If you can see this check that

next section prev section up prev page next page

Hacking

Hacking Techniques

Security Concerns

Big Danger

Hacking

Cost

The approach

Social Engineering

Hacking BLOB University

As strong as the weakest link

Brute Force

DoS

Example: SMURF

Distributed DoS

Technical Exploits

Security Defects

Misusing Tools

showmount

> showmount -a orion.napier.ac.uk | grep gor
artemis:/export/home/o2/staff/gor
pc236nt:/export/home/o2/staff/gor
> mount -t nfs orion.napier.ac.uk:/export/home/o2/staff/gor /mnt/a

Improper Maintenance

Ineffective Security

Detection

The Process

Casing:

Scanning

Example: nmap

> nmap linuxzoo.net
PORT		STATE	SERVICE
22/tcp		open		ssh
23/tcp		open		telnet
53/tcp		open		domain
80/tcp		open		http
81/tcp		open		host2-ns
123/tcp		closed		ntp
5900/tcp	closed		vnc
5901/tcp	closed		vnc-1
5902/tcp	closed		vnc-2
5903/tcp	closed		vnc-3

Enumeration

Failed SSH logins

A little perl

#!/usr/bin/perl

open(my $file,"</var/log/secure.1");
my %ip;
foreach my $line (<$file>) {
  if ($line =~ m/Failed/) {
    if ($line =~ m/(\d+\.\d+\.\d+\.\d+)/) {
      $ip{$1}++;
    }
  }
}

foreach my $k (keys %ip) {
  my $what = `dig -x $k | grep PTR`;
  my $dig = "?";
  $dig = $1 if ($what =~ m/PTR\s+([^\s]+)$/);
  print "$k \t: $ip{$k} fails : $dig\n";
}

The data

202.118.?.?  	: 73 fails : ?
140.125.?.? 	: 1 fails : ?.?.edu.tw.
61.129.?.?  	: 23 fails : ?
78.110.?.?  	: 239 fails : ?
152.104.?.?  	: 24 fails : static-ip-?.rev.dyxnet.com.
219.232.?.?	: 1 fails : ?

Next Step

Any successful login is the end...

DNS Cache Poisoning

DNS Cache Poisoning

Messing up the cache

Transaction ID

Faking the ID

Guessing the ID

The twist

The Fix

Discussion

Discussion

Discussion

Question 1

You have detected 15 failed ssh logins from 10.0.0.1. What should you do next and why?

Question 2

A firewall audit using nmap was performed, and produced the following results:
PORT		STATE	SERVICE
22/tcp		open		ssh
23/tcp		open		telnet
53/tcp		open		domain
80/tcp		open		http
123/tcp	        closed		ntp
Comment on the quality of your server security.
Centos 7 intro: Paths | BasicShell | Search
Linux tutorials: intro1 intro2 wildcard permission pipe vi essential admin net SELinux1 SELinux2 fwall DNS diag Apache1 Apache2 log Mail
Caine 10.0: Essentials | Basic | Search | Acquisition | SysIntro | grep | MBR | GPT | FAT | NTFS | FRMeta | FRTools | Browser | Mock Exam |
Caine 13.0: Essentials | Basic | Search | Acquisition | SysIntro | grep | MBR | GPT | FAT | NTFS | FRMeta | FRTools | Browser | Registry | Mock Exam |
CPD: Cygwin | Paths | Files and head/tail | Find and regex | Sort | Log Analysis
Kali: 1a | 1b | 1c | 2 | 3 | 4a | 4b | 5 | 6 | 7a | 8a | 8b | 9 | 10 |
Kali 2020-4: 1a | 1b | 1c | 2 | 3 | 4a | 4b | 5 | 6 | 7 | 8a | 8b | 9 | 10 |
Useful: Quiz | Forums | Privacy Policy | Terms and Conditions

Linuxzoo created by Gordon Russell.
@ Copyright 2004-2024 Edinburgh Napier University