Presentation is loading. Please wait.

Presentation is loading. Please wait.

Ethical Hacking: Defeating Logon Passwords. 2 Contact Sam Bowne Sam Bowne Computer Networking and Information Technology Computer Networking and Information.

Published byBrian Ellis Modified over 9 years ago

Similar presentations

Presentation on theme: "Ethical Hacking: Defeating Logon Passwords. 2 Contact Sam Bowne Sam Bowne Computer Networking and Information Technology Computer Networking and Information."— Presentation transcript:

1 Ethical Hacking: Defeating Logon Passwords

2 2 Contact Sam Bowne Sam Bowne Computer Networking and Information Technology Computer Networking and Information Technology City College San Francisco City College San Francisco Email: sbowne@ccsf.edu Email: sbowne@ccsf.edu Web: samsclass.info Web: samsclass.info

3 Teaching Hacking

4 4 What do Hackers Do? Get into computer systems without valid accounts and passwords Get into computer systems without valid accounts and passwords Open encrypted files without the key Open encrypted files without the key Take over Web servers Take over Web servers Collect passwords from Internet traffic Collect passwords from Internet traffic Take over computers with remote access trojans Take over computers with remote access trojans And much, much more And much, much more

5 5 Ethical Hackers Ethical Hackers do the same thing criminal hackers do, with one difference Ethical Hackers do the same thing criminal hackers do, with one difference Ethical Hackers have permission from the owner of the machines to hack in Ethical Hackers have permission from the owner of the machines to hack in These "Penetration Tests" reveal security problems so they can be fixed These "Penetration Tests" reveal security problems so they can be fixed

6 6 Two Hacking Classes CNIT 123: Ethical Hacking and Network Defense Has been taught since Spring 2007 (four times) Face-to-face and Online sections available Fall 2008 CNIT 124: Advanced Ethical Hacking Taught for the first time in Spring 2008

7 7 Supplemental Materials Projects from recent research Projects from recent research Students get extra credit by attending conferences Students get extra credit by attending conferences

8 8 Certified Ethical Hacker Those two classes prepare students for CEH Certification Those two classes prepare students for CEH Certification

9 9 Certificate in Network Security

10 10 Associate of Science Degree

11 Windows Passwords

12 12 Password Hashes Passwords are not stored on Windows computers in plaintext Passwords are not stored on Windows computers in plaintext They are run through one-way mathematical Hash Functions They are run through one-way mathematical Hash Functions

13 13 Logging On User types in password User types in password Example: fish45 Example: fish45 Windows calculates the hash Windows calculates the hash Example: 0Aa@!d88f8&7uO.? Example: 0Aa@!d88f8&7uO.? The hash is compared to the stored password hash The hash is compared to the stored password hash If they match, the user is permitted to log on If they match, the user is permitted to log on

14 14 LM Hashes Windows breaks the password into two 7-character pieces Windows breaks the password into two 7-character pieces Each section is hashed separately Each section is hashed separately So a long, strong password like So a long, strong password like Alligator1978 Alligator1978 Becomes two short passwords Becomes two short passwords ALLIGAT OR1978 ALLIGAT OR1978

15 15 Weakness of LM Hashes Each section has only 2 43 possible values Each section has only 2 43 possible values Modern computers can try all those values in just a few minutes Modern computers can try all those values in just a few minutes

16 16 Ophcrack Live CD – boot from it Live CD – boot from it Completely automatic LM Hash Cracker Completely automatic LM Hash Cracker

17 Countermeasures

18 18 Hardening Windows Microsoft has a stronger hashing technique called NTLM Hashes Microsoft has a stronger hashing technique called NTLM Hashes But all versions of Windows before Vista use LM Hashes by default But all versions of Windows before Vista use LM Hashes by default A change in Local Security Policy can eliminate the LM Hashes (see references) A change in Local Security Policy can eliminate the LM Hashes (see references)

19 Cracking Vista

20 20 Ultimate Boot CD With this CD, you can create new Administrator accounts on Windows XP, Vista, and Server 2008 With this CD, you can create new Administrator accounts on Windows XP, Vista, and Server 2008 It does not reveal existing passwords It does not reveal existing passwords

21 21 References Wikipedia: LM Hashes Wikipedia: LM Hashes http://en.wikipedia.org/wiki/LM_hash http://en.wikipedia.org/wiki/LM_hash Ophcrack LiveCD Ophcrack LiveCD http://ophcrack.sourceforge.net/ http://ophcrack.sourceforge.net/ Ultimate Boot CD Ultimate Boot CD http://www.ubcd4win.com/howto.htm http://www.ubcd4win.com/howto.htm Turning off LM Hashes Turning off LM Hashes http://support.microsoft.com/kb/299656 http://support.microsoft.com/kb/299656 Last modified 6-26-08 Last modified 6-26-08

Download ppt "Ethical Hacking: Defeating Logon Passwords. 2 Contact Sam Bowne Sam Bowne Computer Networking and Information Technology Computer Networking and Information."

Similar presentations

10 Things You Can do to Secure Your PC Presented by Peter Nowak OIS Client Services Manager.

10 Things You Can do to Secure Your PC Presented by Peter Nowak OIS Client Services Manager.
Password Cracking Lesson 10. Why crack passwords?

Password Cracking Lesson 10. Why crack passwords?
Configuring Windows to run Dr.Web scanner remotely.

Configuring Windows to run Dr.Web scanner remotely.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.

Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
15.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.

15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
Host Hardening (March 21, 2011) © Abdou Illia – Spring 2011.

Host Hardening (March 21, 2011) © Abdou Illia – Spring 2011.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University

Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University
Lesson 19: Configuring Windows Firewall

Lesson 19: Configuring Windows Firewall
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
7-Access Control Fundamentals Dr. John P. Abraham Professor UTPA.

7-Access Control Fundamentals Dr. John P. Abraham Professor UTPA.
STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES Windows Encryption File System (EFS) Tech Briefing July 18 th 2008

STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES Windows Encryption File System (EFS) Tech Briefing July 18 th 2008
Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.
Windows Security Mechanisms Al Bento - University of Baltimore.

Windows Security Mechanisms Al Bento - University of Baltimore.
MS systems use one of the following: LanManager Hash (LM) LanManager Hash (LM) NT LanManager (NTLM) NT LanManager (NTLM) Cached passwords Cached passwords.

MS systems use one of the following: LanManager Hash (LM) LanManager Hash (LM) NT LanManager (NTLM) NT LanManager (NTLM) Cached passwords Cached passwords.
Users and Groups Security Architecture Editing Security Policies The Registry File Security Auditing/Logging Network Issues (client firewall, IPSec, Active.

Users and Groups Security Architecture Editing Security Policies The Registry File Security Auditing/Logging Network Issues (client firewall, IPSec, Active.
NTFS. Authentication Is the person who she says she is? If so, access is allowed In Windows, authentication is handled by a password-protected user account.

NTFS. Authentication Is the person who she says she is? If so, access is allowed In Windows, authentication is handled by a password-protected user account.
 Computer Hacking is the practice of modifying computer hardware and software to accomplish a goal outside of the creator’s original purpose.  the act.

 Computer Hacking is the practice of modifying computer hardware and software to accomplish a goal outside of the creator’s original purpose.  the act.

Similar presentations

Ads by Google