Presentation is loading. Please wait.

Presentation is loading. Please wait.

KaaShiv InfoTech Ethical Hacking For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com.

Published byLesley Claud Moore Modified over 9 years ago

Similar presentations

Presentation on theme: "KaaShiv InfoTech Ethical Hacking For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com."— Presentation transcript:

1 KaaShiv InfoTech Ethical Hacking For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

2 INTRODUCTION Ethical Hacking Knowledge is Power To Teach is to Defend Hacking is frowned upon For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

3 Presentation Overview Presentation #1 will be an introduction to tools and tricks used by “script-kiddies”, or those new to the hacker community. Presentation #1 will be an introduction to tools and tricks used by “script-kiddies”, or those new to the hacker community. Many people may have seen or used the following tools and tricks, but most moderate to advanced users frown upon them. Many people may have seen or used the following tools and tricks, but most moderate to advanced users frown upon them. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

4 Presentation Overview NetBios Hacking – Connect, view, share IP Scanning – Angry IP Scanner Cain – Excellent script-kiddie tool Sub7/Netbus – Remote Admin Tools PuTTy/Token2 – Tools of the trade For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

5 Windows NetBios Hacking This is one of the most basic file access tricks known to Windows. This is one of the most basic file access tricks known to Windows. Not necessarily hacking, but beginners call it such. Not necessarily hacking, but beginners call it such. Can be used with a samba brute-force password guesser. Can be used with a samba brute-force password guesser. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

6 NetBios Hacking Protection Disable file sharing! Use a firewall such as ZoneAlarm when you are not sharing files. Password protect your shares. Use a hardware firewall such as a router with built-in firewall. This is an old hack, but it still can compromise an entire system. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

7 IP Scanning Finding vulnerable targets in the wild. Finding vulnerable targets in the wild. Viruses and bots use IP sweepers, so ISPs will flag this activity. Viruses and bots use IP sweepers, so ISPs will flag this activity. IP Scanning is very common among exploit seeking viruses. IP Scanning is very common among exploit seeking viruses. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

8 Finding Appropriate IP Range First we must find a range to search. This could be any combination of IP ranges such as 192.168.*.* Next we must determine what we are searching for. Finally, we decide what tools to use. For now, we will stick to Angry IP Scanner. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

9 Searching for HTTP Lets find some HTTP servers! In Angry IP Scanner, set IP range and change Ports to [x] Scan Port: port 80 Begin scan…. After scan has completed, to only sort out which IPs have port 80 open, go to Utils>Delete From List>Closed Ports Our list is complete. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

10 What We Often Find Generally we will find routers and modems. Often if they are default, they also have default passwords (for another day) Sometimes we stumble upon websites, personal projects, etc. This is VERY dangerous as you could be scanning a computer which is illegal to access… For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

11 Prevention from IP scans? If you’re on the internet, you have an IP. IP scanners will give an ALIVE message. Firewalls are VITAL if you are directly connected to the internet (ZoneAlarm, etc.) HTTP access to routers should be turned off unless absolutely necessary. If enabled, ensure passwords are hard to guess/break. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

12 Cain & Abel :-D Cain is a very, very evil script-kiddie tool. We can spoof, crack, trace, inject, sniff, poison, and a few other things. This program is dangerous in the wrong hands because it works verywell. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

13 ARP Poisoning Cain currently only arp poisons through ethernet cards. Broad overview of how to get it to run. First, enable the sniffer and retrieve list of potential victim IPs. Next, click the IP you want to add and press the + sign. Watch the packets come in, and capture EVERYTHING the IP is sending and receiving via ARP poisoning. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

14 Creative & Powerful Tool Cain is creative, powerful, and has a huge damage potential in the wrong hands. Keep those firewalls up! ARP Poisoning can be prevented by firewalling your connection. Be aware of malicious users on your network, watching for that little Cain program to pop up on their screen. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

15 Sub7/NetBus Remote Admin Tools, or RAT for short are essentially total control over a computer. RAT tools are servers designed to take complete control without the user’s notice. Sub7 is a well known black-hat RAT used to take over computers without the need for a “server” broadcast. NetBus is also well known, but is a bit noisier and often leaves more traces. Many other RATs out there. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

16 SUB 7 CONFIGURE First, the hacker configures Sub7 with a configuration exe. This produces a new server with the desired options. Options can include IRC control, broadcast of infection, methods of install, ways to stick server, etc. Sub7 can also be password protected to prevent other hackers access to the victim. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

17 OUR Sub7 SERVER For now we know the victim will be able to broadcast via port 4000 (radmin port) We want to ensure server sticks. We want a password to prevent other uninvited guests. Only install the minimum, IRC, ICQ, AIM is extra so disable it. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

18 SEND OUR VICTIM THE EXE This part is difficult to pull off, hackers have many ways to social engineer victims to do this part. This part is difficult to pull off, hackers have many ways to social engineer victims to do this part. User must execute server.exe User must execute server.exe Once executed, server is automatically launched and we are ready to take control. Once executed, server is automatically launched and we are ready to take control. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

19 Client Side RAT Control We now have total control of our victim machine, so lets view their hard drive. Eject their cd-rom. Ok, enough of this, lets let them know we have taken over with a friendly error. Finally, using Sub7’s fun little Matrix mode, let us remind them that reality is a mere fictional state of mind. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

20 Prevention of RATs Do not execute anything you do not trust! Do not execute anything you do not trust! Always enable show file extensions to be turned on (Windows defaults them off?!?) Always enable show file extensions to be turned on (Windows defaults them off?!?) Be aware of strange activity. RATs do not need to broadcast to take over, they can use other methods such as AIM messages, IRC bot commands, and other various client messages. Be aware of strange activity. RATs do not need to broadcast to take over, they can use other methods such as AIM messages, IRC bot commands, and other various client messages. Advanced RATs will be covered in a later presentation. Advanced RATs will be covered in a later presentation. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

21 PUTTY/TOKEN Excellent text based ssh/telnet/ftp/raw TTY clients. Learn how to use these as they become vital later in a hackers life. Token 2 has excellent proxy abilities, so read up on how to use Socks-5 and SSH. Begin learning about potential tunneling via SSH and PuTTy. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

22 CONCLUSION Keep safe! Just because I teach this does not mean it is legit stuff. Play around on test boxes, use VMWare, give your roomie a scare but not your college professor! I would like to continue this as long as I have an audience. I learn as everyone else learns. Ideas include advanced scanning and penetration, wireless hacking, root kit exploration, shell/exploit writing, web defacing/hacking, virus exploration/writing, maybe some old school hardware hacks (red/blue/beige boxes, credit card readers), and whatever else people want to hear about. For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com www.kaashivinfotech.com

23

24 Thank you For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com. Fill the form and send it to kaashiv.info@gmail.com

Download ppt "KaaShiv InfoTech Ethical Hacking For Inplant Training / Internship, please download the "Inplant training registration form" from our website www.kaashivinfotech.com."

Similar presentations

Overview How to crack WEP and WPA

Overview How to crack WEP and WPA
Lecture 10 Sharing Resources. Basics of File Sharing The core component of any server is its ability to share files. In fact, the Server service in all.

Lecture 10 Sharing Resources. Basics of File Sharing The core component of any server is its ability to share files. In fact, the Server service in all.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
WARNING ! The system is either busy or has been unstable. You can wait and See if it becomes available again, or you can restart your computer. *

WARNING ! The system is either busy or has been unstable. You can wait and See if it becomes available again, or you can restart your computer. *
1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.

1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.
For Removal Info: visit

For Removal Info: visit
Packet Analyzers, a Threat to Network Security. Agenda Introduction The background of packet analyzers LAN technologies & network protocols Communication.

Packet Analyzers, a Threat to Network Security. Agenda Introduction The background of packet analyzers LAN technologies & network protocols Communication.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.

ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
Security & Ethical Hacking Luke Arntson Central Washington University Winter 2007 Presentation #1 – “Script-Kiddie” Tools & Tricks.

Security & Ethical Hacking Luke Arntson Central Washington University Winter 2007 Presentation #1 – “Script-Kiddie” Tools & Tricks.
Trojan Horse Program Presented by : Lori Agrawal.

Trojan Horse Program Presented by : Lori Agrawal.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS 4600 - © Abdou Illia.

January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS © Abdou Illia.
What is spyware? Supervisor dr. lo’ay tawalbeh Search By Mahmoud al-ashram Soufyan al-qblawe.

What is spyware? Supervisor dr. lo’ay tawalbeh Search By Mahmoud al-ashram Soufyan al-qblawe.
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.
1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.

1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.
1. ---------------------- Integrity Check ---------------------- As You Well Know, It Is A Violation Of Academic Integrity To Fake The Results On Any.

Integrity Check As You Well Know, It Is A Violation Of Academic Integrity To Fake The Results On Any.
1 Computer Security: Protect your PC and Protect Yourself.

1 Computer Security: Protect your PC and Protect Yourself.
Instant Messaging Security Flaws By: Shadow404 Southern Poly University.

Instant Messaging Security Flaws By: Shadow404 Southern Poly University.
Internet safety By Lydia Snowden.

Internet safety By Lydia Snowden.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Similar presentations

Ads by Google