Presentation is loading. Please wait.

Presentation is loading. Please wait.

Project S.N.U.P.E( ) By Patrick D. Cook. Introduction  Background Why this topic and what is S.N.U.P.E ()  Purpose Look for vulnerabilities within a.

Published byPosy Winifred Knight Modified over 8 years ago

Similar presentations

Presentation on theme: "Project S.N.U.P.E( ) By Patrick D. Cook. Introduction  Background Why this topic and what is S.N.U.P.E ()  Purpose Look for vulnerabilities within a."— Presentation transcript:

1 Project S.N.U.P.E( ) By Patrick D. Cook

2 Introduction  Background Why this topic and what is S.N.U.P.E ()  Purpose Look for vulnerabilities within a networkLook for vulnerabilities within a network Analyze and Mitigate the riskAnalyze and Mitigate the risk  Topic Area Penetration TestingPenetration Testing White hat hackingWhite hat hacking

3 Staging  Purpose  Tools CyberarmyCyberarmy http://www.cyberarmy.com Whois http://www.networksolutions.comWhois http://www.networksolutions.com http://www.networksolutions.com WS_ Ping Pack Pro http://www.ipswitch.comWS_ Ping Pack Pro http://www.ipswitch.com http://www.ipswitch.com  Layers of the OSI model

4 Neutralizing  Purpose  Tools File WranglerFile Wrangler http://www.tucows.com http://www.tucows.comhttp://www.tucows.com PowerDesk's ExplorerPlusPowerDesk's ExplorerPlus http://www.mijenix.com/powerdesk98.asp RevelationRevelation http://www.snadboy.com http://www.snadboy.comhttp://www.snadboy.com  Layers of the OSI model

5 Unarming  Purpose  Tools Cygwin Win32Cygwin Win32 http://www.cygnus.com http://www.cygnus.comhttp://www.cygnus.com WipeWipe ftp://ftp.technotronic.com/unix/log-tools/wipe-1.00.tgz ZapZap ftp://ftp.technotronic.com/unix/log-tools/zap.c  Layers of the OSI model

6 Penetration  Purpose  Tools L0phtcrack's Reads mb http://www.l0pht.com/L0phtcrack's Reads mb http://www.l0pht.com/ http://www.l0pht.com/ LegionLegion http://www.rhino9.com http://www.rhino9.comhttp://www.rhino9.com  Layers of the OSI model

7 Exploiting  Purpose  Tools PortfuckPortfuck http://www.stargazer.net UnhideUnhide http://www.webdon.com  Layers of the OSI model

8 Real World Examples  Microsoft Security Flaw http://money.cnn.com/2003/05/09/tech nology/msft_passport.reut/http://money.cnn.com/2003/05/09/tech nology/msft_passport.reut/http://money.cnn.com/2003/05/09/tech nology/msft_passport.reut/http://money.cnn.com/2003/05/09/tech nology/msft_passport.reut/  High School Student teaches school http://abcnews.go.com/sections/scitech /TechTV/techtv_HS_hacker021225.htmlhttp://abcnews.go.com/sections/scitech /TechTV/techtv_HS_hacker021225.htmlhttp://abcnews.go.com/sections/scitech /TechTV/techtv_HS_hacker021225.htmlhttp://abcnews.go.com/sections/scitech /TechTV/techtv_HS_hacker021225.html

9 Summary  The majority of the tools attack a similar area from the Transport layer to the Application layer (as indicated by the following diagram) is the most vulnerable to attacks.

10 References  Stuart McClure, Joel Scambra, and George Kurtz, Hacking Expose: Network Security Threats and Solutions ( California: Osborne/McGraw-Hill, 2001)  The biggest virus encyclopedia: Virus List.com http://www.viruslist.com/ http://www.viruslist.com/

Download ppt "Project S.N.U.P.E( ) By Patrick D. Cook. Introduction  Background Why this topic and what is S.N.U.P.E ()  Purpose Look for vulnerabilities within a."

Similar presentations

Craig Rimando Luke White. “hacking” - negative connotation Not always that way Originally a compliment Not all hacking necessarily bad “Good” hacking?

Craig Rimando Luke White. “hacking” - negative connotation Not always that way Originally a compliment Not all hacking necessarily bad “Good” hacking?
SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.

SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Network Troubleshooting Accessing the WAN – Chapter 8.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Network Troubleshooting Accessing the WAN – Chapter 8.
Information Networking Security and Assurance Lab National Chung Cheng University Network Security (I) 授課老師 : 鄭伯炤 Office: Dept. of Communication Rm #112.

Information Networking Security and Assurance Lab National Chung Cheng University Network Security (I) 授課老師 : 鄭伯炤 Office: Dept. of Communication Rm #112.
The Uses of White Hat Hacking Tyler Schumacher

The Uses of White Hat Hacking Tyler Schumacher
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Ethical Hacking Introduction.  What is Ethical Hacking?  Types of Ethical Hacking  Responsibilities of a ethical hacker  Customer Expectations  Skills.

Ethical Hacking Introduction.  What is Ethical Hacking?  Types of Ethical Hacking  Responsibilities of a ethical hacker  Customer Expectations  Skills.
Practical Training of Information Security Masahito Gotaishi, R & D Initiative, Chuo Universty.

Practical Training of Information Security Masahito Gotaishi, R & D Initiative, Chuo Universty.
August 1, 2006 Software Security. August 1, 2006 Essential Facts Software Security != Security Features –Cryptography will not make you secure. –Application.

August 1, 2006 Software Security. August 1, 2006 Essential Facts Software Security != Security Features –Cryptography will not make you secure. –Application.
Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.

CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Information Security Risk.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Information Security Risk.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.
“Today over 70% of attacks against a company’s network come at the ‘Application Layer’ not the Network or System layer.” - Gartner Is Your Web Application.

“Today over 70% of attacks against a company’s network come at the ‘Application Layer’ not the Network or System layer.” - Gartner Is Your Web Application.
Software Security Course Course Outline 2-27-09. Course Overview Introduction to Software Security Common Attacks and Vulnerabilities Overview of Security.

Software Security Course Course Outline Course Overview Introduction to Software Security Common Attacks and Vulnerabilities Overview of Security.
Sam Cook April 18, 2013. Overview What is penetration testing? Performing a penetration test Styles of penetration testing Tools of the trade.

Sam Cook April 18, Overview What is penetration testing? Performing a penetration test Styles of penetration testing Tools of the trade.
UC Security with Microsoft Office Communication Server R1/R2 FRHACK Sept 8, 2009 Abhijeet Hatekar Vulnerability Research Engineer.

UC Security with Microsoft Office Communication Server R1/R2 FRHACK Sept 8, 2009 Abhijeet Hatekar Vulnerability Research Engineer.
PREPAREDNESS AND RESPONSE TO CYBER THREATS REQUIRE A CSIRT By Jaco Robertson, Marthie Lessing and Simon Nare*

PREPAREDNESS AND RESPONSE TO CYBER THREATS REQUIRE A CSIRT By Jaco Robertson, Marthie Lessing and Simon Nare*
Can your team outwit, outplay and outlast your opponents to be the ultimate CyberSurvivor?

Can your team outwit, outplay and outlast your opponents to be the ultimate CyberSurvivor?

Similar presentations

Ads by Google