SlideShare una empresa de Scribd logo

Ethical hacking

Mohammad Affan
Mohammad Affan

'Ethical Hacking' is generally seminar report that redirect the overview to the ethical hacking.

EducaciónTecnologíaNoticias y política
1 de 24
Descargar para leer sin conexión
1CHAPTER 1: INTRODUCTION TO ETHICAL HACKING [ETHICAL HACKING] A Seminar Report Submitted to M.J.P Rohilkhand University, Bareilly In Partial Fulfillment of Bachelor in Computer Application BCA III Year V Semester Submitted By: Mohammad Affan Department of Computer Applications IFTM, Lodhiput Rajput, Delhi Road, Moradabad
2CHAPTER 1: INTRODUCTION TO ETHICAL HACKING CERTIFICATE This is to certify that the Seminar Report entitle “ETHICAL HACKING” has been submitted by “Mr. Mohammad Affan” in partial in fulfillment for the requirement of the degree of Bachelor in Computer Applications BCA III Year, V semester for the academic Session 2012-13. This seminar work is carried out under the supervision and guidance of “Mr. Deepak Sharma”, Asst. Professor, MCA department, I.F.T.M, Moradabad and he/ she has been undergone the indispensable work as prescribed by M.J.P Rohilkhand University, Bareilly Mr. Deepak Sharma Mr. Rahul Mishra Asst. Professor, Head of department Department Of Computer Applications Department Of Computer Applications I.F.T.M, Moradabad I.F.T.M, Moradabad Date:
3CHAPTER 1: INTRODUCTION TO ETHICAL HACKING ABSTRACT The internet has considerably enhanced various business critical operations of companies in different industry sectors across the globe. However, as more and more organizations become partially or completely dependent on the internet, computer security and the serious threat of computer criminals comes to the foreground. The explosive growth of the Internet has brought many good things: electronic commerce, easy access to vast stores of reference material, collaborative computing, e-mail, and new avenues for advertising and information distribution, to name a few. As with most technological advances, there is also a dark side: criminal hackers. Governments, companies, and private citizens around the world are anxious to be a part of this revolution, but they are afraid that some hacker will break into their Web server and replace their logo with pornography, read their e-mail, steal their credit card number from an on-line shopping site, or implant software that will secretly transmit their organization’s secrets to the open Internet. With these concerns and others, the ethical hacker can help. Unfortunately, most organizations across the globe continue to remain oblivious of the threat posed by computer criminals, corporate espionage and cyber terrorism. Ethical Hacking attempts to pro-actively increase security protection by identifying and patching known security vulnerabilities on systems owned by other parties.
4CHAPTER 1: INTRODUCTION TO ETHICAL HACKING TABLE OF CONTENTS CHAPTER 1: INTRODUCTION TO ETHICAL HACKING 5 1.1 INTRODUCTION 5 1.2 ETHICAL HACKING TERMINOLOGY 6 1.3 HACKER 7 1.3.1 TYPES OF HACKERS 7 1.3.2 ETHICAL HACKERS VERSUS CRACKER 8 1.4 THE JOB ROLE OF AN ETHICAL HACKER 9 1.4.1 WHAT DO ETHICAL HACKERS DO? 9 1.4.2 AN ETHICAL HACKER’S SKILL SET 9 CHAPTER 2: ETHICAL HACKING METHODOLOGY 11 2.1 THE PHASES OF ETHICAL HACKING 11 2.1.1 PHASE 1- RECONNAISSANCE 12 2.1.2 PHASE 2- SCANNING 15 2.1.3 PHASE 3- GAINING ACCESS 16 2.1.4 PHASE 4- MAINTAINING ACCESS 17 2.1.5 PHASE 5- CLEARING TRACKS 19 2.2 UNDERSTANDING TESTING TYPES 19 2.3 TOOLS USED IN ETHICAL HACK 20 CHAPTER 3: CONCLUSION 21 3.1 HOW TO BE ETHICAL 21 3.1.1 PERFORMING A PENETRATION TEST 22 3.2 ETHICAL HACKING REPORT 22 REFERENCES 24
5CHAPTER 1: INTRODUCTION TO ETHICAL HACKING CHAPTER 1: INTRODUCTION TO ETHICAL HACKING 1.1 INTRODUCTION The Internet is still growing and e-commerce is on its advance. More and more computers get connected to the Internet, wireless devices and networks are booming and sooner or later, nearly every electronic device may have its own IP address. The complexity of networks is increasing, the software on devices gets more complicated and user friendly [1]. Therefore, Security is a hot topic and quite some effort is spend in securing services, systems and networks. On the internet, there is a silent war going on between the good and the bad guys between the ones who are trying hard to keep information secured and the ones who are trying to get prohibited access to this information. Securing an information technology environment does not just consist of a bunch of actions which can be taken and then everything can be forgotten there is no fire and forget solution - security is a never ending process. OBJECTIVE COVERED IN THIS CHAPTER:  INTRODUCTION  ETHICAL HACKING TERMINOLOGY  THE JOB ROLE OF AN ETHICAL HACKER  TYPES OF ETHICAL HACKERS  ETHICAL HACKERS VERSUS CRACKER  WHAT DO ETHICAL HACKERS DO?  AN ETHICAL HACKER’S SKILL SET
6CHAPTER 1: INTRODUCTION TO ETHICAL HACKING “Ethical hacking describes the process of attacking and penetrating computer systems and networks to discover and point out potential security weaknesses for a client which is responsible for the attacked information technology environment1 .” 1.2 ETHICAL HACKING TERMINOLOGY Being able to understand and define terminology is an important part of a CEH’s responsibility. This terminology is how security professionals acting as ethical hackers communicate. In this section, we’ll discuss a number of terms used in ethical hacking as: Threat An environment or situation that could lead to a potential breach of security. Ethical hackers look for and prioritize threats when performing a security analysis. Malicious hackers and their use of software and hacking techniques are themselves threats to an organization’s information security. Exploit A piece of software or technology that takes advantage of a bug, glitch, or vulnerability, leading to unauthorized access, privilege escalation, or denial of service on a computer system. Malicious hackers are looking for exploits in computer systems to open the door to an initial attack. Most exploits are small strings of computer code that, when executed on a system, expose vulnerability. Experienced hackers create their own exploits, but it is not necessary to have any programming skills to be an ethical hacker as many hacking software programs have ready-made exploits that can be launched against a computer system or network. An exploit is a defined way to breach the security of an IT system through vulnerability. Vulnerability The existence of a software flaw, logic design, or implementation error that can lead to an unexpected and undesirable event executing bad or damaging instructions to the system. Exploit code is written to target vulnerability and cause a fault in the system in order to retrieve valuable data. Target of Evaluation (TOE) A system, program, or network that is the subject of a security analysis or attack. Ethical hackers are usually concerned with high-value TOEs, systems that contain sensitive information such as account numbers, passwords, Social Security numbers, or 1 Ethical Hacking – GIAC[www.giac.org/paper/gsec/2468/ethical-hacking/104292]
7CHAPTER 1: INTRODUCTION TO ETHICAL HACKING other confidential data. It is the goal of the ethical hacker to test hacking tools against the high- value TOEs to determine the vulnerabilities and patch them to protect against exploits and exposure of sensitive data. Attack An attack occurs when a system is compromised based on vulnerability. Many attacks are perpetuated via an exploit. Ethical hackers use tools to find systems that may be vulnerable to an exploit because of the operating system, network configuration, or applications installed on the systems, and to prevent an attack. There are two primary methods of delivering exploits to computer systems: Remote The exploit is sent over a network and exploits security vulnerabilities without any prior access to the vulnerable system. Hacking attacks against corporate computer systems or networks initiated from the outside world are considered remote. Most people think of this type of attack when they hear the term hacker, but in reality most attacks are in the next category. Local The exploit is delivered directly to the computer system or network, which requires prior access to the vulnerable system to increase privileges. Information security policies should be created in such a way that only those who need access to information should be allowed access and they should have the lowest level of access to perform their job function. These concepts are commonly referred as “need to know” and “least privilege” and, when used properly, would prevent local exploits. Most hacking attempts occur from within an organization and are perpetuated by employees, contractors, or others in a trusted position. In order for an insider to launch an attack, they must have higher privileges than necessary based on the concept of “need to know.” This can be accomplished by privilege escalation or weak security safeguards. 1.3 HACKER In the computer security context, a hacker is someone who seeks and exploits weaknesses in a computer or computer network. Hackers may be motivated by a multitude of reasons, such as profit, protest, or challenge.2 1.3.1 TYPES OF HACKERS Hackers can be divided into three groups: White Hats 2 Hacker (computer security)[ http://en.wikipedia.org/wiki/Hacker_(computer_security)]
8CHAPTER 1: INTRODUCTION TO ETHICAL HACKING White hats are the good guys, the ethical hackers who use their hacking skills for defensive purposes. White-hat hackers are usually security professionals with knowledge of hacking and the hacker tool set and who use this knowledge to locate weaknesses and implement countermeasures. White-hat hackers are prime candidates for the exam. White hats are those who hack with permission from the data owner. It is critical to get permission prior to beginning any hacking activity. This is what makes a security professional a white hat Versus a malicious hacker who cannot be trusted. Black Hats Black hats are the bad guys: the malicious hackers or crackers who use their skills for illegal or malicious purposes. They break into or otherwise violate the system integrity of remote systems, with malicious intent. Having gained unauthorized access, black-hat hackers destroy vital data, deny legitimate users service, and just cause problems for their targets. Black-hat hackers and crackers can easily be differentiated from white-hat hackers because their actions are malicious. This is the traditional definition of a hacker and what most people consider a hacker to be. Gray Hats Gray hats are hackers who may work offensively or defensively, depending on the situation. This is the dividing line between hacker and cracker. Gray-hat hackers may just be interested in hacking tools and technologies and are not malicious black hats. Gray hats are self-proclaimed ethical hackers, who are interested in hacker tools mostly from a curiosity standpoint. They may want to highlight security problems in a system or educate victims so they secure their systems properly. 1.3.2 ETHICAL HACKERS VERSUS CRACKER Ethical hackers are usually security professionals or network penetration testers who use their hacking skills and toolsets for defensive and protective purposes. Ethical hackers who are security professionals test their network and systems security for vulnerabilities using the same tools that a hacker might use to compromise the network. Any computer professional can learn the skills of ethical hacking.
9CHAPTER 1: INTRODUCTION TO ETHICAL HACKING The term cracker describes a hacker who uses their hacking skills and toolset for destructive or offensive purposes such as disseminating viruses or performing denial-of-service (DoS) attacks to compromise or bring down systems and networks. No longer just looking for fun, these hackers are sometimes paid to damage corporate reputations or steal or reveal credit card information, while slowing business processes and compromising the integrity of the organization. 1.4 THE JOB ROLE OF AN ETHICAL HACKER Ethical hackers are employed to protect networks and computers from attacks from unethical hackers who illegally penetrate computers to access private and sensitive information. Though they possess technical skills to those of an unethical hacker, an ethical hacker utilizes these skills for protection.3 1.4.1 WHAT DO ETHICAL HACKERS DO? The purpose of ethical hacker is usually the same as that of crackers: they’re trying to determine what an intruder can see on a targeted network or system, and what the hacker can do with that information. This process of testing the security of a system or network is known as a penetration test, or pen test. Many ethical hackers detect malicious hacker activity as part of the security team of an organization tasked with defending against malicious hacking activity. When hired, an ethical hacker asks the organization what is to be protected, from whom, and what resources the company is willing to expend in order to gain protection. A penetration test plan can then be built around the data that needs to be protected and potential risks. 1.4.2 AN ETHICAL HACKER’S SKILL SET Ethical hackers who stay a step ahead of malicious hackers must be computer systems experts who are very knowledgeable about computer programming, networking, and operating systems. In-depth knowledge about highly targeted platforms (such as Windows, Unix, and Linux) is also a requirement. Patience, persistence, and immense perseverance are important qualities for ethical hackers because of the length of time and level of concentration required for most attacks to pay off. Networking, web programming, and database skills are all useful in performing 3 Ethical Hacker Job Description[http://www.ehow.com/info_8780628_ethical-hacker-job-description.html]
10CHAPTER 1: INTRODUCTION TO ETHICAL HACKING ethical hacking and vulnerability testing. Most ethical hackers are well rounded with wide knowledge on computers and networking. In some cases, an ethical hacker will act as part of a “tiger team” who has been hired to test network and computer systems and find vulnerabilities. In this case, each member of the team will have distinct specialties, and the ethical hacker may need more specialized skills in one area of computer systems and networking. Most ethical hackers are knowledgeable about security areas and related issues but don’t necessarily have a strong command of the countermeasures that can prevent attacks. Knowledge of ethical hacking and penetration testing techniques including the following:  Penetration Testing / Ethical Hacking tools and forms of attack and associated tools (Internet Security Scanner, System Security Scanner, SATAN) using war dialing and internet scanning.  Hacker exploit scripts/programs to test whether vendor/developer patches operate as intended and fix the identified vulnerability or identify the malicious code.  Intrusion Detection Environments and forms of attack with the ability to perform analysis of the systems and application logs for Intrusion signs.  Firewalls (Gauntlet, Cisco PIX, CheckPoint, Raptor).  Network Traffic Monitoring Tools (Network General Sniffer, LANalyzer, NetXray).  Network Protocols (TCP/IP, NetBIOS / Netbeui, IPX, OSI) and associated technologies (DNS, FTP, HTTP).  Network Topologies (Token Passing, Ethernet).  Operating Systems: UNIX, Argus, Solaris and Microsoft Operating Environments.  Advanced knowledge of security and encryption mechanisms and strong experience with systems implementation.  Application Servers (Websphere, Weblogic).  Web Servers (Netscape, Apache, Microsoft).  Mail Servers (POP3).  Security Authorization/Transaction, Network Security (VPN, SSL, Smart Cards, Biometrics).  Cryptographic tools, methods, systems and protocols: HTTPS, IPsec, PGP, DES etc.  Exceptional interpersonal communication and presentation skills are must.
11CHAPTER 2: ETHICAL HACKING METHODOLOGY CHAPTER 2: ETHICAL HACKING METHODOLOGY 2.1 THE PHASES OF ETHICAL HACKING The process of ethical hacking can be broken down into five distinct phases. An ethical hacker follows processes these steps to gain and maintain entry into a computer system Figure 1.1 illustrates the five phases that hackers generally follow in hacking a computer system. OBJECTIVE COVERED IN THIS CHAPTER:  THE PHASES OF ETHICAL HACKING  Phase 1- Reconnaissance  Phase 2- Scanning  Phase 3- Gaining Access  Phase 4- Maintaining Access  Phase 5- Clearing Tracks  UNDERSTANDING TESTING TYPES  TOOLS USED IN ETHICAL HACK
12CHAPTER 2: ETHICAL HACKING METHODOLOGY Figure 2.1 : The phases of Ethical hacking. 2.1.1 Phase 1- Reconnaissance The first and most important step in an attack involves finding out as much information as possible about the TOE (Target of Evaluation). A passive information gathering approach is taken and will not raise any alarms. Patience and creativity are also necessary as this can be the longest phase of the attack. In the world of ethical hacking, reconnaissance applies to the process of information gathering. Reconnaissance is a catch all term for watching the hacking target and gathering information about how, when, and where they do things. A. Understanding Competitive Intelligence Competitive intelligence means information gathering about competitors’ products, marketing, and technologies. Several tools exist for the purpose of competitive intelligence gathering and can be used by hackers to gather information about a potential target.
13CHAPTER 2: ETHICAL HACKING METHODOLOGY  Using SpyFu Go to the www.spyfu.com website and enter the website address of the target in the search field: Figure 2.2: Competitive intelligence using SpyFu  Using KeywordSpy Go to the www.keywordspy.com website and enter the website address of the target in the search field: Figure 2.3: Competitive intelligence using KeywordSpy Review the report and determine valuable keywords, links, or other information. B. Information-Gathering Methodology Information gathering can be broken into seven logical steps. Footprinting is performed during the first two steps of unearthing initial information and locating the network range.
14CHAPTER 2: ETHICAL HACKING METHODOLOGY Figure 2.4: Information-Gathering methodology  Footprinting Footprinting is defined as the process of creating a blueprint or map of an organization’s network and systems. Information gathering is also known as footprinting an organization. Here are some of the pieces of information to be gathered about a target during footprinting:  Domain name  Network blocks  Network services and applications  System architecture  Intrusion detection system  Authentication mechanisms  Specific IP addresses  Access control mechanisms  Phone numbers  Contact addresses Once this information is compiled, it can give a hacker better insight into the organization, where valuable information is stored, and how it can be accessed.
15CHAPTER 2: ETHICAL HACKING METHODOLOGY  Footprinting Tools Some of the common tools used for footprinting and information gathering are as follows:  Domain name lookup  Whois  NSlookup  Sam Spade  Finding the Address Range of the Network Every ethical hacker needs to understand how to find the network range and subnet mask of the target system. IP addresses are used to locate, scan, and connect to target systems. You can find IP addresses in Internet registries such as ARIN or the Internet Assigned Numbers Authority (IANA). An ethical hacker may also need to find the geographic location of the target system or network. This task can be accomplished by tracing the route a message takes as it’s sent to the destination IP address. You can use tools like traceroute, VisualRoute, and NeoTrace to identify the route to the target. 2.1.2 Phase 2- Scanning Scanning is the process of locating systems that are alive and responding on the network. Ethical hackers use scanning to identify target systems’ IP addresses. Scanning is also used to determine whether a system is on the network and available. Scanning tools are used to gather information about a system such as IP addresses, the operating system, and services running on the target computer. Table 2.1 lists the three types of scanning. Scanning type Purpose Port scanning Determines open ports and services Network scanning Identifies IP addresses on a given network or subnet Vulnerability scanning Discovers presence of known weaknesses on target systems
16CHAPTER 2: ETHICAL HACKING METHODOLOGY a) Port Scanning Port scanning is the process of identifying open and available TCP/IP ports on a system. Port-scanning tools enable a hacker to learn about the services available on a given system. Each service or application on a machine is associated with a well-known port number. Port Numbers are divided into three ranges: Well-Known Ports: 0-1023 Registered Ports: 1024-49151 Dynamic Ports: 49152-65535 b) Network Scanning Network scanning is a procedure for identifying active hosts on a network, either to attack them or as a network security assessment. Hosts are identified by their individual IP addresses. Network-scanning tools attempt to identify all the live or responding hosts on the network and their corresponding IP addresses. c) Vulnerability Scanning Vulnerability scanning is the process of proactively identifying the vulnerabilities of computer systems on a network. Generally, a vulnerability scanner first identifies the operating system and version number, including service packs that may be installed. Then, the scanner identifies weaknesses or vulnerabilities in the operating system. During the later attack phase, a hacker can exploit those weaknesses in order to gain access to the system. 2.1.3 Phase 3- Gaining Access Phase 3 is when the real hacking takes place. Vulnerabilities exposed during the reconnaissance and scanning phase are now exploited to gain access to the target system. The hacking attack can be delivered to the target system via a local area network (LAN), either wired or wireless; local access to a PC; the Internet; or offline. Gaining access is known in the hacker world as owning the system because once a system has been hacked, the hacker has control and can use that system as they wish.
17CHAPTER 2: ETHICAL HACKING METHODOLOGY A. Cracking a Password Manual password cracking involves attempting to log on with different passwords. The hacker follows these steps:  Find a valid user account (such as Administrator or Guest).  Create a list of possible passwords.  Rank the passwords from high to low probability.  Key in each password.  Try again until a successful password is found. Passwords are stored in the Security Accounts Manager (SAM) file on a Windows system and in a password shadow file on a Linux system. B. Understanding Keyloggers and Other Spyware Technologies If all other attempts to gather passwords fail, then a keystroke logger is the tool of choice for hackers. Keystroke loggers (keyloggers) can be implemented either using hardware or software. Hardware keyloggers are small hardware devices that connect the keyboard to the PC and save every keystroke into a file or in the memory of the hardware device. In order to install a hardware keylogger, a hacker must have physical access to the system. Software keyloggers are pieces of stealth software that sit between the keyboard hardware and the operating system so that they can record every keystroke. Software Keyloggers can be deployed on a system by Trojans or viruses. 2.1.4 Phase 4- Maintaining Access Once a hacker has gained access to a target system, they want to keep that access for future exploitation and attacks. Sometimes, hackers harden the system from other hackers or security personnel by securing their exclusive access with backdoors, root kits, and Trojans. Once the hacker owns the system, they can use it as a base to launch additional attacks. In this case, the owned system is sometimes referred to as a zombie system. Escalating Privileges Once a hacker has gaining access to the system, the next step is to execute applications. Generally the hacker needs to have an account with administrator-level access in order to install programs, and that is why escalating privileges is so important. In the following
18CHAPTER 2: ETHICAL HACKING METHODOLOGY sections, we’ll see what hackers can do with your system once they have administrator privileges.  Executing Applications Once a hacker has been able to access an account with administrator privileges, the next thing they do is execute applications on the target system. The purpose of executing applications may be to install a backdoor on the system, install a keystroke logger to gather confidential information, copy files, or just cause damage to the system—essentially, anything the hacker wants to do on the system. Once the hacker is able to execute applications, the system is considered owned and under the control of the hacker.  Buffer Overflows Buffer overflows are hacking attempts that exploit a flaw in an application’s code. Essentially, the buffer overflow attack sends too much information to a field variable in an application, which can cause an application error. Most times, the application doesn’t know what action to perform next because it’s been overwritten with the overflow data. Therefore, it either executes the command in the overflow data or displays a command prompt to allow the user to enter the next command. The command prompt or shell is the key for a hacker and can be used to execute other applications.  Understanding Root kits A rootkit is a type of program often used to hide utilities on a compromised system. Rootkits include so-called backdoors to help an attacker subsequently access the system more easily. Planting Rootkits on XP Machines The rootkit contains a kernel mode device driver called _root_.sys and a launcher program called DEPLOY.EXE. After gaining access to the target system, the attacker copies _root_.sys and DEPLOY.EXE onto the target system and executes DEPLOY.EXE. Doing so installs the rootkit device driver and starts it. The attacker later deletes DEPLOY.EXE from the target machine. The attacker can then stop and restart the rootkit at will by using the commands net stop _root_ and net start _root_. Once the rootkit is started, the file _root_.sys no longer appears in directory listings; the
19CHAPTER 2: ETHICAL HACKING METHODOLOGY rootkit intercepts system calls for file listings and hides all files beginning with _root_ from display. 2.1.5 Phase 5- Clearing Tracks Once hackers have been able to gain and maintain access, they cover their tracks to avoid detection by security personnel, to continue to use the owned system, to remove evidence of hacking, or to avoid legal action. Hackers try to remove all traces of the attack, such as log files or intrusion detection system (IDS) alarms. Examples of activities during this phase of the attack include:  Steganography  Using a tunneling protocol  Altering log files 2.2 UNDERSTANDING TESTING TYPES When performing a security test or penetration test, an ethical hacker utilizes one or more types of testing on the system. Each type simulates an attacker with different levels of knowledge about the target organization. These types are as follows: Black Box Black-box testing involves performing a security evaluation and testing with no prior knowledge of the network infrastructure or system to be tested. Testing simulates an attack by a malicious hacker outside the organization’s security perimeter. Black-box testing can take the longest amount of time and most effort as no information is given to the testing team. Therefore, the information-gathering, reconnaissance, and scanning phases will take a great deal of time. The advantage of this type of testing is that it most closely simulates a real malicious attacker’s methods and results. The disadvantages are primarily the amount of time and consequently additional cost incurred by the testing team. White Box White-box testing involves performing a security evaluation and testing with complete knowledge of the network infrastructure such as a network administrator would have. This testing is much faster than the other two methods as the ethical hacker can jump right to the attack phase, thus bypassing all the information-gathering, reconnaissance, and scanning phases. Many security audits consist of white-box testing to avoid the additional time and expense of black-box testing.
20CHAPTER 2: ETHICAL HACKING METHODOLOGY Gray Box Gray-box testing involves performing a security evaluation and testing internally. Testing examines the extent of access by insiders within the network. The purpose of this test is to simulate the most common form of attack, those that are initiated from within the network. The idea is to test or audit the level of access given to employees or contractors and see if those privileges can be escalated to a higher level. 2.3 TOOLS USED IN ETHICAL HACK These are some tools used in different phases of ethical hacking as: Table 2.2 Tools for different phases of hacking. PHASES TOPIC TOOLS Reconnaissance Network Mapping Cheops-ng, traceroute Network scanning tcpdump, nmap, strobe, rprobe Security and vulnerability scanning Nessus, ISS, Cybercop Firewall scanning FireWalk Application scanning Whisker, Archilles, Legion War dialing Phone Sweep, ThcScan, LoginH OS Fingerprinting nmap, queso Banner enumeration Banner enumeration, enum, ruser WLAN NetStumbler, dsnort Probe and attack Web Exploits Showcode, Unicode exploits Local Exploits sechole, pwddump, dumpacl, PamSlam Remote exploits PCAnywhere, nfs exploits, NetOp, sedminX. Buffer Overflow BFS, Slugger2 Trojans NetBus Brute Force AccessDiver, GoldenEye, L0pth Crack, Jack the ripper Security scanner Nessus, ISS Network attack DoS Tools(trinno, TFN) Listening Sniffers Ethercap, tcpdump, juggemaut Application Xkey, WebSpy First Access Password Cracking L0pth Crack, Jack the ripper Mail Bombing Avalanche Hijacking Arp0c, ArpRedirect, Ethereal Stealth Rootkits Different root kits depending on OS Trojans Netbus, BackOrifice
21CHAPTER 3: CONCLUSION CHAPTER 3: CONCLUSION 3.1 HOW TO BE ETHICAL Ethical hacking is usually conducted in a structured and organized manner, usually as part of a penetration test or security audit. The ethical hacker must follow certain rules to ensure that all ethical and moral obligations are met. An ethical hacker must do the following:  Gain authorization from the client and have a signed contract giving the tester permission to perform the test.  Maintain and follow a nondisclosure agreement (NDA) with the client in the case of confidential information disclosed during the test.  Maintain confidentiality when performing the test. Information gathered may contain sensitive information. No information about the test or company confidential data should ever be disclosed to a third party.  Perform the test up to but not beyond the agreed-upon limits. For example, DoS attacks should only be run as part of the test if they have previously been agreed upon with the client. Loss of revenue, goodwill, and worse could befall an organization whose servers or applications are unavailable to customers as a result of the testing. OBJECTIVE COVERED IN THIS CHAPTER:  HOW TO BE ETHICAL  PERFORMING A PENETRATION TEST  ETHICAL HACKING REPORT
22CHAPTER 3: CONCLUSION 3.1.1 PERFORMING A PENETRATION TEST Many ethical hackers acting in the role of security professionals use their skills to perform security evaluations or penetration tests. These tests and evaluations have three phases, generally ordered as follows in Figure 5: Figure 3.1: Phases of penetration testing Preparation This phase involves a formal agreement between the ethical hacker and the organization. This agreement should include the full scope of the test, the types of attacks (inside or outside) to be used, and the testing types: white, black, or gray box. Conduct Security Evaluation During this phase, the tests are conducted, after which the tester prepares a formal report of vulnerabilities and other findings. Conclusion The findings are presented to the organization in this phase, along with any recommendations to improve security. 3.2 ETHICAL HACKING REPORT The result of a network penetration test or security audit is an ethical hacking, or pen test report. Either name is acceptable, or they can be used interchangeably. This report details the results of the hacking activity, the types of tests performed, and the hacking methods used. The results are compared against the expectations initially agreed upon with the customer. Any vulnerability identified are detailed, and countermeasures are suggested. This document is usually delivered to the organization in hard-copy format, for security reasons. The details of the ethical hacking report must be kept confidential, because they highlight the organization’s security risks and Conclusion Conduct Security Evaluation Preparation
23 vulnerabilities. If this document falls into the wrong hands, the results could be disastrous for the organization. It would essentially give someone the roadmap to all the security weaknesses of an organization.
24REFERENCES REFERENCES [1].Kimberly Graves. “CEH: Certified Ethical Hacker Study Guide”, John Wiley & Sons, Inc. [2].C. C. Palmer. “Ethical hacking”, IBM SYSTEMS JOURNAL, VOL 40, NO 3, 2001. [3].Steven DeFino, Larry Greenblatt. “CEH: Certified Ethical Hacker Review Guide version 7.1” [4].Ethical Hacking – GIAC, URL: www.giac.org/paper/gsec/2468/ethical-hacking/104292 [5].Hacker (computer security), URL http://en.wikipedia.org/wiki/Hacker_(computer_security) [6].Ethical Hacker Job Description, URL http://www.ehow.com/info_8780628_ethical-hacker- job-description.html

Recomendados

Ethical hacking presentation
Ethical hacking presentationEthical hacking presentation
Ethical hacking presentationSuryansh Srivastava
 
Cyber crime
Cyber crimeCyber crime
Cyber crimeMuhammad Osama Khalid
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical HackingSanu Subham
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical HackingKeith Brooks
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hackingNaveen Sihag
 
Cyber attacks and IT security management in 2025
Cyber attacks and IT security management in 2025Cyber attacks and IT security management in 2025
Cyber attacks and IT security management in 2025Radar Cyber Security
 
CYBER SECURITY
CYBER SECURITYCYBER SECURITY
CYBER SECURITYPranjalShah18
 
Ethical Hacking Powerpoint
Ethical Hacking PowerpointEthical Hacking Powerpoint
Ethical Hacking PowerpointRen Tuazon
 

Recomendados

Ethical hacking presentation
Ethical hacking presentationEthical hacking presentation
Ethical hacking presentationSuryansh Srivastava
 
Cyber crime
Cyber crimeCyber crime
Cyber crimeMuhammad Osama Khalid
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical HackingSanu Subham
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical HackingKeith Brooks
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hackingNaveen Sihag
 
Cyber attacks and IT security management in 2025
Cyber attacks and IT security management in 2025Cyber attacks and IT security management in 2025
Cyber attacks and IT security management in 2025Radar Cyber Security
 
CYBER SECURITY
CYBER SECURITYCYBER SECURITY
CYBER SECURITYPranjalShah18
 
Ethical Hacking Powerpoint
Ethical Hacking PowerpointEthical Hacking Powerpoint
Ethical Hacking PowerpointRen Tuazon
 
Anatomy of a cyber attack
Anatomy of a cyber attackAnatomy of a cyber attack
Anatomy of a cyber attackMark Silver
 
Cybercrime and Security
Cybercrime and SecurityCybercrime and Security
Cybercrime and SecurityNoushad Hasan
 
Ethical hacking ppt
Ethical hacking pptEthical hacking ppt
Ethical hacking pptNitesh Dubey
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hackingVipinYadav257
 
CyberSecurity
CyberSecurityCyberSecurity
CyberSecuritydivyanshigarg4
 
Final report ethical hacking
Final report ethical hackingFinal report ethical hacking
Final report ethical hackingsamprada123
 
1. introduction to cyber security
1. introduction to cyber security1. introduction to cyber security
1. introduction to cyber securityAnimesh Roy
 
Cybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationCybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationTriCorps Technologies
 
Information Security vs IT - Key Roles & Responsibilities
Information Security vs IT - Key Roles & ResponsibilitiesInformation Security vs IT - Key Roles & Responsibilities
Information Security vs IT - Key Roles & ResponsibilitiesKroll
 
Introduction to ethical hacking
Introduction to ethical hackingIntroduction to ethical hacking
Introduction to ethical hackingVikram Khanna
 
Network Security 1st Lecture
Network Security 1st LectureNetwork Security 1st Lecture
Network Security 1st Lecturebabak danyal
 
Basics of Cyber Security
Basics of Cyber SecurityBasics of Cyber Security
Basics of Cyber SecurityNikunj Thakkar
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023PECB
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical HackingTharindu Kalubowila
 
CYBER SECURITY
CYBER SECURITYCYBER SECURITY
CYBER SECURITYVaishak Chandran
 
Cyber Security Presentation "It Will Never Happen To Me"
Cyber Security Presentation "It Will Never Happen To Me" Cyber Security Presentation "It Will Never Happen To Me"
Cyber Security Presentation "It Will Never Happen To Me" Simon Salter
 
CYBER SECURITY
CYBER SECURITYCYBER SECURITY
CYBER SECURITYMohammad Shakirul islam
 
Cyber Security Vulnerabilities
Cyber Security VulnerabilitiesCyber Security Vulnerabilities
Cyber Security VulnerabilitiesSiemplify
 
Information security & ethical hacking
Information security & ethical hackingInformation security & ethical hacking
Information security & ethical hackingSahil Rai
 
Ethical hacking a licence to hack
Ethical hacking a licence to hackEthical hacking a licence to hack
Ethical hacking a licence to hackDharmesh Makwana
 
Full seminar report on ethical hacking
Full seminar report on ethical hackingFull seminar report on ethical hacking
Full seminar report on ethical hackingGeorgekutty Francis
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hackingNitheesh Adithyan
 

Más contenido relacionado

La actualidad más candente

Anatomy of a cyber attack
Anatomy of a cyber attackAnatomy of a cyber attack
Anatomy of a cyber attackMark Silver
 
Cybercrime and Security
Cybercrime and SecurityCybercrime and Security
Cybercrime and SecurityNoushad Hasan
 
Ethical hacking ppt
Ethical hacking pptEthical hacking ppt
Ethical hacking pptNitesh Dubey
 
Final report ethical hacking
Final report ethical hackingFinal report ethical hacking
Final report ethical hackingsamprada123
 
1. introduction to cyber security
1. introduction to cyber security1. introduction to cyber security
1. introduction to cyber securityAnimesh Roy
 
Cybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationCybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationTriCorps Technologies
 
Information Security vs IT - Key Roles & Responsibilities
Information Security vs IT - Key Roles & ResponsibilitiesInformation Security vs IT - Key Roles & Responsibilities
Information Security vs IT - Key Roles & ResponsibilitiesKroll
 
Introduction to ethical hacking
Introduction to ethical hackingIntroduction to ethical hacking
Introduction to ethical hackingVikram Khanna
 
Network Security 1st Lecture
Network Security 1st LectureNetwork Security 1st Lecture
Network Security 1st Lecturebabak danyal
 
Basics of Cyber Security
Basics of Cyber SecurityBasics of Cyber Security
Basics of Cyber SecurityNikunj Thakkar
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023PECB
 
Cyber Security Presentation "It Will Never Happen To Me"
Cyber Security Presentation "It Will Never Happen To Me" Cyber Security Presentation "It Will Never Happen To Me"
Cyber Security Presentation "It Will Never Happen To Me" Simon Salter
 
Cyber Security Vulnerabilities
Cyber Security VulnerabilitiesCyber Security Vulnerabilities
Cyber Security VulnerabilitiesSiemplify
 
Information security & ethical hacking
Information security & ethical hackingInformation security & ethical hacking
Information security & ethical hackingSahil Rai
 
Ethical hacking a licence to hack
Ethical hacking a licence to hackEthical hacking a licence to hack
Ethical hacking a licence to hackDharmesh Makwana
 

La actualidad más candente (20)

Anatomy of a cyber attack
Anatomy of a cyber attackAnatomy of a cyber attack
Anatomy of a cyber attack
 
Cybercrime and Security
Cybercrime and SecurityCybercrime and Security
Cybercrime and Security
 
Ethical hacking ppt
Ethical hacking pptEthical hacking ppt
Ethical hacking ppt
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hacking
 
CyberSecurity
CyberSecurityCyberSecurity
CyberSecurity
 
Final report ethical hacking
Final report ethical hackingFinal report ethical hacking
Final report ethical hacking
 
1. introduction to cyber security
1. introduction to cyber security1. introduction to cyber security
1. introduction to cyber security
 
Cybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your OrganizationCybersecurity Attack Vectors: How to Protect Your Organization
Cybersecurity Attack Vectors: How to Protect Your Organization
 
Information Security vs IT - Key Roles & Responsibilities
Information Security vs IT - Key Roles & ResponsibilitiesInformation Security vs IT - Key Roles & Responsibilities
Information Security vs IT - Key Roles & Responsibilities
 
Introduction to ethical hacking
Introduction to ethical hackingIntroduction to ethical hacking
Introduction to ethical hacking
 
Network Security 1st Lecture
Network Security 1st LectureNetwork Security 1st Lecture
Network Security 1st Lecture
 
Basics of Cyber Security
Basics of Cyber SecurityBasics of Cyber Security
Basics of Cyber Security
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
 
CYBER SECURITY
CYBER SECURITYCYBER SECURITY
CYBER SECURITY
 
Cyber Security Presentation "It Will Never Happen To Me"
Cyber Security Presentation "It Will Never Happen To Me" Cyber Security Presentation "It Will Never Happen To Me"
Cyber Security Presentation "It Will Never Happen To Me"
 
CYBER SECURITY
CYBER SECURITYCYBER SECURITY
CYBER SECURITY
 
Cyber Security Vulnerabilities
Cyber Security VulnerabilitiesCyber Security Vulnerabilities
Cyber Security Vulnerabilities
 
Information security & ethical hacking
Information security & ethical hackingInformation security & ethical hacking
Information security & ethical hacking
 
Ethical hacking a licence to hack
Ethical hacking a licence to hackEthical hacking a licence to hack
Ethical hacking a licence to hack
 

Destacado

Full seminar report on ethical hacking
Full seminar report on ethical hackingFull seminar report on ethical hacking
Full seminar report on ethical hackingGeorgekutty Francis
 
Introduction To Ethical Hacking
Introduction To Ethical HackingIntroduction To Ethical Hacking
Introduction To Ethical HackingNeel Kamal
 
Ethical Hacking A high-level information security study on protecting a comp...
Ethical Hacking A high-level information security study on protecting a comp...Ethical Hacking A high-level information security study on protecting a comp...
Ethical Hacking A high-level information security study on protecting a comp...Quinnipiac University
 
HOW TO HACK FACEBOOK USING LAPTOP
HOW TO HACK FACEBOOK USING LAPTOPHOW TO HACK FACEBOOK USING LAPTOP
HOW TO HACK FACEBOOK USING LAPTOPJune_Johnson
 
ethical hacking in the modern times
ethical hacking in the modern timesethical hacking in the modern times
ethical hacking in the modern timesjeshin jose
 
TYPES OF HACKING
TYPES OF HACKINGTYPES OF HACKING
TYPES OF HACKINGSHERALI445
 
Hacking & its types
Hacking & its typesHacking & its types
Hacking & its typesSai Sakoji
 
CMIT 321 FINAL EXAM 2016
CMIT 321 FINAL EXAM 2016CMIT 321 FINAL EXAM 2016
CMIT 321 FINAL EXAM 2016HamesKellor
 

Destacado (20)

Full seminar report on ethical hacking
Full seminar report on ethical hackingFull seminar report on ethical hacking
Full seminar report on ethical hacking
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hacking
 
Introduction To Ethical Hacking
Introduction To Ethical HackingIntroduction To Ethical Hacking
Introduction To Ethical Hacking
 
Ethical hacking.
Ethical hacking.Ethical hacking.
Ethical hacking.
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
 
Hacking ppt
Hacking pptHacking ppt
Hacking ppt
 
Ethical Hacking A high-level information security study on protecting a comp...
Ethical Hacking A high-level information security study on protecting a comp...Ethical Hacking A high-level information security study on protecting a comp...
Ethical Hacking A high-level information security study on protecting a comp...
 
HOW TO HACK FACEBOOK USING LAPTOP
HOW TO HACK FACEBOOK USING LAPTOPHOW TO HACK FACEBOOK USING LAPTOP
HOW TO HACK FACEBOOK USING LAPTOP
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
 
ETHICAL HACKING PPT
ETHICAL HACKING PPTETHICAL HACKING PPT
ETHICAL HACKING PPT
 
ethical hacking in the modern times
ethical hacking in the modern timesethical hacking in the modern times
ethical hacking in the modern times
 
TYPES OF HACKING
TYPES OF HACKINGTYPES OF HACKING
TYPES OF HACKING
 
Hacking & its types
Hacking & its typesHacking & its types
Hacking & its types
 
Hacking
HackingHacking
Hacking
 
Advanced persistent threats(APT)
Advanced persistent threats(APT)Advanced persistent threats(APT)
Advanced persistent threats(APT)
 
CMIT 321 FINAL EXAM 2016
CMIT 321 FINAL EXAM 2016CMIT 321 FINAL EXAM 2016
CMIT 321 FINAL EXAM 2016
 
Hacking (cs192 report )
Hacking (cs192 report )Hacking (cs192 report )
Hacking (cs192 report )
 
Hacking
HackingHacking
Hacking
 
Exploitation
ExploitationExploitation
Exploitation
 
All about Hacking
All about HackingAll about Hacking
All about Hacking
 

Similar a Ethical hacking

ethical hacking report
ethical hacking report ethical hacking report
ethical hacking reportAkhilesh Patel
 
Ashar Shaikh A-84 SEMINAR.pptx
Ashar Shaikh A-84 SEMINAR.pptxAshar Shaikh A-84 SEMINAR.pptx
Ashar Shaikh A-84 SEMINAR.pptxasharshaikh8
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hackingAnumadil1
 
GETTING STARTED WITH THE ETHICAL HACKING.pptx
GETTING STARTED WITH THE ETHICAL HACKING.pptxGETTING STARTED WITH THE ETHICAL HACKING.pptx
GETTING STARTED WITH THE ETHICAL HACKING.pptxBishalRay8
 
IRJET- Study of Hacking and Ethical Hacking
IRJET- Study of Hacking and Ethical HackingIRJET- Study of Hacking and Ethical Hacking
IRJET- Study of Hacking and Ethical HackingIRJET Journal
 
Cyber Security PPT
Cyber Security PPTCyber Security PPT
Cyber Security PPTashish kumar
 
Selected advanced themes in ethical hacking and penetration testing
Selected advanced themes in ethical hacking and penetration testingSelected advanced themes in ethical hacking and penetration testing
Selected advanced themes in ethical hacking and penetration testingCSITiaesprime
 
BASICS OF ETHICAL HACKING
BASICS OF ETHICAL HACKINGBASICS OF ETHICAL HACKING
BASICS OF ETHICAL HACKINGDrm Kapoor
 
61370436 main-case-study
61370436 main-case-study61370436 main-case-study
61370436 main-case-studyhomeworkping4
 
IRJET- Impact of Ethical Hacking on Business and Governments
IRJET- Impact of Ethical Hacking on Business and GovernmentsIRJET- Impact of Ethical Hacking on Business and Governments
IRJET- Impact of Ethical Hacking on Business and GovernmentsIRJET Journal
 
CYBER SECURITY AND ETHICAL HACKING.pptx
CYBER SECURITY AND ETHICAL HACKING.pptxCYBER SECURITY AND ETHICAL HACKING.pptx
CYBER SECURITY AND ETHICAL HACKING.pptxRiyaNair19
 
Ethical-Hacking-Course-After-12th.pptx
Ethical-Hacking-Course-After-12th.pptxEthical-Hacking-Course-After-12th.pptx
Ethical-Hacking-Course-After-12th.pptxNarangYadav
 
Ethical-Hacking-ppt.pptx
Ethical-Hacking-ppt.pptxEthical-Hacking-ppt.pptx
Ethical-Hacking-ppt.pptxMaheshDhope1
 
PowerPoint Presentation On Ethical Hacking in Brief (Simple)
PowerPoint Presentation On Ethical Hacking in Brief (Simple)PowerPoint Presentation On Ethical Hacking in Brief (Simple)
PowerPoint Presentation On Ethical Hacking in Brief (Simple)Shivam Sahu
 
Ethical Hacking and Network Defence 1.pptx
Ethical Hacking and Network Defence 1.pptxEthical Hacking and Network Defence 1.pptx
Ethical Hacking and Network Defence 1.pptxJanani S
 
Introduction To Ethical Hacking
Introduction To Ethical HackingIntroduction To Ethical Hacking
Introduction To Ethical Hackingchakrekevin
 
A REVIEW PAPER ON ETHICAL HACKING
A REVIEW PAPER ON ETHICAL HACKINGA REVIEW PAPER ON ETHICAL HACKING
A REVIEW PAPER ON ETHICAL HACKINGNathan Mathis
 

Similar a Ethical hacking (20)

ethical hacking report
ethical hacking report ethical hacking report
ethical hacking report
 
Ashar Shaikh A-84 SEMINAR.pptx
Ashar Shaikh A-84 SEMINAR.pptxAshar Shaikh A-84 SEMINAR.pptx
Ashar Shaikh A-84 SEMINAR.pptx
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hacking
 
GETTING STARTED WITH THE ETHICAL HACKING.pptx
GETTING STARTED WITH THE ETHICAL HACKING.pptxGETTING STARTED WITH THE ETHICAL HACKING.pptx
GETTING STARTED WITH THE ETHICAL HACKING.pptx
 
IRJET- Study of Hacking and Ethical Hacking
IRJET- Study of Hacking and Ethical HackingIRJET- Study of Hacking and Ethical Hacking
IRJET- Study of Hacking and Ethical Hacking
 
Cyber Security PPT
Cyber Security PPTCyber Security PPT
Cyber Security PPT
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hacking
 
Selected advanced themes in ethical hacking and penetration testing
Selected advanced themes in ethical hacking and penetration testingSelected advanced themes in ethical hacking and penetration testing
Selected advanced themes in ethical hacking and penetration testing
 
BASICS OF ETHICAL HACKING
BASICS OF ETHICAL HACKINGBASICS OF ETHICAL HACKING
BASICS OF ETHICAL HACKING
 
61370436 main-case-study
61370436 main-case-study61370436 main-case-study
61370436 main-case-study
 
IRJET- Impact of Ethical Hacking on Business and Governments
IRJET- Impact of Ethical Hacking on Business and GovernmentsIRJET- Impact of Ethical Hacking on Business and Governments
IRJET- Impact of Ethical Hacking on Business and Governments
 
CYBER SECURITY AND ETHICAL HACKING.pptx
CYBER SECURITY AND ETHICAL HACKING.pptxCYBER SECURITY AND ETHICAL HACKING.pptx
CYBER SECURITY AND ETHICAL HACKING.pptx
 
Ethical-Hacking-Course-After-12th.pptx
Ethical-Hacking-Course-After-12th.pptxEthical-Hacking-Course-After-12th.pptx
Ethical-Hacking-Course-After-12th.pptx
 
Ethical-Hacking-ppt.pptx
Ethical-Hacking-ppt.pptxEthical-Hacking-ppt.pptx
Ethical-Hacking-ppt.pptx
 
Ethical hacking
Ethical hackingEthical hacking
Ethical hacking
 
PowerPoint Presentation On Ethical Hacking in Brief (Simple)
PowerPoint Presentation On Ethical Hacking in Brief (Simple)PowerPoint Presentation On Ethical Hacking in Brief (Simple)
PowerPoint Presentation On Ethical Hacking in Brief (Simple)
 
ethical hacking
ethical hackingethical hacking
ethical hacking
 
Ethical Hacking and Network Defence 1.pptx
Ethical Hacking and Network Defence 1.pptxEthical Hacking and Network Defence 1.pptx
Ethical Hacking and Network Defence 1.pptx
 
Introduction To Ethical Hacking
Introduction To Ethical HackingIntroduction To Ethical Hacking
Introduction To Ethical Hacking
 
A REVIEW PAPER ON ETHICAL HACKING
A REVIEW PAPER ON ETHICAL HACKINGA REVIEW PAPER ON ETHICAL HACKING
A REVIEW PAPER ON ETHICAL HACKING
 

Último

Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Celine George
 
ROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptxROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptxVanesaIglesias10
 
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdfGrade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdfJemuel Francisco
 
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSGRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSJoshuaGantuangco2
 
MULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptx
MULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptxMULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptx
MULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptxAnupkumar Sharma
 
Music 9 - 4th quarter - Vocal Music of the Romantic Period.pptx
Music 9 - 4th quarter - Vocal Music of the Romantic Period.pptxMusic 9 - 4th quarter - Vocal Music of the Romantic Period.pptx
Music 9 - 4th quarter - Vocal Music of the Romantic Period.pptxleah joy valeriano
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...JhezDiaz1
 
4.16.24 Poverty and Precarity--Desmond.pptx
4.16.24 Poverty and Precarity--Desmond.pptx4.16.24 Poverty and Precarity--Desmond.pptx
4.16.24 Poverty and Precarity--Desmond.pptxmary850239
 
Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...Seán Kennedy
 
Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)Mark Reed
 
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...Nguyen Thanh Tu Collection
 
Activity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translationActivity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translationRosabel UA
 
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...JojoEDelaCruz
 
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONTHEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONHumphrey A Beña
 
Karra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptxKarra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptxAshokKarra1
 
Food processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture honsFood processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture honsManeerUddin
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatYousafMalik24
 

Último (20)

Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17
 
ROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptxROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptx
 
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdfGrade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
 
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSGRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
 
MULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptx
MULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptxMULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptx
MULTIDISCIPLINRY NATURE OF THE ENVIRONMENTAL STUDIES.pptx
 
Music 9 - 4th quarter - Vocal Music of the Romantic Period.pptx
Music 9 - 4th quarter - Vocal Music of the Romantic Period.pptxMusic 9 - 4th quarter - Vocal Music of the Romantic Period.pptx
Music 9 - 4th quarter - Vocal Music of the Romantic Period.pptx
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
 
4.16.24 Poverty and Precarity--Desmond.pptx
4.16.24 Poverty and Precarity--Desmond.pptx4.16.24 Poverty and Precarity--Desmond.pptx
4.16.24 Poverty and Precarity--Desmond.pptx
 
Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...
 
FINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptx
FINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptxFINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptx
FINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptx
 
Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)
 
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
 
Activity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translationActivity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translation
 
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptxYOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
 
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
 
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONTHEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
 
Karra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptxKarra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptx
 
Food processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture honsFood processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture hons
 
Raw materials used in Herbal Cosmetics.pptx
Raw materials used in Herbal Cosmetics.pptxRaw materials used in Herbal Cosmetics.pptx
Raw materials used in Herbal Cosmetics.pptx
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice great
 

Ethical hacking

  • 1. 1CHAPTER 1: INTRODUCTION TO ETHICAL HACKING [ETHICAL HACKING] A Seminar Report Submitted to M.J.P Rohilkhand University, Bareilly In Partial Fulfillment of Bachelor in Computer Application BCA III Year V Semester Submitted By: Mohammad Affan Department of Computer Applications IFTM, Lodhiput Rajput, Delhi Road, Moradabad
  • 2. 2CHAPTER 1: INTRODUCTION TO ETHICAL HACKING CERTIFICATE This is to certify that the Seminar Report entitle “ETHICAL HACKING” has been submitted by “Mr. Mohammad Affan” in partial in fulfillment for the requirement of the degree of Bachelor in Computer Applications BCA III Year, V semester for the academic Session 2012-13. This seminar work is carried out under the supervision and guidance of “Mr. Deepak Sharma”, Asst. Professor, MCA department, I.F.T.M, Moradabad and he/ she has been undergone the indispensable work as prescribed by M.J.P Rohilkhand University, Bareilly Mr. Deepak Sharma Mr. Rahul Mishra Asst. Professor, Head of department Department Of Computer Applications Department Of Computer Applications I.F.T.M, Moradabad I.F.T.M, Moradabad Date:
  • 3. 3CHAPTER 1: INTRODUCTION TO ETHICAL HACKING ABSTRACT The internet has considerably enhanced various business critical operations of companies in different industry sectors across the globe. However, as more and more organizations become partially or completely dependent on the internet, computer security and the serious threat of computer criminals comes to the foreground. The explosive growth of the Internet has brought many good things: electronic commerce, easy access to vast stores of reference material, collaborative computing, e-mail, and new avenues for advertising and information distribution, to name a few. As with most technological advances, there is also a dark side: criminal hackers. Governments, companies, and private citizens around the world are anxious to be a part of this revolution, but they are afraid that some hacker will break into their Web server and replace their logo with pornography, read their e-mail, steal their credit card number from an on-line shopping site, or implant software that will secretly transmit their organization’s secrets to the open Internet. With these concerns and others, the ethical hacker can help. Unfortunately, most organizations across the globe continue to remain oblivious of the threat posed by computer criminals, corporate espionage and cyber terrorism. Ethical Hacking attempts to pro-actively increase security protection by identifying and patching known security vulnerabilities on systems owned by other parties.
  • 4. 4CHAPTER 1: INTRODUCTION TO ETHICAL HACKING TABLE OF CONTENTS CHAPTER 1: INTRODUCTION TO ETHICAL HACKING 5 1.1 INTRODUCTION 5 1.2 ETHICAL HACKING TERMINOLOGY 6 1.3 HACKER 7 1.3.1 TYPES OF HACKERS 7 1.3.2 ETHICAL HACKERS VERSUS CRACKER 8 1.4 THE JOB ROLE OF AN ETHICAL HACKER 9 1.4.1 WHAT DO ETHICAL HACKERS DO? 9 1.4.2 AN ETHICAL HACKER’S SKILL SET 9 CHAPTER 2: ETHICAL HACKING METHODOLOGY 11 2.1 THE PHASES OF ETHICAL HACKING 11 2.1.1 PHASE 1- RECONNAISSANCE 12 2.1.2 PHASE 2- SCANNING 15 2.1.3 PHASE 3- GAINING ACCESS 16 2.1.4 PHASE 4- MAINTAINING ACCESS 17 2.1.5 PHASE 5- CLEARING TRACKS 19 2.2 UNDERSTANDING TESTING TYPES 19 2.3 TOOLS USED IN ETHICAL HACK 20 CHAPTER 3: CONCLUSION 21 3.1 HOW TO BE ETHICAL 21 3.1.1 PERFORMING A PENETRATION TEST 22 3.2 ETHICAL HACKING REPORT 22 REFERENCES 24
  • 5. 5CHAPTER 1: INTRODUCTION TO ETHICAL HACKING CHAPTER 1: INTRODUCTION TO ETHICAL HACKING 1.1 INTRODUCTION The Internet is still growing and e-commerce is on its advance. More and more computers get connected to the Internet, wireless devices and networks are booming and sooner or later, nearly every electronic device may have its own IP address. The complexity of networks is increasing, the software on devices gets more complicated and user friendly [1]. Therefore, Security is a hot topic and quite some effort is spend in securing services, systems and networks. On the internet, there is a silent war going on between the good and the bad guys between the ones who are trying hard to keep information secured and the ones who are trying to get prohibited access to this information. Securing an information technology environment does not just consist of a bunch of actions which can be taken and then everything can be forgotten there is no fire and forget solution - security is a never ending process. OBJECTIVE COVERED IN THIS CHAPTER:  INTRODUCTION  ETHICAL HACKING TERMINOLOGY  THE JOB ROLE OF AN ETHICAL HACKER  TYPES OF ETHICAL HACKERS  ETHICAL HACKERS VERSUS CRACKER  WHAT DO ETHICAL HACKERS DO?  AN ETHICAL HACKER’S SKILL SET
  • 6. 6CHAPTER 1: INTRODUCTION TO ETHICAL HACKING “Ethical hacking describes the process of attacking and penetrating computer systems and networks to discover and point out potential security weaknesses for a client which is responsible for the attacked information technology environment1 .” 1.2 ETHICAL HACKING TERMINOLOGY Being able to understand and define terminology is an important part of a CEH’s responsibility. This terminology is how security professionals acting as ethical hackers communicate. In this section, we’ll discuss a number of terms used in ethical hacking as: Threat An environment or situation that could lead to a potential breach of security. Ethical hackers look for and prioritize threats when performing a security analysis. Malicious hackers and their use of software and hacking techniques are themselves threats to an organization’s information security. Exploit A piece of software or technology that takes advantage of a bug, glitch, or vulnerability, leading to unauthorized access, privilege escalation, or denial of service on a computer system. Malicious hackers are looking for exploits in computer systems to open the door to an initial attack. Most exploits are small strings of computer code that, when executed on a system, expose vulnerability. Experienced hackers create their own exploits, but it is not necessary to have any programming skills to be an ethical hacker as many hacking software programs have ready-made exploits that can be launched against a computer system or network. An exploit is a defined way to breach the security of an IT system through vulnerability. Vulnerability The existence of a software flaw, logic design, or implementation error that can lead to an unexpected and undesirable event executing bad or damaging instructions to the system. Exploit code is written to target vulnerability and cause a fault in the system in order to retrieve valuable data. Target of Evaluation (TOE) A system, program, or network that is the subject of a security analysis or attack. Ethical hackers are usually concerned with high-value TOEs, systems that contain sensitive information such as account numbers, passwords, Social Security numbers, or 1 Ethical Hacking – GIAC[www.giac.org/paper/gsec/2468/ethical-hacking/104292]
  • 7. 7CHAPTER 1: INTRODUCTION TO ETHICAL HACKING other confidential data. It is the goal of the ethical hacker to test hacking tools against the high- value TOEs to determine the vulnerabilities and patch them to protect against exploits and exposure of sensitive data. Attack An attack occurs when a system is compromised based on vulnerability. Many attacks are perpetuated via an exploit. Ethical hackers use tools to find systems that may be vulnerable to an exploit because of the operating system, network configuration, or applications installed on the systems, and to prevent an attack. There are two primary methods of delivering exploits to computer systems: Remote The exploit is sent over a network and exploits security vulnerabilities without any prior access to the vulnerable system. Hacking attacks against corporate computer systems or networks initiated from the outside world are considered remote. Most people think of this type of attack when they hear the term hacker, but in reality most attacks are in the next category. Local The exploit is delivered directly to the computer system or network, which requires prior access to the vulnerable system to increase privileges. Information security policies should be created in such a way that only those who need access to information should be allowed access and they should have the lowest level of access to perform their job function. These concepts are commonly referred as “need to know” and “least privilege” and, when used properly, would prevent local exploits. Most hacking attempts occur from within an organization and are perpetuated by employees, contractors, or others in a trusted position. In order for an insider to launch an attack, they must have higher privileges than necessary based on the concept of “need to know.” This can be accomplished by privilege escalation or weak security safeguards. 1.3 HACKER In the computer security context, a hacker is someone who seeks and exploits weaknesses in a computer or computer network. Hackers may be motivated by a multitude of reasons, such as profit, protest, or challenge.2 1.3.1 TYPES OF HACKERS Hackers can be divided into three groups: White Hats 2 Hacker (computer security)[ http://en.wikipedia.org/wiki/Hacker_(computer_security)]
  • 8. 8CHAPTER 1: INTRODUCTION TO ETHICAL HACKING White hats are the good guys, the ethical hackers who use their hacking skills for defensive purposes. White-hat hackers are usually security professionals with knowledge of hacking and the hacker tool set and who use this knowledge to locate weaknesses and implement countermeasures. White-hat hackers are prime candidates for the exam. White hats are those who hack with permission from the data owner. It is critical to get permission prior to beginning any hacking activity. This is what makes a security professional a white hat Versus a malicious hacker who cannot be trusted. Black Hats Black hats are the bad guys: the malicious hackers or crackers who use their skills for illegal or malicious purposes. They break into or otherwise violate the system integrity of remote systems, with malicious intent. Having gained unauthorized access, black-hat hackers destroy vital data, deny legitimate users service, and just cause problems for their targets. Black-hat hackers and crackers can easily be differentiated from white-hat hackers because their actions are malicious. This is the traditional definition of a hacker and what most people consider a hacker to be. Gray Hats Gray hats are hackers who may work offensively or defensively, depending on the situation. This is the dividing line between hacker and cracker. Gray-hat hackers may just be interested in hacking tools and technologies and are not malicious black hats. Gray hats are self-proclaimed ethical hackers, who are interested in hacker tools mostly from a curiosity standpoint. They may want to highlight security problems in a system or educate victims so they secure their systems properly. 1.3.2 ETHICAL HACKERS VERSUS CRACKER Ethical hackers are usually security professionals or network penetration testers who use their hacking skills and toolsets for defensive and protective purposes. Ethical hackers who are security professionals test their network and systems security for vulnerabilities using the same tools that a hacker might use to compromise the network. Any computer professional can learn the skills of ethical hacking.
  • 9. 9CHAPTER 1: INTRODUCTION TO ETHICAL HACKING The term cracker describes a hacker who uses their hacking skills and toolset for destructive or offensive purposes such as disseminating viruses or performing denial-of-service (DoS) attacks to compromise or bring down systems and networks. No longer just looking for fun, these hackers are sometimes paid to damage corporate reputations or steal or reveal credit card information, while slowing business processes and compromising the integrity of the organization. 1.4 THE JOB ROLE OF AN ETHICAL HACKER Ethical hackers are employed to protect networks and computers from attacks from unethical hackers who illegally penetrate computers to access private and sensitive information. Though they possess technical skills to those of an unethical hacker, an ethical hacker utilizes these skills for protection.3 1.4.1 WHAT DO ETHICAL HACKERS DO? The purpose of ethical hacker is usually the same as that of crackers: they’re trying to determine what an intruder can see on a targeted network or system, and what the hacker can do with that information. This process of testing the security of a system or network is known as a penetration test, or pen test. Many ethical hackers detect malicious hacker activity as part of the security team of an organization tasked with defending against malicious hacking activity. When hired, an ethical hacker asks the organization what is to be protected, from whom, and what resources the company is willing to expend in order to gain protection. A penetration test plan can then be built around the data that needs to be protected and potential risks. 1.4.2 AN ETHICAL HACKER’S SKILL SET Ethical hackers who stay a step ahead of malicious hackers must be computer systems experts who are very knowledgeable about computer programming, networking, and operating systems. In-depth knowledge about highly targeted platforms (such as Windows, Unix, and Linux) is also a requirement. Patience, persistence, and immense perseverance are important qualities for ethical hackers because of the length of time and level of concentration required for most attacks to pay off. Networking, web programming, and database skills are all useful in performing 3 Ethical Hacker Job Description[http://www.ehow.com/info_8780628_ethical-hacker-job-description.html]
  • 10. 10CHAPTER 1: INTRODUCTION TO ETHICAL HACKING ethical hacking and vulnerability testing. Most ethical hackers are well rounded with wide knowledge on computers and networking. In some cases, an ethical hacker will act as part of a “tiger team” who has been hired to test network and computer systems and find vulnerabilities. In this case, each member of the team will have distinct specialties, and the ethical hacker may need more specialized skills in one area of computer systems and networking. Most ethical hackers are knowledgeable about security areas and related issues but don’t necessarily have a strong command of the countermeasures that can prevent attacks. Knowledge of ethical hacking and penetration testing techniques including the following:  Penetration Testing / Ethical Hacking tools and forms of attack and associated tools (Internet Security Scanner, System Security Scanner, SATAN) using war dialing and internet scanning.  Hacker exploit scripts/programs to test whether vendor/developer patches operate as intended and fix the identified vulnerability or identify the malicious code.  Intrusion Detection Environments and forms of attack with the ability to perform analysis of the systems and application logs for Intrusion signs.  Firewalls (Gauntlet, Cisco PIX, CheckPoint, Raptor).  Network Traffic Monitoring Tools (Network General Sniffer, LANalyzer, NetXray).  Network Protocols (TCP/IP, NetBIOS / Netbeui, IPX, OSI) and associated technologies (DNS, FTP, HTTP).  Network Topologies (Token Passing, Ethernet).  Operating Systems: UNIX, Argus, Solaris and Microsoft Operating Environments.  Advanced knowledge of security and encryption mechanisms and strong experience with systems implementation.  Application Servers (Websphere, Weblogic).  Web Servers (Netscape, Apache, Microsoft).  Mail Servers (POP3).  Security Authorization/Transaction, Network Security (VPN, SSL, Smart Cards, Biometrics).  Cryptographic tools, methods, systems and protocols: HTTPS, IPsec, PGP, DES etc.  Exceptional interpersonal communication and presentation skills are must.
  • 11. 11CHAPTER 2: ETHICAL HACKING METHODOLOGY CHAPTER 2: ETHICAL HACKING METHODOLOGY 2.1 THE PHASES OF ETHICAL HACKING The process of ethical hacking can be broken down into five distinct phases. An ethical hacker follows processes these steps to gain and maintain entry into a computer system Figure 1.1 illustrates the five phases that hackers generally follow in hacking a computer system. OBJECTIVE COVERED IN THIS CHAPTER:  THE PHASES OF ETHICAL HACKING  Phase 1- Reconnaissance  Phase 2- Scanning  Phase 3- Gaining Access  Phase 4- Maintaining Access  Phase 5- Clearing Tracks  UNDERSTANDING TESTING TYPES  TOOLS USED IN ETHICAL HACK
  • 12. 12CHAPTER 2: ETHICAL HACKING METHODOLOGY Figure 2.1 : The phases of Ethical hacking. 2.1.1 Phase 1- Reconnaissance The first and most important step in an attack involves finding out as much information as possible about the TOE (Target of Evaluation). A passive information gathering approach is taken and will not raise any alarms. Patience and creativity are also necessary as this can be the longest phase of the attack. In the world of ethical hacking, reconnaissance applies to the process of information gathering. Reconnaissance is a catch all term for watching the hacking target and gathering information about how, when, and where they do things. A. Understanding Competitive Intelligence Competitive intelligence means information gathering about competitors’ products, marketing, and technologies. Several tools exist for the purpose of competitive intelligence gathering and can be used by hackers to gather information about a potential target.
  • 13. 13CHAPTER 2: ETHICAL HACKING METHODOLOGY  Using SpyFu Go to the www.spyfu.com website and enter the website address of the target in the search field: Figure 2.2: Competitive intelligence using SpyFu  Using KeywordSpy Go to the www.keywordspy.com website and enter the website address of the target in the search field: Figure 2.3: Competitive intelligence using KeywordSpy Review the report and determine valuable keywords, links, or other information. B. Information-Gathering Methodology Information gathering can be broken into seven logical steps. Footprinting is performed during the first two steps of unearthing initial information and locating the network range.
  • 14. 14CHAPTER 2: ETHICAL HACKING METHODOLOGY Figure 2.4: Information-Gathering methodology  Footprinting Footprinting is defined as the process of creating a blueprint or map of an organization’s network and systems. Information gathering is also known as footprinting an organization. Here are some of the pieces of information to be gathered about a target during footprinting:  Domain name  Network blocks  Network services and applications  System architecture  Intrusion detection system  Authentication mechanisms  Specific IP addresses  Access control mechanisms  Phone numbers  Contact addresses Once this information is compiled, it can give a hacker better insight into the organization, where valuable information is stored, and how it can be accessed.
  • 15. 15CHAPTER 2: ETHICAL HACKING METHODOLOGY  Footprinting Tools Some of the common tools used for footprinting and information gathering are as follows:  Domain name lookup  Whois  NSlookup  Sam Spade  Finding the Address Range of the Network Every ethical hacker needs to understand how to find the network range and subnet mask of the target system. IP addresses are used to locate, scan, and connect to target systems. You can find IP addresses in Internet registries such as ARIN or the Internet Assigned Numbers Authority (IANA). An ethical hacker may also need to find the geographic location of the target system or network. This task can be accomplished by tracing the route a message takes as it’s sent to the destination IP address. You can use tools like traceroute, VisualRoute, and NeoTrace to identify the route to the target. 2.1.2 Phase 2- Scanning Scanning is the process of locating systems that are alive and responding on the network. Ethical hackers use scanning to identify target systems’ IP addresses. Scanning is also used to determine whether a system is on the network and available. Scanning tools are used to gather information about a system such as IP addresses, the operating system, and services running on the target computer. Table 2.1 lists the three types of scanning. Scanning type Purpose Port scanning Determines open ports and services Network scanning Identifies IP addresses on a given network or subnet Vulnerability scanning Discovers presence of known weaknesses on target systems
  • 16. 16CHAPTER 2: ETHICAL HACKING METHODOLOGY a) Port Scanning Port scanning is the process of identifying open and available TCP/IP ports on a system. Port-scanning tools enable a hacker to learn about the services available on a given system. Each service or application on a machine is associated with a well-known port number. Port Numbers are divided into three ranges: Well-Known Ports: 0-1023 Registered Ports: 1024-49151 Dynamic Ports: 49152-65535 b) Network Scanning Network scanning is a procedure for identifying active hosts on a network, either to attack them or as a network security assessment. Hosts are identified by their individual IP addresses. Network-scanning tools attempt to identify all the live or responding hosts on the network and their corresponding IP addresses. c) Vulnerability Scanning Vulnerability scanning is the process of proactively identifying the vulnerabilities of computer systems on a network. Generally, a vulnerability scanner first identifies the operating system and version number, including service packs that may be installed. Then, the scanner identifies weaknesses or vulnerabilities in the operating system. During the later attack phase, a hacker can exploit those weaknesses in order to gain access to the system. 2.1.3 Phase 3- Gaining Access Phase 3 is when the real hacking takes place. Vulnerabilities exposed during the reconnaissance and scanning phase are now exploited to gain access to the target system. The hacking attack can be delivered to the target system via a local area network (LAN), either wired or wireless; local access to a PC; the Internet; or offline. Gaining access is known in the hacker world as owning the system because once a system has been hacked, the hacker has control and can use that system as they wish.
  • 17. 17CHAPTER 2: ETHICAL HACKING METHODOLOGY A. Cracking a Password Manual password cracking involves attempting to log on with different passwords. The hacker follows these steps:  Find a valid user account (such as Administrator or Guest).  Create a list of possible passwords.  Rank the passwords from high to low probability.  Key in each password.  Try again until a successful password is found. Passwords are stored in the Security Accounts Manager (SAM) file on a Windows system and in a password shadow file on a Linux system. B. Understanding Keyloggers and Other Spyware Technologies If all other attempts to gather passwords fail, then a keystroke logger is the tool of choice for hackers. Keystroke loggers (keyloggers) can be implemented either using hardware or software. Hardware keyloggers are small hardware devices that connect the keyboard to the PC and save every keystroke into a file or in the memory of the hardware device. In order to install a hardware keylogger, a hacker must have physical access to the system. Software keyloggers are pieces of stealth software that sit between the keyboard hardware and the operating system so that they can record every keystroke. Software Keyloggers can be deployed on a system by Trojans or viruses. 2.1.4 Phase 4- Maintaining Access Once a hacker has gained access to a target system, they want to keep that access for future exploitation and attacks. Sometimes, hackers harden the system from other hackers or security personnel by securing their exclusive access with backdoors, root kits, and Trojans. Once the hacker owns the system, they can use it as a base to launch additional attacks. In this case, the owned system is sometimes referred to as a zombie system. Escalating Privileges Once a hacker has gaining access to the system, the next step is to execute applications. Generally the hacker needs to have an account with administrator-level access in order to install programs, and that is why escalating privileges is so important. In the following
  • 18. 18CHAPTER 2: ETHICAL HACKING METHODOLOGY sections, we’ll see what hackers can do with your system once they have administrator privileges.  Executing Applications Once a hacker has been able to access an account with administrator privileges, the next thing they do is execute applications on the target system. The purpose of executing applications may be to install a backdoor on the system, install a keystroke logger to gather confidential information, copy files, or just cause damage to the system—essentially, anything the hacker wants to do on the system. Once the hacker is able to execute applications, the system is considered owned and under the control of the hacker.  Buffer Overflows Buffer overflows are hacking attempts that exploit a flaw in an application’s code. Essentially, the buffer overflow attack sends too much information to a field variable in an application, which can cause an application error. Most times, the application doesn’t know what action to perform next because it’s been overwritten with the overflow data. Therefore, it either executes the command in the overflow data or displays a command prompt to allow the user to enter the next command. The command prompt or shell is the key for a hacker and can be used to execute other applications.  Understanding Root kits A rootkit is a type of program often used to hide utilities on a compromised system. Rootkits include so-called backdoors to help an attacker subsequently access the system more easily. Planting Rootkits on XP Machines The rootkit contains a kernel mode device driver called _root_.sys and a launcher program called DEPLOY.EXE. After gaining access to the target system, the attacker copies _root_.sys and DEPLOY.EXE onto the target system and executes DEPLOY.EXE. Doing so installs the rootkit device driver and starts it. The attacker later deletes DEPLOY.EXE from the target machine. The attacker can then stop and restart the rootkit at will by using the commands net stop _root_ and net start _root_. Once the rootkit is started, the file _root_.sys no longer appears in directory listings; the
  • 19. 19CHAPTER 2: ETHICAL HACKING METHODOLOGY rootkit intercepts system calls for file listings and hides all files beginning with _root_ from display. 2.1.5 Phase 5- Clearing Tracks Once hackers have been able to gain and maintain access, they cover their tracks to avoid detection by security personnel, to continue to use the owned system, to remove evidence of hacking, or to avoid legal action. Hackers try to remove all traces of the attack, such as log files or intrusion detection system (IDS) alarms. Examples of activities during this phase of the attack include:  Steganography  Using a tunneling protocol  Altering log files 2.2 UNDERSTANDING TESTING TYPES When performing a security test or penetration test, an ethical hacker utilizes one or more types of testing on the system. Each type simulates an attacker with different levels of knowledge about the target organization. These types are as follows: Black Box Black-box testing involves performing a security evaluation and testing with no prior knowledge of the network infrastructure or system to be tested. Testing simulates an attack by a malicious hacker outside the organization’s security perimeter. Black-box testing can take the longest amount of time and most effort as no information is given to the testing team. Therefore, the information-gathering, reconnaissance, and scanning phases will take a great deal of time. The advantage of this type of testing is that it most closely simulates a real malicious attacker’s methods and results. The disadvantages are primarily the amount of time and consequently additional cost incurred by the testing team. White Box White-box testing involves performing a security evaluation and testing with complete knowledge of the network infrastructure such as a network administrator would have. This testing is much faster than the other two methods as the ethical hacker can jump right to the attack phase, thus bypassing all the information-gathering, reconnaissance, and scanning phases. Many security audits consist of white-box testing to avoid the additional time and expense of black-box testing.
  • 20. 20CHAPTER 2: ETHICAL HACKING METHODOLOGY Gray Box Gray-box testing involves performing a security evaluation and testing internally. Testing examines the extent of access by insiders within the network. The purpose of this test is to simulate the most common form of attack, those that are initiated from within the network. The idea is to test or audit the level of access given to employees or contractors and see if those privileges can be escalated to a higher level. 2.3 TOOLS USED IN ETHICAL HACK These are some tools used in different phases of ethical hacking as: Table 2.2 Tools for different phases of hacking. PHASES TOPIC TOOLS Reconnaissance Network Mapping Cheops-ng, traceroute Network scanning tcpdump, nmap, strobe, rprobe Security and vulnerability scanning Nessus, ISS, Cybercop Firewall scanning FireWalk Application scanning Whisker, Archilles, Legion War dialing Phone Sweep, ThcScan, LoginH OS Fingerprinting nmap, queso Banner enumeration Banner enumeration, enum, ruser WLAN NetStumbler, dsnort Probe and attack Web Exploits Showcode, Unicode exploits Local Exploits sechole, pwddump, dumpacl, PamSlam Remote exploits PCAnywhere, nfs exploits, NetOp, sedminX. Buffer Overflow BFS, Slugger2 Trojans NetBus Brute Force AccessDiver, GoldenEye, L0pth Crack, Jack the ripper Security scanner Nessus, ISS Network attack DoS Tools(trinno, TFN) Listening Sniffers Ethercap, tcpdump, juggemaut Application Xkey, WebSpy First Access Password Cracking L0pth Crack, Jack the ripper Mail Bombing Avalanche Hijacking Arp0c, ArpRedirect, Ethereal Stealth Rootkits Different root kits depending on OS Trojans Netbus, BackOrifice
  • 21. 21CHAPTER 3: CONCLUSION CHAPTER 3: CONCLUSION 3.1 HOW TO BE ETHICAL Ethical hacking is usually conducted in a structured and organized manner, usually as part of a penetration test or security audit. The ethical hacker must follow certain rules to ensure that all ethical and moral obligations are met. An ethical hacker must do the following:  Gain authorization from the client and have a signed contract giving the tester permission to perform the test.  Maintain and follow a nondisclosure agreement (NDA) with the client in the case of confidential information disclosed during the test.  Maintain confidentiality when performing the test. Information gathered may contain sensitive information. No information about the test or company confidential data should ever be disclosed to a third party.  Perform the test up to but not beyond the agreed-upon limits. For example, DoS attacks should only be run as part of the test if they have previously been agreed upon with the client. Loss of revenue, goodwill, and worse could befall an organization whose servers or applications are unavailable to customers as a result of the testing. OBJECTIVE COVERED IN THIS CHAPTER:  HOW TO BE ETHICAL  PERFORMING A PENETRATION TEST  ETHICAL HACKING REPORT
  • 22. 22CHAPTER 3: CONCLUSION 3.1.1 PERFORMING A PENETRATION TEST Many ethical hackers acting in the role of security professionals use their skills to perform security evaluations or penetration tests. These tests and evaluations have three phases, generally ordered as follows in Figure 5: Figure 3.1: Phases of penetration testing Preparation This phase involves a formal agreement between the ethical hacker and the organization. This agreement should include the full scope of the test, the types of attacks (inside or outside) to be used, and the testing types: white, black, or gray box. Conduct Security Evaluation During this phase, the tests are conducted, after which the tester prepares a formal report of vulnerabilities and other findings. Conclusion The findings are presented to the organization in this phase, along with any recommendations to improve security. 3.2 ETHICAL HACKING REPORT The result of a network penetration test or security audit is an ethical hacking, or pen test report. Either name is acceptable, or they can be used interchangeably. This report details the results of the hacking activity, the types of tests performed, and the hacking methods used. The results are compared against the expectations initially agreed upon with the customer. Any vulnerability identified are detailed, and countermeasures are suggested. This document is usually delivered to the organization in hard-copy format, for security reasons. The details of the ethical hacking report must be kept confidential, because they highlight the organization’s security risks and Conclusion Conduct Security Evaluation Preparation
  • 23. 23 vulnerabilities. If this document falls into the wrong hands, the results could be disastrous for the organization. It would essentially give someone the roadmap to all the security weaknesses of an organization.
  • 24. 24REFERENCES REFERENCES [1].Kimberly Graves. “CEH: Certified Ethical Hacker Study Guide”, John Wiley & Sons, Inc. [2].C. C. Palmer. “Ethical hacking”, IBM SYSTEMS JOURNAL, VOL 40, NO 3, 2001. [3].Steven DeFino, Larry Greenblatt. “CEH: Certified Ethical Hacker Review Guide version 7.1” [4].Ethical Hacking – GIAC, URL: www.giac.org/paper/gsec/2468/ethical-hacking/104292 [5].Hacker (computer security), URL http://en.wikipedia.org/wiki/Hacker_(computer_security) [6].Ethical Hacker Job Description, URL http://www.ehow.com/info_8780628_ethical-hacker- job-description.html