If you can see this check that

next section prev section up prev page next page

Hacking

Hacking Techniques

Security Concerns

Big Danger

Hacking

Cost

The approach

Social Engineering

Hacking BLOB University

As strong as the weakest link

Brute Force

DoS

Example: SMURF

Distributed DoS

Technical Exploits

Security Defects

Misusing Tools

showmount

> showmount -a orion.napier.ac.uk | grep gor
artemis:/export/home/o2/staff/gor
pc236nt:/export/home/o2/staff/gor
> mount -t nfs orion.napier.ac.uk:/export/home/o2/staff/gor /mnt/a

Improper Maintenance

Ineffective Security

Detection

The Process

Casing:

Scanning

Example: nmap

> nmap linuxzoo.net
PORT		STATE	SERVICE
22/tcp		open		ssh
23/tcp		open		telnet
53/tcp		open		domain
80/tcp		open		http
81/tcp		open		host2-ns
123/tcp		closed		ntp
5900/tcp	closed		vnc
5901/tcp	closed		vnc-1
5902/tcp	closed		vnc-2
5903/tcp	closed		vnc-3

Enumeration

Failed SSH logins

A little perl

#!/usr/bin/perl

open(my $file,"</var/log/secure.1");
my %ip;
foreach my $line (<$file>) {
  if ($line =~ m/Failed/) {
    if ($line =~ m/(\d+\.\d+\.\d+\.\d+)/) {
      $ip{$1}++;
    }
  }
}

foreach my $k (keys %ip) {
  my $what = `dig -x $k | grep PTR`;
  my $dig = "?";
  $dig = $1 if ($what =~ m/PTR\s+([^\s]+)$/);
  print "$k \t: $ip{$k} fails : $dig\n";
}

The data

202.118.?.?  	: 73 fails : ?
140.125.?.? 	: 1 fails : ?.?.edu.tw.
61.129.?.?  	: 23 fails : ?
78.110.?.?  	: 239 fails : ?
152.104.?.?  	: 24 fails : static-ip-?.rev.dyxnet.com.
219.232.?.?	: 1 fails : ?

Next Step

Any successful login is the end...

DNS Cache Poisoning

DNS Cache Poisoning

Messing up the cache

Transaction ID

Faking the ID

Guessing the ID

The twist

The Fix

Discussion

Discussion

Discussion

Question 1

You have detected 15 failed ssh logins from 10.0.0.1. What should you do next and why?

Question 2

A firewall audit using nmap was performed, and produced the following results:
PORT		STATE	SERVICE
22/tcp		open		ssh
23/tcp		open		telnet
53/tcp		open		domain
80/tcp		open		http
123/tcp	        closed		ntp
Comment on the quality of your server security.
Linux tutorials: intro1 intro2 wildcard permission pipe vi essential admin net fwall DNS diag Apache1 Apache2
Caine 6.0: Essentials | Basic | Search | SysIntro | 5a | 5b | 5c | 6 | 7a | 7b | 8a | 8b | WebBrowserA | WebBrowserB | Registry | Browser
Digital Investigation: Editing | Email | Logs | Strength
Kali: 1a | 1b | 1c | 2 | 3 | 4a | 4b | 5 | 6 | 7a | 8a | 8b | 9 | 10 |
Useful: Quiz | Forums | Privacy Policy | Terms and Conditions
Site Links:XMLZoo ActiveSQL ProgZoo SQLZoo

Copyright @ 2004-2014 Gordon Russell. All rights reserved.