To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug :00: MIME-Version: 1.0 X-Mailer: Internet Mail Service ( ) Content-Type: text/plain 3"> To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug :00: MIME-Version: 1.0 X-Mailer: Internet Mail Service ( ) Content-Type: text/plain 3">

Presentation is loading. Please wait.

Presentation is loading. Please wait.

Grover Kearns, PhD, CPA, CFE Class 11 1. Videos 2 How works Spoofing

Published byJeffrey Allen McDaniel Modified over 9 years ago

Similar presentations

Presentation on theme: "Grover Kearns, PhD, CPA, CFE Class 11 1. Videos 2 How works Spoofing"— Presentation transcript:

1 Grover Kearns, PhD, CPA, CFE Class 11 1

2 Email Videos 2 How email works http://www.youtube.com/watch?v=YBzLPmx3xTU Email Spoofing http://lybio.net/household-hacker-hacking-email- spoofing-101/science-technology/ SMTP Spoofing http://www.youtube.com/watch?v=Up6XcxEilp4&feature =related Tracing an email http://www.youtube.com/watch?v=hSvswzSy3oA

3 Reading Email Headers From > Sat Aug 17 16:00:24 2002 Return-Path: > Received: from exanpcn4.arinc.com ([144.243.4.70]) by mta009.verizon.net (InterMail vM.5.01.05.09 201-253-122-126-109-20020611) with ESMTP id for >; Sat, 17 Aug 2002 15:00:09 -0500 Received: from exanpcn2.arinc.com (unverified) by exanpcn4.arinc.com (Content Technologies SMTPRS 4.1.5) with ESMTP id for >; Sat, 17 Aug 2002 16:02:15 -0400 Received: by exanpcn2.arinc.com with Internet Mail Service (5.5.2653.19) \tid ; Sat, 17 Aug 2002 16:00:27 -0400 Message-ID: From: "Conner, Richard C. \\(RCONNER\\)" > To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug 2002 16:00:26 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain 3

4 Not required by SMTP

5 From > Sat Aug 17 16:00:24 2002 Return-Path: > Received: from exanpcn4.arinc.com ([144.243.4.70]) by mta009.verizon.net (InterMail vM.5.01.05.09 201-253-122-126-109-20020611) with ESMTP id for >; Sat, 17 Aug 2002 15:00:09 -0500 Received: from exanpcn2.arinc.com (unverified) by exanpcn4.arinc.com (Content Technologies SMTPRS 4.1.5) with ESMTP id for >; Sat, 17 Aug 2002 16:02:15 -0400 Received: by exanpcn2.arinc.com with Internet Mail Service (5.5.2653.19) \tid ; Sat, 17 Aug 2002 16:00:27 -0400 Message-ID: From: "Conner, Richard C. \\(RCONNER\\)" > To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug 2002 16:00:26 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain unique message ID

6 From > Sat Aug 17 16:00:24 2002 Return-Path: > Received: from exanpcn4.arinc.com ([144.243.4.70]) by mta009.verizon.net (InterMail vM.5.01.05.09 201-253-122-126-109-20020611) with ESMTP id for >; Sat, 17 Aug 2002 15:00:09 -0500 Received: from exanpcn2.arinc.com (unverified) by exanpcn4.arinc.com (Content Technologies SMTPRS 4.1.5) with ESMTP id for >; Sat, 17 Aug 2002 16:02:15 -0400 Received: by exanpcn2.arinc.com with Internet Mail Service (5.5.2653.19) \tid ; Sat, 17 Aug 2002 16:00:27 -0400 Message-ID: From: "Conner, Richard C. \\(RCONNER\\)" > To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug 2002 16:00:26 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain

7 7

8 8 From > Sat Aug 17 16:00:24 2002 Return-Path: > Received: from exanpcn4.arinc.com ([144.243.4.70]) by mta009.verizon.net (InterMail vM.5.01.05.09 201-253-122-126-109-20020611) with ESMTP id <20020817200009.CWZT20372.mta009. verizon.net@exanpcn4.arinc.com> for >; Sat, 17 Aug 2002 15:00:09 -0500 Received: from exanpcn2.arinc.com (unverified) by exanpcn4.arinc.com (Content Technologies SMTPRS 4.1.5) with ESMTP id for >; Sat, 17 Aug 2002 16:02:15 -0400 Received: by exanpcn2.arinc.com with Internet Mail Service (5.5.2653.19) \tid ; Sat, 17 Aug 2002 16:00:27 -0400 Message-ID: From: "Conner, Richard C. \\(RCONNER\\)" > To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug 2002 16:00:26 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain

9 From > Sat Aug 17 16:00:24 2002 Return-Path: > Received: from exanpcn4.arinc.com ([144.243.4.70]) by mta009.verizon.net (InterMail vM.5.01.05.09 201-253-122-126-109-20020611) with ESMTP id for >; Sat, 17 Aug 2002 15:00:09 -0500 Received: from exanpcn2.arinc.com (unverified) by exanpcn4.arinc.com (Content Technologies SMTPRS 4.1.5) with ESMTP id for >; Sat, 17 Aug 2002 16:02:15 -0400 Received: by exanpcn2.arinc.com with Internet Mail Service (5.5.2653.19) \tid ; Sat, 17 Aug 2002 16:00:27 -0400 Message-ID: From: "Conner, Richard C. \\(RCONNER\\)" > To: "my-home-address" > Subject: Hello Date: Sat, 17 Aug 2002 16:00:26 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain 9

10 Another Example – Partial Header Delivered-To: gkearns@mail.usf.edu Received: by 10.68.58.39 with SMTP id n7cs40710pbq; … Return-Path: … Received: from [127.0.0.1] by omp1017.mail.bf1.yahoo.com with NNFMP; 20 Jun … Received: (qmail 38143 invoked by uid 60001); 20 Jun 2011 19:58:58 -0000 Message-ID: Received: from [70.126.236.236] by web161204.mail.bf1.yahoo.com via HTTP; Mon, 20 Jun 2011 12:58:58 PDT X-Mailer: YahooMailClassic/14.0.3 YahooMailWebService/0.8.111.304355 Date: Mon, 20 Jun 2011 12:58:58 -0700 (PDT) From: Grover Kearns Subject: Be Alert To: gkearns@mail.usf.edu MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Now get to work!

11

12 Mobile Phone Forensics Unauthorized photos, videos, audio recording Digital fraud and data duplication Industrial espionage Acceptable use policy 12

13 Mobile Phone Forensics SIM Cards- Subscriber Identity Module SD Cards- Secure Digital 13

14 Mobile Phone Forensics International Mobile Subscriber Identity Integrated Circuit Card Identifier (ICC-ID) Authentication Key (K i ) Location Area Identity SMS Message / Contact s Stored Data on SIM Cards 14

15 Mobile Phone Forensics Stored Data on SD Cards Call logs Text Messages Electronic documents Phonebooks Videos Music Photos Calendar 15

16 Smart Phone Videos How to Save Data to a Phone's Micro SD Memory Card http://www.ehow.com/video_4756774_save-micro- sd-memory-card.html SIM Card Reader http://www.proofpronto.com/cell-phone- spy.html?gclid=CIfqu8zqwqkCFYgW2god9AZacwhttp://www.proofpronto.com/cell-phone- spy.html?gclid=CIfqu8zqwqkCFYgW2god9AZacw Hacking the iPhone http://www.youtube.com/watch?v=ZgITSfrEILQ 16

17 Problems with Mobile Forensics Lack of single standards How cell phones store messages Multitude of models Generations: analog, PCS, 3G, 4G, ???

18 Remote Phone Wipes 18 All smart phones can be “wiped” remotely. Check the web for instructions for each phone.

19 Securing Mobile Phones Securing the mobile phone is the first action Turning it off will lose RAM If on it can be wiped remotely Wrap multiple times in foil or Place in empty paint bucket

20

21 21

22 SIMCon Reads SIM files Analyzes file content Recovers deleted text messages Manages PIN codes Exports data to spreadsheet files 22

23 Comparing 3G to 4G 3G Average download speed is 1 to 100 Mbps Allowed email and Internet access Allows apps with music downloads and video calling Applies to all smartphones 4G A set of standards that hasn't really been clearly defined Average download speeds are about twice as fast as 3G at 4-6 Mbps More apps, More secure

24 Digital Networks CDMA – Uses full radio frequency spectrum. Sprint and Verizon use this. GSM – Used by AT&T and T-Mobile and standard in Europe and Asia. You can switch your SIM card with GSM! OFDM – Probably will be the chosen technology for 4G.

25 Smart Phones Contain: RAM, ROM, microprocessor, radio module, hardware interfaces. Many have memory cards (SIM). Store system data in EEPROM. OS is stored in ROM.

26 26

27

28 28

29 29

30 30

31 31

32 Jailbreaking & Unlocking Unlocking allows owner to switch SIM cards Could void warranty Jailbreaking allows owner to add apps that are not supported by vendor Not illegal 32

33 Recovering Deleted Files http://www.youtube.com/watch?v=5ShSIYR QnZY&feature=related 33

34 Web Sites - Email Email Spoofing http://lybio.net/household-hacker-hacking-email-spoofing- 101/science-technology/ Tracing an email http://www.youtube.com/watch?v=hSvswzSy3oA How to find IP address and shutdown network computer http://www.youtube.com/watch?v=fFLd0EQR- uE&feature=related Restoring deleted files http://www.youtube.com/watch?v=5ShSIYRQnZY&feature=r elated

35 Web Sites – Mobile Phones SIM Card Reader http://www.proofpronto.com/cell-phone- spy.html?gclid=CIfqu8zqwqkCFYgW2god9AZacw Hacking iPhone http://www.youtube.com/watch?v=ZgITSfrEILQ How to Save Data to a Phone's Micro SD Memory Card http://www.ehow.com/video_4756774_save- micro-sd-memory-card.html

Download ppt "Grover Kearns, PhD, CPA, CFE Class 11 1. Videos 2 How works Spoofing"

Similar presentations

Voice and Data Encryption over mobile networks July 2012 IN-NOVA TECNOLOGIC IN-ARG SA www.in-arg.com MESH VOIP.

Voice and Data Encryption over mobile networks July 2012 IN-NOVA TECNOLOGIC IN-ARG SA MESH VOIP.
Guide to Computer Forensics and Investigations Fourth Edition

Guide to Computer Forensics and Investigations Fourth Edition
Smartphone and Mobile Device Security IT Communication Liaisons Meeting October 11, 2012 Theresa Semmens, CITSO.

Smartphone and Mobile Device Security IT Communication Liaisons Meeting October 11, 2012 Theresa Semmens, CITSO.
Welcome to the Award Winning Easiest to Use & Most Advanced View, Manage, and Control Security, Access Control, Video, Energy & Lighting Systems, & Critical.

Welcome to the Award Winning Easiest to Use & Most Advanced View, Manage, and Control Security, Access Control, Video, Energy & Lighting Systems, & Critical.
Guide to Computer Forensics and Investigations Fourth Edition Chapter 13 Cell Phone and Mobile Devices Forensics.

Guide to Computer Forensics and Investigations Fourth Edition Chapter 13 Cell Phone and Mobile Devices Forensics.
ACN / TELUS Wireless Your Canadian Wireless Headquarters

ACN / TELUS Wireless Your Canadian Wireless Headquarters
Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.

Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.
MNO Cloud Use Case 3 Source: Rogers Wireless Contact: Ed O’Leary George Babut 3GPP/SA3-LI#43Tdoc SA3LI11_116.

MNO Cloud Use Case 3 Source: Rogers Wireless Contact: Ed O’Leary George Babut 3GPP/SA3-LI#43Tdoc SA3LI11_116.
COMPUTER CONCEPTS Computer Information Systems. COURSE COMPETENCIES Explain the functions of computer system components. Describe the information processing.

COMPUTER CONCEPTS Computer Information Systems. COURSE COMPETENCIES Explain the functions of computer system components. Describe the information processing.
COS 413 Day 21. Agenda Assignment 6 is Due Lab 6 Corrected –1 A, 4 B’s, 1 C, 2 D’s and 1 non submit LAB 7 write-up not corrected –Missing two Assignment.

COS 413 Day 21. Agenda Assignment 6 is Due Lab 6 Corrected –1 A, 4 B’s, 1 C, 2 D’s and 1 non submit LAB 7 write-up not corrected –Missing two Assignment.
Senior Design Project 2004/2005 Web Enabled Calling Number Delivery Daniel St. Clair Barron Shurn Professor Soules 10/28/2004.

Senior Design Project 2004/2005 Web Enabled Calling Number Delivery Daniel St. Clair Barron Shurn Professor Soules 10/28/2004.
A smartphone from Apple that integrates cellphone, iPod, camera, text messaging, e-mail and Web browsing. Data and applications can be sent to the phone.

A smartphone from Apple that integrates cellphone, iPod, camera, text messaging, and Web browsing. Data and applications can be sent to the phone.
Onetouch Cloud Backup.

Onetouch Cloud Backup.
Chapter 30 Electronic Mail Representation & Transfer

Chapter 30 Electronic Mail Representation & Transfer
MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.

MOBILE MALWARE TOPIC #5 – INFORMATION ASSURANCE AND SECURITY Michael Fine 1.
Advanced Techniques in Forensic Examination of Smartphones 2012 (C) Oxygen Software, 2000-2012

Advanced Techniques in Forensic Examination of Smartphones 2012 (C) Oxygen Software,
Backing up data By Alicia stewart.

Backing up data By Alicia stewart.
4 Network Hardware & Software Network Operating systems: software controlling traffic on the network 2 types of s.ware: server software &client software.

4 Network Hardware & Software Network Operating systems: software controlling traffic on the network 2 types of s.ware: server software &client software.
Cell Phone Terminal. Setting up your cell phone How to do a transaction.

Cell Phone Terminal. Setting up your cell phone How to do a transaction.
Unit 3: Hardware Components & Software Concepts

Unit 3: Hardware Components & Software Concepts

Similar presentations

Ads by Google