, and where staffing shortages may result in weaknesses  Check multiple sites  Monster.com  Dice.com  Organizations site  http://www.temple.edu/hr/departments/employme nt/jobs_within.htm http://www.temple.edu/hr/departments/employme nt/jobs_within.htm  Local job sites  http://regionalhelpwanted.com/philadelphia-jobs/?sn=83 http://regionalhelpwanted.com/philadelphia-jobs/?sn=83 MIS 5211.00129

30  LinkedIn  Facebook MIS 5211.00130

31  Google Maps  MapQuest  Google Earth MIS 5211.00131

32  Whois  Database to lookup domain name, IP address and who registered the address  Web based or Command Line  whois google.com  http://www.networksolutions.co m/whois/index.jsp http://www.networksolutions.co m/whois/index.jsp MIS 5211.00132

33  American Registry for Internet Numbers  Regional Internet Registry for US, Canada, and many Caribbean islands  ARIN is one of five regional registries  Provides services related to the technical coordination and management of Internet number resources MIS 5211.00133

34  Results MIS 5211.00134

35 MIS 5211.00135

36  Querying DNS Server  Examples  By domain name  Nslookup temple.edu OR nslookup ns1.temple.edu  Interactive  Nslookup  Followed by prompts  See next slide  Type exit to get out of interactive mode MIS 5211.00136

37 MIS 5211.00137

38  The Dig command is used to gather additional DNS information  May also be used to make zone transfers.  Zone transfers may include details around other assets within an organization.  CAUTION, don’t go further then basic dig command on the next page as you may start triggering alerts in more security focused organizations. MIS 5211.00138

39  Example: MIS 5211.00139

40  http://www.thegeekstuff.com/2012/02/dig- command-examples/ http://www.thegeekstuff.com/2012/02/dig- command-examples/  http://www.cyberciti.biz/faq/linux-unix-dig- command-examples-usage-syntax/ http://www.cyberciti.biz/faq/linux-unix-dig- command-examples-usage-syntax/ MIS 5211.00140

41  Dig is available for windows 7  Site:  http://www.isc.org/downloads/bind/ http://www.isc.org/downloads/bind/ MIS 5211.00141

42  http://www.dnsstuff.com/tools http://www.dnsstuff.com/tools  http://dnsquery.org/ http://dnsquery.org/  http://network-tools.com/nslook/ http://network-tools.com/nslook/ MIS 5211.00142

43  Sensepost  https://github.com/sensepost https://github.com/sensepost  BiLE-Suite – The Bi-directional Link Extractor  A suite of perl scripts to find targets related to a given site MIS 5211.00143

44  The little green down arrow MIS 5211.00144

45  &strip=1 – It’s magic  Right click the cache button and copy shortcut  Paste short cut into notepad and append &strip=1 to the end  Copy and paste into URL  Now you get Google’s cache without leaving a footprint in the target servers logs MIS 5211.00145

46  Without &strip=1 MIS 5211.00146

47  With &strip=1 MIS 5211.00147

48  1 st formal assignment  From Syllabus  (student presentations) Reconnaissance exercise using only publicly available information, develop a profile of a public company or organization of your choosing  You may work in teams, or separately  One to two page Executive Summary  Short (no more then three slides, no welcome slide) presentation  See “Exercise Analysis” tab for more details MIS 5211.00148

49 ? MIS 5211.00149

Download ppt "MIS 5211.001 Week 3 Site:"

Similar presentations

Empowering the Education Community to Improve Student Performance through the Intelligent Use of Practical Data EdGate Training: Part 3 - SchoolNotes.

Empowering the Education Community to Improve Student Performance through the Intelligent Use of Practical Data EdGate Training: Part 3 - SchoolNotes.
Microsoft Excel 2003 Illustrated Complete Excel Files and Incorporating Web Information Sharing.

Microsoft Excel 2003 Illustrated Complete Excel Files and Incorporating Web Information Sharing.
This tutorial will take approximately 15 minutes. Click here to advance. Click here to go back.

This tutorial will take approximately 15 minutes. Click here to advance. Click here to go back.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Chapter 2 Gathering Target Information: Reconnaissance, Footprinting, and Social Engineering.

Chapter 2 Gathering Target Information: Reconnaissance, Footprinting, and Social Engineering.
WELCOME TO THE MCCLOUD SERVICES CUSTOMER WEB PORTAL TUTORIAL.

WELCOME TO THE MCCLOUD SERVICES CUSTOMER WEB PORTAL TUTORIAL.
Google Search Using internet search engine as a tool to find information related to creativity & innovation.

Google Search Using internet search engine as a tool to find information related to creativity & innovation.
Server-Side vs. Client-Side Scripting Languages

Server-Side vs. Client-Side Scripting Languages
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Week 2 -1 Week 2: Footprinting What is Footprinting? –Systematic collection of information on an intended target with the goal to create a complete profile.

Week 2 -1 Week 2: Footprinting What is Footprinting? –Systematic collection of information on an intended target with the goal to create a complete profile.
07 December 2009Slide 1 of 1207 December 2009Slide 1 of 12 SQL Injection Primer By Nicole Gray, Cliff McCullough, Joe Hernandez.

07 December 2009Slide 1 of 1207 December 2009Slide 1 of 12 SQL Injection Primer By Nicole Gray, Cliff McCullough, Joe Hernandez.
07 December 2009Slide 1 of 9 SQL Injection Primer By Nicole Gray, Cliff McCullough, Joe Hernandez.

07 December 2009Slide 1 of 9 SQL Injection Primer By Nicole Gray, Cliff McCullough, Joe Hernandez.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
Start the slide show by clicking on the Slide Show option in the above menu and choose View Show”. or – hit the F5 Key.

Start the slide show by clicking on the "Slide Show" option in the above menu and choose "View Show”. or – hit the F5 Key.
Application Software: Essentials for knowledge workers

Application Software: Essentials for knowledge workers
Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.
MIS 5211.001 Week 7 Site:

MIS Week 7 Site:
Things you need to know before beginning This directory is not perfect. It does have it’s limitations. It is detailed to give you a lot of exposure. There.

Things you need to know before beginning This directory is not perfect. It does have it’s limitations. It is detailed to give you a lot of exposure. There.
Rules: Google Places Creating Traffic The Magic of the Internet Mark Maupin.

Rules: Google Places Creating Traffic The Magic of the Internet Mark Maupin.

Similar presentations

Ads by Google