Syllabus Hacker 03

Certified Ethical Hacker on June 19th, 2010 No Comments

Please note: You will not be able to get files from the server unless you are a paid student and have been issued an account. So some links on this page will not work if you are a guest.

The steps below, the files, and links within, are numbered in order of what you will need to read and do. If this set of steps is unclear, please attend orientation for a walk-through.

00- Reading – The chapter in the book tracks to the class number.

Class 06 – Special reading here SPT 11

Class 07- SPT 18 & 19

Two other source documents are here:

OSSTMM (16MB) SP800-115 (.6MB)

01-Mind map review for Note Cards, Terms and Process. For every term in the concepts section of the mindmap you should find a definition first from the book and second from your research. For every tool in the book you should make a notecard based upon Reconn Layer, Exploit Category, and Process.

02-Tool review

You must have the VBox structure in place to start the labs. Every week and every class you will be assigned one or two base tools. We will discuss that tool in the Lab part of class.  Your assignment is to work the tool, collect artifacts and send via email or post them. Artifacts are ALWAYS packet captures and sometimes a screenshot. Do not send large raw packet captures- you must cut the capture down to the attack/response data. You should be able to discuss this tool’s function, place in the process, and comparison to other tools.

The list of tools discussed this week:

6.  Trojans and Backdoors

  1. TCPView
  2. Firekiller 2000
  3. fPort
  4. Inzider
  5. Graffiti.exe
  6. Hard disk Killer HDKP4.0
  • Trojan
  1. Netcat
  2. Whack-A-Mole
  3. BoSniffer
  4. QAZ
  5. Tini
  6. Donald Dick
  7. SubSeven
  8. Back Orifice 2000
  9. Back Orifice Plug-ins
  10. NetBus
  11. Senna Spy
  12. Beast
  • Communication
  1. Reverse WWW Shell – Covert channels using HTTP
  2. Loki
  • Programming tool
  1. EliteWrap
  2. IconPlus
  3. Restorator

7.  Sniffers

  1. Wireshark Ethereal
  2. Macof, Mailsnarf, URLSnarf, Webspy
  3. Snort
  4. Ettercap
  5. Windump
  6. SMAC
  7. Etherpeek
  8. Mac Changer
  9. Iris
  10. NetIntercept
  11. EtherFlood
  12. dsniff
  13. WinDNSSpoof

03-Reports

As a professional you will be required to report your findings to management in a meaningful, actionable way. For each tool you must know how it fits with your original plan, the outcomes from its use, and what should be done to protect the environment from its use in the future.

04-Recording links are listed for your review of presentations. These are updated one week after the new class.

Recording CEH 06

Recording CEH 06LAB

Recording CEH 07

Download of lab in pdf format.

Recording CEH07 LAB: this lab is being updated Thursday June 2 and will be posted today

You can find these links and the class schedule here:http://www.expandingsecurity.com/about/events/

All content is copyright protected. Downloading or reviewing any material means you consent to the copyright restrictions placed on all works by the author. You are forbidden from using any of this material in the teaching of any class. You are only permitted to use this as a current student of Expanding Security. You are not permitted to copy or distribute these materials in any way.

Links

07 Viruses and Worms

07 Reading

Wired 11.07: Slammed!
http://download.norman.no/manuals/eng/BOOKON.PDF
http://www.symantec.com/avcenter/reference/striker.pdf
The Spread of the Sapphire/Slammer Worm
Random Scanning Worms and Sapphire/Slammer’s PRNG…
Optus myZOO Learning Centre
http://www.mpl.org.eg/doc/eBOOKs/vtutor.pdf
Virus History Summary
Cybercrime : Piercing the darkness
Technical Briefs – Information on Computer Viruses

07 Tools for examination

Honeypots, Intrusion Detection, Incident Response
Packet Storm ≈ Full Disclosure Information Security
Foundstone – A division of McAfee
UPX
Process Monitor
Wired and Wireless Network Analysis Software by TamoSoft
OllyDbg v1.10
IDA Pro Disassembler – multi-processor, windows hosted disassembler and debugger
Malware Analysis, Virus Sandbox – GFI Sandbox an Automated Malware Analysis Tool

07 Tools for protection

Anubis: Analyzing Unknown Binaries
VirusTotal – Free Online Virus, Malware and URL Scanner
OPSWAT Metascan
Submit a sample – Microsoft Malware Protection Center
Free Virus Scan – Kaspersky Lab
Antivirus Software | Antispyware | Norton AntiVirus
BitDefender Antivirus Pro 2011
F-Secure Anti-Virus 2011 – Real-Time Antivirus Protection
Kaspersky Anti-Virus Software | Kaspersky Lab United States
Trend Micor Internet Security Pro – Trend Micro APAC
Virus Protection, Viruses, Anti virus Software | Antivirus Plus 2011 | McAfee

17 Sniffers (08)

17 Reading

Traffic Talk: Testing Snort with Metasploit
Undetectable Sniffing On Ethernet
Packet Sniffing: Sniffing Tools Detection Prevention Methods
Top Ten Ethereal Tips and Tricks – O’Reilly Media
http://www.securityfriday.com/promiscuous_detection_01.pdf

17 Tools

EtherDetect Packet Sniffer, Protocol Analyzer
dsniff
Netflow and sFlow based Open Source Network Traffic Monitoring
ettercap
WinDump – Home
EtherApe, a graphical network monitor
Snort :: Home Page
Network Analyzer, Network Monitoring, Packet Sniffer, LAN Monitor, Network Traffic Analyzer, LAN Analyser, Network Sniffer
Network Content Monitoring and Data Loss Detection – NetResident
AIM Sniffer – capture and monitor AIM chat on your network
CloudShark: http://packetlife.net/captures/telnet.cap

No Responses to “Syllabus Hacker 03”

Leave a Reply

You must be logged in to post a comment.