100 likes | 241 Views
AntiHack : an Automated System against Hacking. Advisor:- Prof. Dr. Wang Presented By:- Samip Banker. History and Current Team. The AntiHAC project was initiated by Dr. Wang and his master's student Mark Li in 2000. The current project leader Fiana Li (PhD student).
E N D
AntiHack : an Automated System against Hacking Advisor:- Prof. Dr. Wang Presented By:- Samip Banker
History and Current Team • The AntiHAC project was initiated by Dr. Wang and his master's student Mark Li in 2000. • The current project leader • Fiana Li (PhD student) • Development team members • Samip Banker (MS student) • Swati Gupta (BS/MS student) • Yan Liu (MS student) • Tao Wang (PhD student)
Objective • System configurations. • System loopholes. • Software bugs. • The above mentioned are the major known vulnerabilities to hacking. • AntiHack is an automated tool to checks whether the system is properly configured, finds well-known loopholes, and updates the system software if fixes or patches are available.
Big picture • AntiHack is a network-based, client-server program, which consists of :- • Anti-Hacking Center (AHC) (Server Side) • Anti-Hacking Management Tool (AHMT) (Client Side) • Anti-Hacking Client Tool (AHCT) (Client Side) • Anti-Hacking Center will maintain a database of an up-to-date list of every system and network security holes that has been discovered.
Big Picture… • Anti-Hacking Management Tool will consists of 5 components • System update Manager (UM) • System patch checker (PAC) • System Configuration Checker (COC) • Intrusion detection analyzer and manager (IDAM) • Client Tool Manager (CTM)
Ongoing work by the Team • Explore how we can access and change system registry from C++. • Explore different type of loopholes. • How we can import code on different platform. • Many more….
Technical Details • Prototype works on Windows 2000 • Will be imported to win 98, NT, XP shortly. • Developed using Visual C++ • Exploring Microsoft foundation classes (MFC) • Checking Windows Register tables • Using command line commands like finger, ping, net, traceroute, etc.