skript kiddie tools exposed - infosecurity vip watchguard... · 2013-09-15 · skript kiddie tools...
TRANSCRIPT
![Page 1: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/1.jpg)
Skript Kiddie Tools Exposed
Juan Luis Munoz Director of Sales Latin America
![Page 2: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/2.jpg)
Agenda
Intro: Why look at attack tools?
Three Hacker Profiles
Hacking Phases 101
Attack Demos (using free tools)
Defense Tips
![Page 3: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/3.jpg)
Why Study Attack Tools?
Figure out defense Penetration Testing
Seeing is believing Hacking is too easy
Know thy enemy - Sun Tzu
![Page 4: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/4.jpg)
Three Cyber Attacker Profiles
![Page 5: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/5.jpg)
Hacking Process 101
• Research
• Scanning
• Fingerprinting
Recon Phase
• Social Eng.
• Server hacks
• Client hacks
• Web app hacks
Attack Phase
• Cover tracks
• Rootkits
• Lateral attacks
Stealth Phase
Steal data
& profit
Looting Phase
![Page 6: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/6.jpg)
Hacker’s Favorite Toolset
Backtrack is a Linux distribution for
pen-testers and ”hackers.” It contains
countless hacking tools and exploit
libraries. In short, almost all you need to
breach networks (for good or evil).
Some tools include:
Metasploit
Nmap (Zenmap)
OpenVAS
Hping
SQLmap
Aircrack-ng
Fast-Track
Evilgrade
…and many, many more
![Page 7: Skript Kiddie Tools Exposed - INFOSECURITY VIP WATCHGUARD... · 2013-09-15 · Skript Kiddie Tools Exposed Juan Luis Munoz Director of Sales Latin America . Agenda ... PHASE -2 SCANNING](https://reader031.vdocument.in/reader031/viewer/2022022014/5b4434cf7f8b9a53428b83f3/html5/thumbnails/7.jpg)
Demo Attack Environment
Attacker Victims Firewall
BackTrack 5 (192.168.39.128)
WinXP FTP (10.0.1.10)
Win 7 Web (10.0.1.20)
Ext -1
92.1
68.3
9.1
4
Trust – 1
0.0
.1.1
No NAT, for simplicity