Presentation is loading. Please wait.

Presentation is loading. Please wait.

MIS 5211.001 Week 4 Site:

Published byRodney Lamb Modified over 9 years ago

Similar presentations

Presentation on theme: "MIS 5211.001 Week 4 Site:"— Presentation transcript:

1 MIS 5211.001 Week 4 Site: http://community.mis.temple.edu/mis5211sec001f14/ http://community.mis.temple.edu/mis5211sec001f14/

2  OWASP Philly  Lunch Meeting Thursday September 25 th  Topic: Securing The Android Apps On Your Wrist and Face  Presenter: Jack Mannino  Link to Group: https://www.owasp.org/index.php/Philadel phia https://www.owasp.org/index.php/Philadel phia  Link to Event: http://www.eventbrite.com/e/owasp-philly- lunch-meeting-tickets-13142911803 http://www.eventbrite.com/e/owasp-philly- lunch-meeting-tickets-13142911803 2

3  In the news  Student Presentations  Scanning  Types  TcpDump  Hping3  Beginning Nmap 3MIS 5211.001

4  Submitted  http://www.scmagazine.com/google-says-gmail-credential-dump-not-result-of- company-breach/article/371092/ http://www.scmagazine.com/google-says-gmail-credential-dump-not-result-of- company-breach/article/371092/  http://articles.philly.com/2014-09-13/news/53855445_1_pennsylvania-health- system-patient-information-desktop-computer http://articles.philly.com/2014-09-13/news/53855445_1_pennsylvania-health- system-patient-information-desktop-computer  http://www.darkreading.com/home-depot-breach-may-not-be-related-to-blackpos- target/d/d-id/1315636 http://www.darkreading.com/home-depot-breach-may-not-be-related-to-blackpos- target/d/d-id/1315636  http://thehackernews.com/2014/09/twitter-vulnerability-allows-hacker-to_16.html http://thehackernews.com/2014/09/twitter-vulnerability-allows-hacker-to_16.html  http://betanews.com/2014/08/19/gchq-accused-of-scanning-entire-nations-for- hacking-vulnerabilities/ http://betanews.com/2014/08/19/gchq-accused-of-scanning-entire-nations-for- hacking-vulnerabilities/  http://www.pcworld.com/article/2606962/apple-pay-could-put-an-end-to-data- breaches.html http://www.pcworld.com/article/2606962/apple-pay-could-put-an-end-to-data- breaches.html  http://www.cio.com/article/2683235/security0/how-to-choose-the-best- vulnerability-scanning-tool-for-your-business.html http://www.cio.com/article/2683235/security0/how-to-choose-the-best- vulnerability-scanning-tool-for-your-business.html  What I noted  http://queue.acm.org/detail.cfm?id=2668966 Network Routing http://queue.acm.org/detail.cfm?id=2668966  http://www.bbc.com/news/technology-29203776 (Cannon Printer and Doom http://www.bbc.com/news/technology-29203776 4MIS 5211.001

5 5

6  Goals  Find live network hosts, Firewalls, Routers, Printers, etc…  Work out network topology  Operating systems used  Open ports  Available network services  Potential vulnerabilities  While minimizing the chance of disrupting operations MIS 5211.0016

7  Sweep – Send a series of probes (ICMP ping) to find live hosts  Trace – Use tools like traceroute and/or tracert to map network  Port Scanning – Checking for open TCP or UDP ports  Fingerprinting – Determine operating system  Version Scanning – Finding versions of services and protocols  Vulnerability Scanning MIS 5211.0017

8  Order works from less to more intrusive  Sweeps are unlikely to disrupt anything, probably will not even alert security systems  Vulnerability scans may cause system disruptions, and will definitely light up even a marginally effective security system MIS 5211.0018

9  Always target by IP address  Round Robbin DNS (Think basic load balancing) may spread packets to different machines and corrupt your results MIS 5211.0019

10  Targeting a large number of addresses and/or ports will create a very long scan  Need to focus on smaller scope of addresses and a limited number of ports  If you have to scan large addresses space or all ports consider:  Multiple scanners  Distributed scanners (Closer to Targets) MIS 5211.00110

11  Some Pen Testers suggest running a sniffer to watch activity  Detect errors  Visualize what is happening MIS 5211.00111

12  Linux sniffer tool is tcpdump MIS 5211.00112

13  Remember Man page for tcpdump is already installed MIS 5211.00113

14  Basic Communications  Try tcpdump -nS  Looking for pings MIS 5211.00114

15  If you are not root:  Remember: sudo tcpdump  Can filter for specific IP  Try: tcpdump –nn tcp and dst 10.10.10.10  Try: tcpdump –nn udp and src 10.10.10.10  Try: tcpdump –nn tcp and port 443 and host 10.10.10.10  FYI  -n : Don’t resolve hostnames.  -nn : Don’t resolve hostnames or port names.  More detailed How To:  http://danielmiessler.com/study/tcpdump/ http://danielmiessler.com/study/tcpdump/ MIS 5211.00115

16  Hping3  One target at a time  Caution: Windows firewalls may block functionality MIS 5211.00116

17  Can spoof source  --spoof  Example  Hping3 –spoof 10.10.10.10 10.10.10.20  Sets source to 10.10.10.10  Sets destination to 10.10.10.20 MIS 5211.00117

18  Targets ports  -- destport [port]  Example  Hping3 10.10.10.10 –p 53  Targets port 53 on 10.10.10.10  Target multiple port MIS 5211.00118

19  Example targeting port 22 with count “-c” and verbose “-V” MIS 5211.00119

20  Nmap is a network mapper  Very basic example  Just pings a machine and confirms it exists MIS 5211.00120

21  Now we take it up a notch  Lets check an entire class “C” address  Example:  Try: nmap –sP 192.168.1-255 MIS 5211.00121

22  2 nd Assignment will be postponed to allow for more material around Scanning MIS 5211.00122

23 ? MIS 5211.00123

Download ppt "MIS 5211.001 Week 4 Site:"

Similar presentations

Overview The TCP/IP Stack. The Link Layer (L2). The Network Layer (L3). The Transport Layer (L4). Port scanning & OS/App detection techniques. Evasion.

Overview The TCP/IP Stack. The Link Layer (L2). The Network Layer (L3). The Transport Layer (L4). Port scanning & OS/App detection techniques. Evasion.
 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,

 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,
Network Mapping  Identify Live Hosts  Determine running Services TCP Port Scanning UDP Port Scanning Banner Grabbing ARP Discovery  Identify Perimeter.

Network Mapping  Identify Live Hosts  Determine running Services TCP Port Scanning UDP Port Scanning Banner Grabbing ARP Discovery  Identify Perimeter.
Nmap Experiment.

Nmap Experiment.
Network Measurements: Unused IP address space traffic analysis at SSSUP Campus Network Francesco Paolucci, Piero Castoldi Research Unit at Scuola Superiore.

Network Measurements: Unused IP address space traffic analysis at SSSUP Campus Network Francesco Paolucci, Piero Castoldi Research Unit at Scuola Superiore.
CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.

CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.
Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated 9-18-08.

Hands-On Ethical Hacking and Network Defense Chapter 5 Port Scanning Last updated
Hacking Exposed 7 Network Security Secrets & Solutions Chapter 2 Scanning 1.

Hacking Exposed 7 Network Security Secrets & Solutions Chapter 2 Scanning 1.
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.

ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
Intruder Trends Tom Longstaff CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Sponsored by.

Intruder Trends Tom Longstaff CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA Sponsored by.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
Examining IP Header Fields

Examining IP Header Fields
Computer Security and Penetration Testing

Computer Security and Penetration Testing
1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.

1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.
CIS 193A – Lesson12 Monitoring Tools. CIS 193A – Lesson12 Focus Question What are the common ways of specifying network packets used in tcpdump, wireshark,

CIS 193A – Lesson12 Monitoring Tools. CIS 193A – Lesson12 Focus Question What are the common ways of specifying network packets used in tcpdump, wireshark,
Introduction to InfoSec – Recitation 12 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)

Introduction to InfoSec – Recitation 12 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)
Networking in a Linux Environment Pete Eby Dan Thomas Robert Zurawski.

Networking in a Linux Environment Pete Eby Dan Thomas Robert Zurawski.
MIS 5211.001 Week 7 Site:

MIS Week 7 Site:
Port Scanning.

Port Scanning.

Similar presentations

Ads by Google