View
229
Download
8
Tags:
Embed Size (px)
Citation preview
Week 5-3
Week 5: System Hacking
• Defending Against Password Guessing
• Monitoring Event Viewer Logs • VisualLast • Eavesdropping on Network
Password Exchange
Week 5-4
Week 5: System Hacking
• Hacking Tool: L0phtCrack • Hacking Tool: KerbCrack
http://ntsecurity.nu/toolbox/kerbcrack/
Week 5-5
Week 5: System Hacking
• Privilege Escalation • Hacking Tool: GetAdmin • Hacking Tool: hkwww.nmrc.org
Week 5-6
Week 5: System Hacking
• Manual Password Cracking Algorithm
• Automatic Password Cracking Algorithm
• Password Types
Week 5-7
Week 5: System Hacking
• Types of Password Attacks • Dictionary Attack • Brute Force Attack • Distributed Brute Force Attack
Week 5-8
Week 5: System Hacking
• Password Change Interval • Hybrid Attack • Cracking Windows 2000 Passwords
Week 5-9
Week 5: System Hacking
• Retrieving the SAM file • Redirecting SMB Logon to the
Attacker • SMB Redirection
Week 5-11
Week 5: System Hacking
• SMBRelay Man-in-the-Middle (MITM)
• SMBRelay MITM Countermeasures
Week 5-12
Week 5: System Hacking
• Hacking Tool: SMBGrinder • Hacking Tool: SMBDie • Hacking Tool: NBTDeputy
Week 5-13
Week 5: System Hacking
• NetBIOS DoS Attack • Hacking Tool: nbname• Hacking Tool: John the Ripper
Week 5-15
Week 5: System Hacking
• Keystroke Logger • Hacking Tool: Spector
http://www.spectorsoft.com/
• AntiSpector http://www.anti-keyloggers.com/
Week 5-16
Week 5: System Hacking
• Hacking Tool: eBlaster • Hacking Tool: SpyAnywhere • Hacking Tool: IKS Software Logger
Week 5-17
Week 5: System Hacking
• Hardware Tool: Hardware Key Logger
• Hacking Tool: Rootkit • Planting Rootkit on Windows 2000
Machine
Week 5-19
Week 5: System Hacking
• MD5 Checksum utility • Tripwire www.tripwire.com
www.tripwire.org
Week 5-20
Week 5: System Hacking
• Covering Tracks • Disabling Auditing • Auditpol • Clearing the Event Log
Week 5-21
Week 5: System Hacking
• Hacking Tool: Elsave • Hacking Tool: Winzapper• Hacking Tool: Evidence Eliminator
Week 5-22
Week 5: System Hacking
• Hiding Files • NTFS File Streaming • Hacking Tool: makestrm • NTFS Streams Countermeasures:
LADS, sfind can detect ADS (alternative data streams)
• LNS
Week 5-23
Week 5: System Hacking
• Steganography (covered writing)• Hacking Tool: ImageHide • Hacking Tool: MP3Stego• Hacking Tool: Snow • Hacking Tool: Camera/Shy
Week 5-24
Week 5: System Hacking
• Steganography Detection • StegDetect • Encrypted File System • Hacking Tool: dskprobe • Hacking Tool: EFSView
Week 5-25
Week 5: System Hacking
• Buffer Overflows • Creating Buffer Overflow Exploit • Outlook Buffer Overflow • Hacking Tool: Outoutlook