How hackers do it

Post on 14-Jan-2015

4.026 views 0 download

Preview:

Click to see full reader
Report this document
SHARE

description

Slides to accompany a demonstration I did for the Pacific Computing Society in Suva, Fiji in late 2006. It demoed the anatomy of a hacker attack.

Transcript of How hackers do it

how do hackers do it?

1. gather info on the target host

whois

Organization: Fiji ABCDEFG Inc.Admin-Name: Josese Bula Admin-Mailbox: jbula@abcdef.com.fjTech-Name: Maciu VinakaTech-Mailbox: mvinaka@abcdef.com.fjNS1-Hostname: dns1.somenetwork.com.fj NS1-Netaddress: 202.151.23.2

Google

Find vulnerabilities, revealing error messages,usernames and sometimes even passwords on your target host, all without ever connectingto it

see http://johnny.ihackstuff.com/

2. scan/sniff to find a way in

nmap

superscan

tcpdump

wireshark (formerly ethereal)

dsniff

nessus

3. exploit vulnerabilities

metasploit framework

john the ripper

cain and abel

thc-hydra

4. cover your tracks

nc -L -d -t -p 23 -e cmd.exe

rootkits

edit logs

help! what can i do?

. remove all unnecessary services

. firewall services that do not need remote access

. actively patch vulnerabilities

. use strong passwords

most importantly:

. educate your users again and again and again

chris hammond-thrasher, cissphammondthrasher_c@usp.ac.fj

Top related

How to Win Friends & Influence Hackers @ BSides Asheville 2014
 Career
How To Secure Your WordPress Site From Hackers
 Internet
1 February How Computers Work. Buying Bugs A 21st Century Entrepreneurship How do you find bugs in your software? Offer a bounty! How do malicious hackers.
 Documents
Paris hackers Meetup #12 - How to handle large audience
 Internet
How Hackers Cover Their Tracks ECE 4112 May 1st, 2007
 Documents
Bleeding Servers – How Hackers are Exploiting Known Vulnerabilities
 Technology
Shane Snow - How to Accelerate Success like Hackers and Innovators
 Business
Hackers Hiring Hackers: How to Do Things Better Conf... · message revealed by reading this warning backwards, so just ignore that alert notice from Microsoft. However, by pouring
 Documents
How Hackers of Submarine Cables May Be Held Liable Under ...
 Documents
INNOV-09 How to Keep Hackers Out of your Web Application
 Documents
How Hackers can Open the Safe and Take the Jewels
 Technology
How to Keep WordPress Website Safe from Hackers
 Education
Do less work by securing your WordPress site from hackers
 Internet
Google-image poisoning: How hackers use images to spread malware
 Internet
Hack your db before the hackers do
 Documents
How to Secure Your Website Against Hackers
 Business
How to setup secure website for hackers
 Engineering
The Spread of Cyberthreats: How Hackers Are Connecting ...€¦ · The Spread of Cyberthreats How Hackers are Connecting with Smart Buildings David W. Jones ... Standard certificate
 Documents
How to protect your WordPress website against hackers
 Software
Cybersecurity for Oil and Gas Industries: How Hackers Can Steal Oil
 Technology

Copyright © 2022 FDOCUMENTS