• Home

  • Documents

  • Week 5-1 Week 5: System Hacking Administrator Password Guessing
26
Week 5-1 Week 5: System Hacking • Administrator Password Guessing

Week 5-1 Week 5: System Hacking Administrator Password Guessing

  • View
    229

  • Download
    8

Tags:

Embed Size (px)

Citation preview

Page 1: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-1

Week 5: System Hacking

• Administrator Password Guessing

Page 2: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-2

Week 5: System Hacking

• Performing Automated Password Guessing

• Legion • NTInfoScan

Page 3: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-3

Week 5: System Hacking

• Defending Against Password Guessing

• Monitoring Event Viewer Logs • VisualLast • Eavesdropping on Network

Password Exchange

Page 4: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-4

Week 5: System Hacking

• Hacking Tool: L0phtCrack • Hacking Tool: KerbCrack

http://ntsecurity.nu/toolbox/kerbcrack/

Page 5: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-5

Week 5: System Hacking

• Privilege Escalation • Hacking Tool: GetAdmin • Hacking Tool: hkwww.nmrc.org

Page 6: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-6

Week 5: System Hacking

• Manual Password Cracking Algorithm

• Automatic Password Cracking Algorithm

• Password Types

Page 7: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-7

Week 5: System Hacking

• Types of Password Attacks • Dictionary Attack • Brute Force Attack • Distributed Brute Force Attack

Page 8: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-8

Week 5: System Hacking

• Password Change Interval • Hybrid Attack • Cracking Windows 2000 Passwords

Page 9: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-9

Week 5: System Hacking

• Retrieving the SAM file • Redirecting SMB Logon to the

Attacker • SMB Redirection

Page 10: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-10

Week 5: System Hacking

• Hacking Tool: SMBRelay • Hacking Tool: SMBRelay2

Page 11: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-11

Week 5: System Hacking

• SMBRelay Man-in-the-Middle (MITM)

• SMBRelay MITM Countermeasures

Page 12: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-12

Week 5: System Hacking

• Hacking Tool: SMBGrinder • Hacking Tool: SMBDie • Hacking Tool: NBTDeputy

Page 13: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-13

Week 5: System Hacking

• NetBIOS DoS Attack • Hacking Tool: nbname• Hacking Tool: John the Ripper

Page 14: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-14

Week 5: System Hacking

• LanManager Hash • Password Cracking

Countermeasures

Page 15: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-15

Week 5: System Hacking

• Keystroke Logger • Hacking Tool: Spector

http://www.spectorsoft.com/

• AntiSpector http://www.anti-keyloggers.com/

Page 16: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-16

Week 5: System Hacking

• Hacking Tool: eBlaster • Hacking Tool: SpyAnywhere • Hacking Tool: IKS Software Logger

Page 17: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-17

Week 5: System Hacking

• Hardware Tool: Hardware Key Logger

• Hacking Tool: Rootkit • Planting Rootkit on Windows 2000

Machine

Page 18: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-18

Week 5: System Hacking

• _rootkit_ embedded TCP/IP Stack • Rootkit Countermeasures

Page 19: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-19

Week 5: System Hacking

• MD5 Checksum utility • Tripwire www.tripwire.com

www.tripwire.org

http://www.tripwire.com/
http://www.tripwire.org/
Page 20: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-20

Week 5: System Hacking

• Covering Tracks • Disabling Auditing • Auditpol • Clearing the Event Log

Page 21: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-21

Week 5: System Hacking

• Hacking Tool: Elsave • Hacking Tool: Winzapper• Hacking Tool: Evidence Eliminator

Page 22: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-22

Week 5: System Hacking

• Hiding Files • NTFS File Streaming • Hacking Tool: makestrm • NTFS Streams Countermeasures:

LADS, sfind can detect ADS (alternative data streams)

• LNS

Page 23: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-23

Week 5: System Hacking

• Steganography (covered writing)• Hacking Tool: ImageHide • Hacking Tool: MP3Stego• Hacking Tool: Snow • Hacking Tool: Camera/Shy

Page 24: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-24

Week 5: System Hacking

• Steganography Detection • StegDetect • Encrypted File System • Hacking Tool: dskprobe • Hacking Tool: EFSView

Page 25: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-25

Week 5: System Hacking

• Buffer Overflows • Creating Buffer Overflow Exploit • Outlook Buffer Overflow • Hacking Tool: Outoutlook

Page 26: Week 5-1 Week 5: System Hacking Administrator Password Guessing

Week 5-26

Week 5: System Hacking

• Summary


Aggregate db Week 6 Hacking for Diplomacy

Aggregate db Week 6 Hacking for Diplomacy

Education
System Hacking Active System Intrusion. Aspects of System Hacking System password guessing Password cracking Key loggers Eavesdropping Sniffers Man in

System Hacking Active System Intrusion. Aspects of System Hacking System password guessing Password cracking Key loggers Eavesdropping Sniffers Man in

Documents
Guessing Games

Guessing Games

Documents
Art Guessing Game

Art Guessing Game

Art & Photos
A Guessing Game

A Guessing Game

Documents
The Guessing Game

The Guessing Game

Documents
Guessing Game

Guessing Game

Documents
Color guessing game

Color guessing game

Documents
Guessing Game Afternoon

Guessing Game Afternoon

Education
Misinformation, Information, Guessing Expected Multiple … · guessing are also of concern with these methods. Number-Right and Corrected-for-GuessIng Scoring For total ignorance

Misinformation, Information, Guessing Expected Multiple … · guessing are also of concern with these methods. Number-Right and Corrected-for-GuessIng Scoring For total ignorance

Documents
Week 5: System Hacking

Week 5: System Hacking

Documents
Team 621 Hacking for Diplomacy week 8

Team 621 Hacking for Diplomacy week 8

Education
Period Three reading Guessing Game Is he…? Guessing Game Is he…? drawing

Period Three reading Guessing Game Is he…? Guessing Game Is he…? drawing

Documents
GUESSING PICTURES

GUESSING PICTURES

Documents
Guessing Secrets Efficiently

Guessing Secrets Efficiently

Documents
Animal guessing

Animal guessing

Education
The Guessing Game

The Guessing Game

Documents
Guessing meaning

Guessing meaning

Documents
Ethical Hacking Module V System Hacking. EC-Council Module Objective Understand the following Remote password guessing Eavesdropping Denial of Service

Ethical Hacking Module V System Hacking. EC-Council Module Objective Understand the following Remote password guessing Eavesdropping Denial of Service

Documents
Vocabulary (Guessing Word)

Vocabulary (Guessing Word)

Documents
Week 08 : Security awareness and hacking PCB - KNOWLEDGE SHARING SESSION

Week 08 : Security awareness and hacking PCB - KNOWLEDGE SHARING SESSION

Documents
“Fast Track” 8-Week Options Hacking Guide - Option …€œFast Track” 8-Week Options Hacking Guide. About the ... • Custom IWM trade with no up-side risk ... • Bull call

“Fast Track” 8-Week Options Hacking Guide - Option …€œFast Track” 8-Week Options Hacking Guide. About the ... • Custom IWM trade with no up-side risk ... • Bull call

Documents
Stop guessing!

Stop guessing!

Business
Planning is guessing

Planning is guessing

Business
Week 9 Web and Mobile Application Hacking

Week 9 Web and Mobile Application Hacking

Documents
Intelligent Guessing

Intelligent Guessing

Documents
Guessing Who I Am?

Guessing Who I Am?

Technology
Guessing german gender

Guessing german gender

Education
IT Masters CSU Free Short Course - Hacking Countermeasures - Week 1 (1)

IT Masters CSU Free Short Course - Hacking Countermeasures - Week 1 (1)

Documents
Growth Hacking For Startups - Social Media Week

Growth Hacking For Startups - Social Media Week

Presentations & Public Speaking