260 likes | 427 Views
Week 5: System Hacking. Administrator Password Guessing. Week 5: System Hacking. Performing Automated Password Guessing Legion NTInfoScan. Week 5: System Hacking. Defending Against Password Guessing Monitoring Event Viewer Logs VisualLast Eavesdropping on Network Password Exchange.
E N D
Week 5: System Hacking • Administrator Password Guessing
Week 5: System Hacking • Performing Automated Password Guessing • Legion • NTInfoScan
Week 5: System Hacking • Defending Against Password Guessing • Monitoring Event Viewer Logs • VisualLast • Eavesdropping on Network Password Exchange
Week 5: System Hacking • Hacking Tool: L0phtCrack • Hacking Tool: KerbCrack http://ntsecurity.nu/toolbox/kerbcrack/
Week 5: System Hacking • Privilege Escalation • Hacking Tool: GetAdmin • Hacking Tool: hk www.nmrc.org
Week 5: System Hacking • Manual Password Cracking Algorithm • Automatic Password Cracking Algorithm • Password Types
Week 5: System Hacking • Types of Password Attacks • Dictionary Attack • Brute Force Attack • Distributed Brute Force Attack
Week 5: System Hacking • Password Change Interval • Hybrid Attack • Cracking Windows 2000 Passwords
Week 5: System Hacking • Retrieving the SAM file • Redirecting SMB Logon to the Attacker • SMB Redirection
Week 5: System Hacking • Hacking Tool: SMBRelay • Hacking Tool: SMBRelay2
Week 5: System Hacking • SMBRelay Man-in-the-Middle (MITM) • SMBRelay MITM Countermeasures
Week 5: System Hacking • Hacking Tool: SMBGrinder • Hacking Tool: SMBDie • Hacking Tool: NBTDeputy
Week 5: System Hacking • NetBIOS DoS Attack • Hacking Tool: nbname • Hacking Tool: John the Ripper
Week 5: System Hacking • LanManager Hash • Password Cracking Countermeasures
Week 5: System Hacking • Keystroke Logger • Hacking Tool: Spector http://www.spectorsoft.com/ • AntiSpector http://www.anti-keyloggers.com/
Week 5: System Hacking • Hacking Tool: eBlaster • Hacking Tool: SpyAnywhere • Hacking Tool: IKS Software Logger
Week 5: System Hacking • Hardware Tool: Hardware Key Logger • Hacking Tool: Rootkit • Planting Rootkit on Windows 2000 Machine
Week 5: System Hacking • _rootkit_ embedded TCP/IP Stack • Rootkit Countermeasures
Week 5: System Hacking • MD5 Checksum utility • Tripwire www.tripwire.comwww.tripwire.org
Week 5: System Hacking • Covering Tracks • Disabling Auditing • Auditpol • Clearing the Event Log
Week 5: System Hacking • Hacking Tool: Elsave • Hacking Tool: Winzapper • Hacking Tool: Evidence Eliminator
Week 5: System Hacking • Hiding Files • NTFS File Streaming • Hacking Tool: makestrm • NTFS Streams Countermeasures: LADS, sfind can detect ADS (alternative data streams) • LNS
Week 5: System Hacking • Steganography (covered writing) • Hacking Tool: ImageHide • Hacking Tool: MP3Stego • Hacking Tool: Snow • Hacking Tool: Camera/Shy
Week 5: System Hacking • Steganography Detection • StegDetect • Encrypted File System • Hacking Tool: dskprobe • Hacking Tool: EFSView
Week 5: System Hacking • Buffer Overflows • Creating Buffer Overflow Exploit • Outlook Buffer Overflow • Hacking Tool: Outoutlook
Week 5: System Hacking • Summary