week 5: system hacking
DESCRIPTION
Week 5: System Hacking. Administrator Password Guessing. Week 5: System Hacking. Performing Automated Password Guessing Legion NTInfoScan. Week 5: System Hacking. Defending Against Password Guessing Monitoring Event Viewer Logs VisualLast Eavesdropping on Network Password Exchange. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/1.jpg)
Week 5-1
Week 5: System Hacking
• Administrator Password Guessing
![Page 2: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/2.jpg)
Week 5-2
Week 5: System Hacking
• Performing Automated Password Guessing
• Legion • NTInfoScan
![Page 3: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/3.jpg)
Week 5-3
Week 5: System Hacking
• Defending Against Password Guessing
• Monitoring Event Viewer Logs • VisualLast • Eavesdropping on Network
Password Exchange
![Page 4: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/4.jpg)
Week 5-4
Week 5: System Hacking
• Hacking Tool: L0phtCrack • Hacking Tool: KerbCrack
http://ntsecurity.nu/toolbox/kerbcrack/
![Page 5: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/5.jpg)
Week 5-5
Week 5: System Hacking
• Privilege Escalation • Hacking Tool: GetAdmin • Hacking Tool: hkwww.nmrc.org
![Page 6: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/6.jpg)
Week 5-6
Week 5: System Hacking
• Manual Password Cracking Algorithm
• Automatic Password Cracking Algorithm
• Password Types
![Page 7: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/7.jpg)
Week 5-7
Week 5: System Hacking
• Types of Password Attacks • Dictionary Attack • Brute Force Attack • Distributed Brute Force Attack
![Page 8: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/8.jpg)
Week 5-8
Week 5: System Hacking
• Password Change Interval • Hybrid Attack • Cracking Windows 2000 Passwords
![Page 9: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/9.jpg)
Week 5-9
Week 5: System Hacking
• Retrieving the SAM file • Redirecting SMB Logon to the
Attacker • SMB Redirection
![Page 10: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/10.jpg)
Week 5-10
Week 5: System Hacking
• Hacking Tool: SMBRelay • Hacking Tool: SMBRelay2
![Page 11: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/11.jpg)
Week 5-11
Week 5: System Hacking
• SMBRelay Man-in-the-Middle (MITM)
• SMBRelay MITM Countermeasures
![Page 12: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/12.jpg)
Week 5-12
Week 5: System Hacking
• Hacking Tool: SMBGrinder • Hacking Tool: SMBDie • Hacking Tool: NBTDeputy
![Page 13: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/13.jpg)
Week 5-13
Week 5: System Hacking
• NetBIOS DoS Attack • Hacking Tool: nbname• Hacking Tool: John the Ripper
![Page 14: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/14.jpg)
Week 5-14
Week 5: System Hacking
• LanManager Hash • Password Cracking
Countermeasures
![Page 15: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/15.jpg)
Week 5-15
Week 5: System Hacking
• Keystroke Logger • Hacking Tool: Spector
http://www.spectorsoft.com/
• AntiSpector http://www.anti-keyloggers.com/
![Page 16: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/16.jpg)
Week 5-16
Week 5: System Hacking
• Hacking Tool: eBlaster • Hacking Tool: SpyAnywhere • Hacking Tool: IKS Software Logger
![Page 17: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/17.jpg)
Week 5-17
Week 5: System Hacking
• Hardware Tool: Hardware Key Logger
• Hacking Tool: Rootkit • Planting Rootkit on Windows 2000
Machine
![Page 18: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/18.jpg)
Week 5-18
Week 5: System Hacking
• _rootkit_ embedded TCP/IP Stack • Rootkit Countermeasures
![Page 19: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/19.jpg)
Week 5-19
Week 5: System Hacking
• MD5 Checksum utility • Tripwire www.tripwire.com
www.tripwire.org
![Page 20: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/20.jpg)
Week 5-20
Week 5: System Hacking
• Covering Tracks • Disabling Auditing • Auditpol • Clearing the Event Log
![Page 21: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/21.jpg)
Week 5-21
Week 5: System Hacking
• Hacking Tool: Elsave • Hacking Tool: Winzapper• Hacking Tool: Evidence Eliminator
![Page 22: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/22.jpg)
Week 5-22
Week 5: System Hacking
• Hiding Files • NTFS File Streaming • Hacking Tool: makestrm • NTFS Streams Countermeasures:
LADS, sfind can detect ADS (alternative data streams)
• LNS
![Page 23: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/23.jpg)
Week 5-23
Week 5: System Hacking
• Steganography (covered writing)• Hacking Tool: ImageHide • Hacking Tool: MP3Stego• Hacking Tool: Snow • Hacking Tool: Camera/Shy
![Page 24: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/24.jpg)
Week 5-24
Week 5: System Hacking
• Steganography Detection • StegDetect • Encrypted File System • Hacking Tool: dskprobe • Hacking Tool: EFSView
![Page 25: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/25.jpg)
Week 5-25
Week 5: System Hacking
• Buffer Overflows • Creating Buffer Overflow Exploit • Outlook Buffer Overflow • Hacking Tool: Outoutlook
![Page 26: Week 5: System Hacking](https://reader035.vdocuments.site/reader035/viewer/2022062309/56814878550346895db58163/html5/thumbnails/26.jpg)
Week 5-26
Week 5: System Hacking
• Summary