Syllabus Hacker 02
Please note: You will not be able to get files from the server unless you are a paid student and have been issued an account. So some links on this page will not work if you are a guest.
The steps below, the files, and links within, are numbered in order of what you will need to read and do. If this set of steps is unclear, please attend orientation for a walk-through.
00- Reading -
Day 1: SPT #3 PPT #11 & 12
Day 2: PPT #13
Two other source documents are here:
OSSTMM (16MB) SP800-115 (.6MB)
01-Mind map review for Note Cards, Terms and Process. For every term in the concepts section of the mindmap you should find a definition first from the book and second from your research. For every tool in the book you should make a notecard based upon Reconn Layer, Exploit Category, and Process.
02-Tool review
You must have the VBox structure in place to start the labs. Every week and every class you will be assigned one or two base tools. We will discuss that tool in the Lab part of class. Your assignment is to work the tool, collect artifacts and send via email or post them. Artifacts are ALWAYS packet captures and sometimes a screenshot. Do not send large raw packet captures- you must cut the capture down to the attack/response data. You should be able to discuss this tool’s function, place in the process, and comparison to other tools.
Nessus & LC4
The list of tools discussed this week:
4. Enumeration
- net view, nbstat
- Enum
- DumpSec
- NAT
- GetAcct
- SNMPutil
- IP Network Browser
- sid2user
- user2sid
- NBTscan
5. System Hacking
- IKS Software Keylogger
- Legion
- GetAdmin
- WinZapper
- hk.exe
- Evidence Eliminator
- makestrm.exe
- ads_cat
- eBlaster
- RootKit
- elsave.exe
- SMBDie
- NBTDeputy
- dskprobe.exe
- KerbCrack
- LOphtcrack
- SMB Grind
- SMBRelay
- John the Ripper
- Spyware: Spector
03-Reports
As a professional you will be required to report your findings to management in a meaningful, actionable way. For each tool you must know how it fits with your original plan, the outcomes from its use, and what should be done to protect the environment from its use in the future.
Sample RFP from foundstone.
04-Recording links are listed for your review of presentations. These are updated one week after the new class.
You can find these links and the class schedule here:http://www.expandingsecurity.com/about/events/
All content is copyright protected. Downloading or reviewing any material means you consent to the copyright restrictions placed on all works by the author. You are forbidden from using any of this material in the teaching of any class. You are only permitted to use this as a current student of Expanding Security. You are not permitted to copy or distribute these materials in any way.
Links:
04 Enumeration
-
04 Reading
- GRAPE-INFO-DOT-COM
- AT&T hack exposes 19,000 identities – CNET News
- Network management, network discovery, SNMP, MIB and WMI browsers, NetBIOS and port scanner
-
04 LDAP
- Overview | LDAP Account Manager
- LEX – The LDAP Explorer
- Softerra LDAP Administrator & Browser: Directory Management Tool for Windows
- Open Channel Foundation: LDAP Browser Editor
- LDAP Explorer Tool: a multi platform LDAP browser and editor
- Using Ldp.exe to Find Data in the Active Directory
- JXplorer – an open source ldap browser
- Virtual Directory Server, LDAP Proxy and Federated Identity Management for Single Sign-On Solutions
- LDAP Admin Tool Pro. Edition – Professional LDAP Administration Tool
-
04 Windows SMB Acct NetBIOS
-
04 Time
- Bytefusion:Download
- NTP Servers GPS & MSF | Time Servers | NTP Time Servers | Synchronised Network Clocks | Large Digital Wall Clocks | Galleon Systems
- EmTec – Terminal Emulator, Telnet and Secure Shell (SSH/SSH2) Client and Comm. Software for Windows
- Meinberg der Funkuhr und Time Server Spezialist
-
04 SNMP
- OID VIEW MIB Browser – SNMP Analysis Network Fault Management – SNMP MIBS Tools
- snmp monitoring – monitoring software – network management
- SNMP
- SNMP4tPC – What is SNMP?
- Windows 2000, SNMP and Security | Symantec Connect Community
- Internetworking Technology Handbook – Simple Network Management Protocol (SNMP) – Cisco Systems
- iReasoning Inc. – Network Management / Application Management Solutions
- WTCS.ORG – Williams Technology Consulting Services
-
04 Multi
- OpenVAS Open Vulnerability Assessment System Community Site
- Nessus
- Switch Port Management, IP Address Management, Rogue Detection, Wake on LAN and Network Monitoring Tools from ManageEngine OpUtils
- SuperScan | McAfee Free Tools
- Network Security Audit Software and Vulnerability Scanner
- Home of NetScanTools® Network Engineering Tools and the Managed Switch Port Mapping Tool
-
04 Nix
05 System Hacking
-
05 Reading
- Using passwords as a defense mechanism to improve Windows security (Part 2)
- http://www.blackhat.com/presentations/bh-asia-04/bh-jp-04-pdfs/bh-jp-04-seki.pdf
- http://research.microsoft.com/en-us/um/people/wdcui/papers/hookmap-raid08.pdf
- http://www.symantec.com/avcenter/reference/when.malware.meets.rootkits.pdf
- Brute-force attack – Wikipedia, the free encyclopedia
- http://media.techtarget.com/searchSecurity/downloads/HackingforDummiesCh07.pdf
- Authernative, Inc. | Products | FAQs
- The Hack FAQ: Password Basics
- Luigi Dragone Home Page – NTLM Authentication in Java
- Securing Windows 2000 Server
- Sunbelt TECH BRIEFING
- Threats and Countermeasures: Security Settings in Windows Server 2003 and Windows XP
- coolersky.com
- Detecting Alternate Data Streams
- Linux Today – ZDNet Australia: Threats Move Beyond Linux to Windows
- NEOHAPSIS – Peace of Mind Through Integrity and Insight
-
05 Streams Stego Covert Communication
- Sidebar: A Simple Rootkit Example – Computerworld
- Rootkits offer the lure of total control – Feature – Techworld.com
- Infosecwriters.com
- Steganography – Word Information
- CS 450 Homework 4
- SecurityFriday [Hazard of "My Network Places" on Windows XP]
- NBName
- MD5 Digest
- CS 513 System Security — Authentication
-
05 Passwords
- Fall 2005 – CS513 System Security – Topic Outline
- Threats and Countermeasures: Security Settings in Windows Server 2003 and Windows XP
- Securing Windows 2000 Server
- Brute_force_attack encyclopedia topics | Reference.com
- IT Management, IT Security, Information Protection | Symantec Solutions
- Rootkits offer the lure of total control – Feature – Techworld.com
- Software Analysis
- Using passwords as a defense mechanism to improve Windows security (Part 2)
- L0phtCrack Password Auditor – Download
- Ophcrack
- oxid.it – Cain & Abel
- RainbowCrack Project – Crack Hashes with Rainbow Tables
- ntsecurity.nu – toolbox
- John the Ripper password cracker
- Password recovery, forensic, forensics, system and security software from ElcomSoft : recover or reset lost or forgotten password, remove protection, unlock system
- Windows Password Reset Professional – Reset lost or forgotten Windows password with USB flash Drive
- cqure.net » krbpwguess
- NirSoft – freeware utilities: password recovery, system utilities, desktop utilities
- A@PC: Windows Password Recovery Software. Reset Administrator Password. XP VISTA 2008 2003 2000 NT.
- Password Recovery Tools for Windows
- Windows Password Reset Kit – Reset Administrator Password, Windows Password Recovery
- Windows Password Recovery, Administrator Password, Reset Password | Passware
- Offline NT Password & Registry Editor
- PNLTools – Tools for IT Professionals
-
05 Keylogger
- Alchemy Lab: Network Monitor, Network Inventory Software
- Advanced Keylogger – Download key logger and invisibly record keystrokes at your PC – Key logger
- Spytech Spy Software – Computer Monitoring Software – Internet Recording
- Keystroke Recorder – all in one key logger for computer monitoring, keystroke logging, mouse recording, keylogging
- Keylogger for Mac – Aobo Mac Keylogger Mac OS X Password Recording key logger for Mac
- Mac Keylogger – $34.95 directly from developer- Perfect Keylogger for Mac OS X Home Page – the best invisible Macintosh key logger with email / FTP support – stealth iMac and MacBook Pro spy software with password
- KeyGhost Keylogger – A hardware keylogger which captures all keystrokes to its internal memory chip. It is software free so it cannot be detected or disabled by software and installs in under 5 seconds!
- Keylogger – Actual Spy Software, logs all keystrokes. Keylogger download
- KeyLogger, Download KeyLogger, KeyStroke Logger, Parental Control Software
- Ghost Keylogger – Invisibly captures all keystrokes | Logfile or Email option!
- Download Keylogger – Spy Software – Keylogger Download
- Keylogger Download Keylogger, Download free trial keylogger. Keylogger download, All In One Key Logger – invisible (stealth) best keylogger. Download spy software & Vista/Win7 Keylogger, Key Logging Software!
- Spy Software and Invisible Computer Monitoring. Download REFOG Spy Software
- Keylogger WinSession logger logs all keystrokes. Keylogger download
- Spy-Lantern.com – Spy Lantern Keylogger – Product Info
- Spy Tool–Golden Eye–monitor and spy all activity on your computer
- Computer Monitoring Spy Software – A Stealth Solution with Stealth Keylogger
-
05 Activity monitor
- Data Recovery Software | Disk Recovery | Hard Drive Recovery Software by RecoveryFix
- SSPro Computer Monitoring & Parental Control Software – Free Trial
- Remote Desktop Spy – PC and Internet Monitoring Spy Software
- Desktop Spy X – Remote Desktop Spy Software – Secretly spy on a PC in real-time and view logs remotely over a network
- Nucleus Kernel, Data Recovery Software, Email Recovery, Database Recovery, Office Recovery Tools
- Spytech Spy Software – Computer Monitoring Software – Internet Recording
- SpectorSoft – eBlaster
- Spy Software Keylogger Wiretap Professional
- Network Surveillance Software – Spylab WebSpy
- Ascendant – Network Security, Supervision, and Asset Protection Software
- Employee Monitoring Software for Company, LAN & Network Monitoring Software for Manager – OsMonitor
- Employee Monitoring: Productivity Tool Network Software
- Employee Monitoring Software – Imonitor Employee Activity Monitor
- Advanced Parental Control – Content Filtering and Monitoring Software – Program Overview
- Monitoring Software
- iSoftwise Ltd.
- Internet activity monitoring and web access control, Employee Internet Management (EIM)
- SpectorSoft – Spector Pro 2011
- SpyArsenal.com – Personal Desktop Spy (spy software for monitoring the activity of users on a PC)
- Spy Software, Computer Monitoring Software, Keylogger, Keystroke Recorder – SoftActivity.com
-
05 USB monitor
- USB monitor software – USB traffic analyzer
- View any installed/connected USB device on your system
- Download freeware live USB monitor software protects online fraud data theft
- Hex Editor Serial Port Monitor USB Protocol Analyzer Network Monitor
- Monitor USB drive activity data theft protection tool for windows network
- Hak5 Wiki has a problem
-
05 Video/ Print monitor
- RoboNanny: Audio Home Security Software & Baby Monitoring
- Stealth Recorder Pro – Audio Spy Software
- Computer Software Security System, online security camera, home security system, biometric/fingerprint access control system
- Webcam Software for Video Surveillance and Broadcast
- Solent WebCam Recorder – Record Webcams to Hard Disk and Replay Them
- InternetSafetySoftware.com – Your source for parental control software – IamBigBrother KidControl WatchYourPC SpyMail and more
- Capturix Scanshare – Capturix Software Technologies
- Rempubs – Remote software
- Printer Activity Monitor – printer usage monitoring application. Advanced printers audit and print jobs tracking software.
- PrintSniffer
- http://www.lygil.com/printtrak/printtrak.htm
- Accurate Printer Monitor – real-time printer monitoring and logging for local, network printers
- Print manager and print monitor – O&K Print Watch
-
05 Phone Cell GPS
- Phone Spy Software For iPhone, Windows Mobile And Symbian OS
- Telephone Spy Software: SpyArsenal.com – record phone conversations and e-mail them – record telephone calls easy! Best telephone calls monitoring and recording software.
- Multichannel Call Logger and Audio Recording Software
- Record Phone Calls to MP3 – Modem Spy
- Phone spy telephone recording software PROFESSIONAL
- Nokia Spy Phone Software|Mobile Spy|SMS spy|Cell Phone Spying
- Spy Phone Call Interception, GPS Tracking, Remote Monitoring Software for Symbian Mobile Phones – FlexiSPY PROX Symbian Spyphone
- TrackMaker – GPS Software and Automatic Vehicle Location Modules
- EasyGPS – FREE GPS Software for your Garmin, Magellan, or Lowrance GPS
- Catch Cheating Spouses with FlexiSPY – Spy Phone, GPS Tracker, Location Tracking, Remote Listening for Mobile / Cell Phones
- World-Tracker – mobile phone location and tracking, tracking of mobile phone specialist, trace mobile
- GPS Tracking | GPS Tracking System | GPS Tracking Device
-
05 Alt data Streams Stego
- Streams
- NT Kernel Resources: Merge Streams
- Frank Heyne Software – LADS
- ntsecurity.nu – toolbox
- SilentEye – Steganography is yours
- The SNOW Home Page
- The Gifshuffle Home Page
- JPHS 0.3 free download. JPSEEK and JPHIDE are 2 programs that allows you to hide a file in a jpeg visual image
- QuickStego – Free Steganography Software
- wbStego Steganography Tool
- StegParty
- Data Stash v1.5 – Steganographic security tool :: skyjuicesoftware.com
- Hydan: Information Hiding in Program Binaries
- SourceForge.net: FoxHole – Steganography filemanager – Project Web Hosting – Open Source Software
- Hide files and folders – Masker 7.5
- RT Steganography in Video Streaming | Download RT Steganography in Video Streaming software for free at SourceForge.net
- mp3stegz | Download mp3stegz software for free at SourceForge.net
- MP3Stego
- MAXA Tools – Security Software
- Steghide
- BitCrypt The Strongest Encription on Earth
- folder security software – Hide files and folders
- StegoStick | Download StegoStick software for free at SourceForge.net
-
05 Encryption
- Max File Encryption – Best File Encryption & Steganography Software
- XPTools: Hide Folder, Clean Registry, Clean Disk, Organize StartUp, ExeLock, Protect Folder, Folder Guard, Clean Tracks, Driver Backup, Protect IE, Manage Window, Shred File, Undelete File!
- Max Folder Secure : Security tool to lock/hide your files, folder
- File Encryption Software – Hide files & folders – Steganography Software Windows Vista Compatible
- Lock Folder | Password Protect | Hide Folder | Lock XP Vista
- WinMend – Free Download System Doctor, Registry Cleaner, Disk Cleaner, History Cleaner, Data Recovery software.
-
05 Keylogger Defense
- Zemana AntiLogger – The #1 Privacy Software
- QFX Software – Anti-Keylogging Software and More
- I Hate Keyloggers: free to download. Anti-Key-Logger, Keylogger Remover, etc.
- Spyware Doctor | Spyware Removal Scan & Antispyware Software Download
- Remove Spyware & Malware with SpyHunter
- Free spyware removal and spyware protection – Spyware Terminator
-
05 Cover tracks
- spammimic – hide a message in spam
- OutGuess – universal Steganography
- StegSecret. A simple steganalysis tool.
- spyhunter – StegSpy
- WetStone Technologies, Inc. – Shopping Cart
- Product – Evidence Eliminator™
- In Details | Armor Tools – armortools, software tools for MS Windows.
- EvidenceEraser – The Ultimate Privacy Protector!
-
05 Defense rootkit protection
- Download Rootkit Razor™ Free
- Resplendence Software – SanityCheck, Advanced Rootkit and Malware Detector
- Sophos Anti-Rootkit
- Zemana AntiLogger – The #1 Privacy Software
- Symantec – AntiVirus, Anti-everything
- Kaspersky- AntiVirus, Anti-everything
- Lavasoft – AntiVirus, Anti-everything
- McAfee – AntiVirus, Anti-everything
- F-Secure – AntiVirus, Anti-everything