Presentation is loading. Please wait.

Presentation is loading. Please wait.

MIS 5211.001 Week 7 Site:

Published byFelicia Mathews Modified over 9 years ago

Similar presentations

Presentation on theme: "MIS 5211.001 Week 7 Site:"— Presentation transcript:

1 MIS 5211.001 Week 7 Site: http://community.mis.temple.edu/mis5211sec001f15/ http://community.mis.temple.edu/mis5211sec001f15/

2  Test 1  In the news  NetCat  DOS Batch Files 2MIS 5211.001

3  Submitted  http://www.darkreading.com/attacks-breaches/state- trooper-vehicles-hacked-/d/d-id/1322415 http://www.darkreading.com/attacks-breaches/state- trooper-vehicles-hacked-/d/d-id/1322415  http://arstechnica.com/tech-policy/2014/05/fbi-chief- says-anti-marijuana-policy-hinders-the-hiring-of-cyber- experts/ http://arstechnica.com/tech-policy/2014/05/fbi-chief- says-anti-marijuana-policy-hinders-the-hiring-of-cyber- experts/  http://www.securityweek.com/north-korea-suspected- hacking-seoul-subway-operator-mp http://www.securityweek.com/north-korea-suspected- hacking-seoul-subway-operator-mp  http://www.ehackingnews.com/2012/03/hacker- th3j35t3r-threatens-to-expose.html http://www.ehackingnews.com/2012/03/hacker- th3j35t3r-threatens-to-expose.html  http://thehackernews.com/2015/10/hack-microsoft- outlook-email.html http://thehackernews.com/2015/10/hack-microsoft- outlook-email.html  http://www.bbc.com/news/technology-34466287 ISIS using telegram App http://www.bbc.com/news/technology-34466287 3MIS 5211.001

4  Submitted  http://money.cnn.com/2015/09/30/technology/trump-hotels- hack/index.html http://money.cnn.com/2015/09/30/technology/trump-hotels- hack/index.html  http://thehackernews.com/2015/10/android-stagefright- vulnerability.html http://thehackernews.com/2015/10/android-stagefright- vulnerability.html  http://thehackernews.com/2015/10/drone-hacking.html http://thehackernews.com/2015/10/drone-hacking.html  https://software.dell.com/docs/2015-dell-security-annual-threat- report-white-paper-15657.pdf https://software.dell.com/docs/2015-dell-security-annual-threat- report-white-paper-15657.pdf  http://www.networkworld.com/article/2988643/security/device -loss-data-breach-malware-hacking-trend-micro-report.html http://www.networkworld.com/article/2988643/security/device -loss-data-breach-malware-hacking-trend-micro-report.html  http://www.bbc.com/news/technology-34464447 Cisco - Angler http://www.bbc.com/news/technology-34464447  http://spectrum.ieee.org/energywise/telecom/security/nuclear- cybersecurity-woefully-inadequate http://spectrum.ieee.org/energywise/telecom/security/nuclear- cybersecurity-woefully-inadequate  http://www.technewsworld.com/story/82547.html iOS Bounty http://www.technewsworld.com/story/82547.html 4MIS 5211.001

5  What I noted  http://www.washingtonpost.com/politics/fbi- probe-of-clinton-e-mail-expands-to-second-data- company/2015/10/06/3d94ba46-6c48-11e5-b31c- d80d62b53e28_story.html http://www.washingtonpost.com/politics/fbi- probe-of-clinton-e-mail-expands-to-second-data- company/2015/10/06/3d94ba46-6c48-11e5-b31c- d80d62b53e28_story.html  https://www.propublica.org/article/verizons- zombie-cookie-gets-new-life https://www.propublica.org/article/verizons- zombie-cookie-gets-new-life  https://thestack.com/security/2015/10/06/internat ional-exploit-kit-angler-thwarted-by-cisco-talos/ https://thestack.com/security/2015/10/06/internat ional-exploit-kit-angler-thwarted-by-cisco-talos/ MIS 5211.0015

6  Netcat is a utility used by Penetration Tester and Hackers to establish network connections over UDP or TCP.  Takes “Standard In”, and sends it across the network as data  Receives network data and puts it on “Standard Out”  Messages from netcat itself go on “Standard Error” MIS 5211.0016

7  These are terms from programming that refer to expected streams in software  As an example  stdin would be the keyboard  Stdout would be the screen  Stderror may be dropped or sent to logging MIS 5211.0017 From: http://en.wikipedia.org/wiki/Standard_str eams#Standard_error_.28stderr.29 http://en.wikipedia.org/wiki/Standard_str eams#Standard_error_.28stderr.29

8  In Linux netcat is typically installed and can be activate simply by typing “nc” at the command line  In Windows, the file is not installed  A version can be downloaded from:  http://nmap.org/ncat/ http://nmap.org/ncat/  Once downloaded and extracted type “ncat” at the command line to get started  Note – AV will likely automatically remove it MIS 5211.0018

9 9

10  Basic format is  Send  $nc [Target IP] [Remote Port]  Receive  $nc [flag(s)] [Local Port]  Assumes TCP unless –u flag is set forcing to UDP  Link to SANS Cheat Sheet  URL: http://www.sans.org/security- resources/sec560/netcat_cheat_sheet_v1.pdfhttp://www.sans.org/security- resources/sec560/netcat_cheat_sheet_v1.pdf MIS 5211.00110

11  So, netcat can send what I type to another machine. So what!  The pipe commands “|”, “>”, and “<“ let you do more interesting things  For example, transfer a file between systems  $nc –l –p [Local Port] > [Out File]  Listen on local port and store result in file  $nc –w3 [TargetIP] [Port] < [In File]  Push file to target IP on port  See SANS Cheat Sheet on previous page for more examples MIS 5211.00111

12  You can even use netcat as a simple port scanner  Example  $nc –v –n –z –w1 [Target IP] [Starting Port] – [Ending Port]  Systematically attempts to connect on each port within the defined range  Note:  -v – Verbose  -n – Do not resolve names  -z – Do not send data  -w1 – Wait no more then one second to connect MIS 5211.00112

13  First off, almost everything I present here started at:  http://blog.commandlinekungfu.com/ http://blog.commandlinekungfu.com/ MIS 5211.00113

14  Similar to Linux, try these:  “type test.txt”  Or “type *.txt” MIS 5211.00114

15  Try: “ipconfig /displaydns  I added “| more” to avoid overflow MIS 5211.00115

16  Try “arp –a” MIS 5211.00116

17  Try “sc query” MIS 5211.00117

18  Try “sc query state=all” MIS 5211.00118

19  Try “sc qc [service_name] MIS 5211.00119

20  Try “sc start [service_name]” or “sc stop [service_name]  Remember, you can use “sc query state= all” to find the service names  If you have access to a similar machine, you could also look at the GUI MIS 5211.00120

21  For Loops  FOR /L -> Counter  FOR /F - > Iterates through a file MIS 5211.00121

22  Example  FOR /L %i in ([Start],[Step],[Stop]) do [command]  Translates to  FOR /L %i in (1,1,5) do echo %i MIS 5211.00122

23  FOR /F (“options”) %i in ([text_file]) do [command]  Translates to:  FOR /F %i in count.txt do echo %i MIS 5211.00123

24  Can add “ >> output.txt” to redirect to an output file  Try “FOR /F %i in (count.txt) do echo %i >> output.txt” MIS 5211.00124

25  Lots more at:  http://blog.commandlinekungfu.com/ http://blog.commandlinekungfu.com/ MIS 5211.00125

26  2 nd formal assignment  From Syllabus  (student presentations) (student presentations) Scanning exercise targeted against only systems you personally own, develop a profile of the targeted machine or machines. You may work in teams, or separately  One to two page Executive Summary  Short (no more then three slides, no welcome slide) presentation  See “Exercise Analysis” tab for more details MIS 5211.00126

27  Readings and Articles as usual  Time permitting, we will be covering  Social Engineering  Encoding  Encryption MIS 5211.00127

28 ? MIS 5211.00128

Download ppt "MIS 5211.001 Week 7 Site:"

Similar presentations

1 NatQuery 3/05 An End-User Perspective On Using NatQuery To Extract Data From ADABAS Presented by Treehouse Software, Inc.

1 NatQuery 3/05 An End-User Perspective On Using NatQuery To Extract Data From ADABAS Presented by Treehouse Software, Inc.
Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions April 14, 2015 DRAFT1.

Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions April 14, 2015 DRAFT1.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.

ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
A common error that appears on the copier’s screen is seen here when a scan to Sharpdesk is not sent to the computer successfully. This guide intends to.

A common error that appears on the copier’s screen is seen here when a scan to Sharpdesk is not sent to the computer successfully. This guide intends to.
Introduction to Unix – CS 21 Lecture 5. Lecture Overview Lab Review Useful commands that will illustrate today’s lecture Streams of input and output File.

Introduction to Unix – CS 21 Lecture 5. Lecture Overview Lab Review Useful commands that will illustrate today’s lecture Streams of input and output File.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.
MIS 5211.001 Week 7 Site:

MIS Week 7 Site:
1 Lab 3 Transport Layer T.A. Youngjoo Han. 2 Transport Layer  Providing logical communication b/w application processes running on different hosts 

1 Lab 3 Transport Layer T.A. Youngjoo Han. 2 Transport Layer  Providing logical communication b/w application processes running on different hosts 
INTRODUCTION TO WEB DATABASE PROGRAMMING

INTRODUCTION TO WEB DATABASE PROGRAMMING
Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.
Penetration Testing Training Day Capture the Flag Training.

Penetration Testing Training Day Capture the Flag Training.
Agenda  Terminal Handling in Unix File Descriptors Opening/Assigning & Closing Sockets Types of Sockets – Internal(Local) vs. Network(Internet) Programming.

Agenda  Terminal Handling in Unix File Descriptors Opening/Assigning & Closing Sockets Types of Sockets – Internal(Local) vs. Network(Internet) Programming.
1 Web Server Administration Chapter 9 Extending the Web Environment.

1 Web Server Administration Chapter 9 Extending the Web Environment.
MIS 5211.001 Week 13 Site:

MIS Week 13 Site:
1 Guide to Novell NetWare 6.0 Network Administration Chapter 11.

1 Guide to Novell NetWare 6.0 Network Administration Chapter 11.

Similar presentations

Ads by Google