Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identify Your System The best way to protect you against computer attack Irvan

Published byBerniece Richardson Modified over 9 years ago

Similar presentations

Presentation on theme: "Identify Your System The best way to protect you against computer attack Irvan"— Presentation transcript:

1 Identify Your System The best way to protect you against computer attack Irvan http://irvan.or.id

2 Agenda Introduction Identifying anomalies on Linux Based System Identifying anomalies on Windows Based System Discuss?

3 Introduction Sometimes we don’t know whether our computer is being attacked or not. Most people doesn’t know how to recognize anomalies on their system, even though they are so familiar with their own system. Users often underestimate about security audit things. But for common they are really don’t know how to recognize it. I am a Linux user, what should I do? I am a Windows user, what should I do?

4 Identifying anomalies on Linux Based System

5 The “/var/log/messages”

6 Seeing process through “ps”

7 Watching your “httpd log”

8 Knowing error message from “httpd” activities

9 Watching out your “door” trought “netstat” command

10 Take time to see “lastlogin”

11 More detail with “lsof –i”

12 Sniff your network with “tcpdump”

13 Get process detail with “top”

14 Who is online, and what they do?

15 Is there any “uninvited” guest?

16 Identifying anomalies on Windows Based System

17 Check your connection with “netstat”

18 The “Task Manager” things

19

20

21

22 Who is online?

23 What is running on your system?

24 Find the “unusual” key on your registry

25 Find the unusual things on your “c:\windows”

26 Find the unusual things on your “c:\windows\system32”

27 Is there any “uninvited” groups?

28 Is there any “uninvited” users?

29 Discuss?

30 Thank You Happy Hacking..!!

Download ppt "Identify Your System The best way to protect you against computer attack Irvan"

Similar presentations

Module X Session Hijacking

Module X Session Hijacking
WARNING ! The system is either busy or has been unstable. You can wait and See if it becomes available again, or you can restart your computer. *

WARNING ! The system is either busy or has been unstable. You can wait and See if it becomes available again, or you can restart your computer. *
Token Kidnapping's Revenge Cesar Cerrudo Argeniss.

Token Kidnapping's Revenge Cesar Cerrudo Argeniss.
Information Networking Security and Assurance Lab National Chung Cheng University Investigating Hacker Tools.

Information Networking Security and Assurance Lab National Chung Cheng University Investigating Hacker Tools.
Introducing the Command Line CMSC 121 Introduction to UNIX Much of the material in these slides was taken from Dan Hood’s CMSC 121 Lecture Notes.

Introducing the Command Line CMSC 121 Introduction to UNIX Much of the material in these slides was taken from Dan Hood’s CMSC 121 Lecture Notes.
SOA Security Chapter 12 SOA for Dummies. Outline User Authentication/ authorization Authenticating Software and Data Auditing and the Enterprise Service.

SOA Security Chapter 12 SOA for Dummies. Outline User Authentication/ authorization Authenticating Software and Data Auditing and the Enterprise Service.
Network Shares and Accounts Sharing Printers, Drives, Folders – Setup Windows 95/98 Windows NT (2000, XP) Linux – Users – Groups.

Network Shares and Accounts Sharing Printers, Drives, Folders – Setup Windows 95/98 Windows NT (2000, XP) Linux – Users – Groups.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Department Of Computer Engineering

Department Of Computer Engineering
An Introduction to Operating Systems. Definition  An Operating System, or OS, is low-level software that enables a user and higher-level application.

An Introduction to Operating Systems. Definition  An Operating System, or OS, is low-level software that enables a user and higher-level application.
Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.
Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.

Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.
Computer Account Hijacking Detection Using a Neural Network Nick Pongratz Math 340.

Computer Account Hijacking Detection Using a Neural Network Nick Pongratz Math 340.
Internet safety Viruses A computer virus is a program or piece of code that is loaded onto your computer without your knowledge and runs against your.

Internet safety Viruses A computer virus is a program or piece of code that is loaded onto your computer without your knowledge and runs against your.
Monitoring and Troubleshooting Chapter 17. Review What role is required to share folders on Windows Server 2008 R2? What is the default permission listed.

Monitoring and Troubleshooting Chapter 17. Review What role is required to share folders on Windows Server 2008 R2? What is the default permission listed.
Air Force Association (AFA) 1. 1.Access Control 2.Four Steps to Access 3.How Does it Work? 4.User and Guest Accounts 5.Administrator Accounts 6.Threat.

Air Force Association (AFA) 1. 1.Access Control 2.Four Steps to Access 3.How Does it Work? 4.User and Guest Accounts 5.Administrator Accounts 6.Threat.
Introducing Enterprise Technologies David Dischiave Syracuse University School of Information Studies “The original iSchool” June 3, 2013 Information School,

Introducing Enterprise Technologies David Dischiave Syracuse University School of Information Studies “The original iSchool” June 3, 2013 Information School,
Cyber Patriot Training

Cyber Patriot Training
Outline  Infections  1) r57 shell  2) rogue software  What Can We Do?  1) Seccheck  2) Virus total  3) Sandbox  Prevention  1) Personal Software.

Outline  Infections  1) r57 shell  2) rogue software  What Can We Do?  1) Seccheck  2) Virus total  3) Sandbox  Prevention  1) Personal Software.
Intrusion Detection Presentation : 1 OF n by Manish Mehta 01/24/03.

Intrusion Detection Presentation : 1 OF n by Manish Mehta 01/24/03.

Similar presentations

Ads by Google