Upload File

top 10 things that make a hacker’s life easy...©2014 cliftonlarsonallen llp 10 things that make...

  • Home
  • Documents
  • Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t
24
©2014 CliftonLarsonAllen LLP CLAconnect.com Top 10 Things That Make a Hacker’s Life Easy

Upload: others

Post on 06-Jul-2020

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

©20

14 C

lifto

nLar

sonA

llen

LLP

CLAconnect.com

Top 10 Things That Make a Hacker’s Life Easy

Page 2: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Intro/Summary

1. I am going to share with you: 1. Day to day experiences doing vulnerability assessments 2. “Top 10 things” that make it easy (easier?) for hackers 3. New/emerging vulnerabilities exploited by hackers 4. Key defensive strategies to mitigate risks

Page 3: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

10 things that make it easy for hackers

1. Giving users local admin privileges 2. Domain Admins don’t have separate user account 3. Domain Admins log into workstation 4. Weak passwords 5. Shared passwords

Page 4: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

10 things that make it easy for hackers

6. Poor patching 7. Unnecessary ports and services 8. Weak/no encryption 9. Vendor Systems 10. Lack of security awareness

Page 5: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Latest Trends/The New Hotness

• New methods on bypassing anti-virus • Relaying network credentials (SMB or HTTP) • Utilizing PowerShell to hack systems • Using Mimikatz to steal clear text credentials • Kerberos “Golden Ticket”

Page 6: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Bypassing AV Easy as 1-2-3….

Page 7: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

New Ways to Bypass AV

• Multiple tools available • Free, open source • Easy to use • Can generate a new, totally unique payload that

bypasses a majority of AV’s in seconds • We’ve been using it on EPTs over the last year with

great success

Page 8: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

New Ways to Bypass AV

• Veil-Evasion – https://www.veil-framework.com/

• Crypter.py – Google search, proceed with caution

Page 9: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

How to protect yourself

• Strict egress filtering – Utilize whitelisting instead of blacklisting

• Whitelist applications • Utilize proxy

– SSL stripping

Page 10: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Relaying creds Yes, I am the host you’re looking for…

Page 11: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Relaying network creds

• Attacks Windows Single Sign-On • Starts by spoofing NetBIOS traffic • Tricks computer into attempting to authenticate to

the attacker • The computer automatically sends encrypted

credentials to attacker • Attacker relays the credentials to other target

Page 12: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Relaying network creds

• SMB or HTTP • Can be used to authenticate to alternate system or

run malicious code on alternate system

Page 13: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

How to protect yourself

• Enforce SMB Signing – http://support.microsoft.com/kb/887429 – http://technet.microsoft.com/en-

us/library/cc731957.aspx

Page 14: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

PowerShell That’s one powerful shell…

Page 15: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

PowerShell

• Windows scripting environment built on .NET • Comes pre-installed

– Attackers don’t have to worry about AV

• Able to perform many different tasks that command prompt couldn’t

Page 16: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

PowerShell

• Search for systems where you have local administrator access

• Search for where domain administrators are logged in

• Can download items from a URL • Can inject malicious code straight into memory

Page 17: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

How to protect yourself

• Disable PowerShell if not used in your environment • Microsoft EMET

– http://support.microsoft.com/kb/2458544

Page 18: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Mimikatz I can see your password :)

Page 19: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Mimikatz

• Windows stores your clear text password in memory when you log in

• Mimikatz can extract those clear text passwords from memory

• Need admin privileges on the host

Page 20: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

How to protect yourself

• Protect systems from malware • Restrict admin access to systems

Page 21: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Golden Ticket Full access….forever

Page 22: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

Kerberos Golden Ticket

• Kerberos is an authentication protocol for Windows Active Directory environments – If you successfully authenticate, you are granted a “ticket”

• If your domain gets compromised, an attacker can steal the information needed to create “tickets”

• An attacker can create fake “golden tickets” that allow access to everything, even if everyone changes their password

Page 23: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

How to protect yourself

• Protect systems from malware • Restrict admin access to systems • Defense in depth/security layers

• If fully compromised, the krbtgt account password

needs to be updated – Consult an expert

Page 24: Top 10 Things That Make a Hacker’s Life Easy...©2014 CliftonLarsonAllen LLP 10 things that make it easy for hackers 1. Giving users local admin privileges 2. Domain Admins don’t

©20

14 C

lifto

nLar

sonA

llen

LLP

DEMO


09 - Matplotlib-2 - Cineca · Matplotlib: Modulo Pylab “Matplotlibtries to make easy things easy and hard things possible” John Hunting Uno strumento per la grafica bidimensionale

Making Hacker’s Life Easier at Hackathons (3scale at Barcelona MusicHackDays)

SimpleScalar Hacker’s Guide - es.ele.tue.nlmwijtvliet/5MD00_SC/downloads...SimpleScalar Hacker’s Guide Todd Austin SimpleScalar LLC SimpleScalar Hacker’s Guide (for tool set

We Make Things Easy

side-channel attack surfaces A Hacker’s guide to …...Security and Privacy Group Google, @elie A Hacker’s guide to reducing side-channel attack surfaces using deep-learning with

Expect Big Things In The Big Easy

The Heroku Hacker’s Guide - Canoë Kayak Décines Meyzieu€¦ · 5.1 Best Practices and You ... a CLI tool for creating and managing your ... The Heroku Hacker’s Guide,

Make things easy for yourself - Government of New York

ACES Medical - 10 easy things to protect patient data

Data dictionary, domain modelling and making things easy

A New Age in Alerting with Bosun - USENIX...and give up… Noise Noise Noise Noise ... easy things • Less friction in tuning alerts When things are easy, they get done. Things you

A Hacker’s Guide to the SimpleScalar Architectural Research Tool Setftp.cs.wisc.edu/sohi/Code/simplescalar-1.0/hack_guide.… ·  · 1996-12-17A Hacker’s Guide to the SimpleScalar

How Hibernate3 makes complex things easy - Hibernate

Editing (Examples taken from Diana Hacker’s “A Pocket Style Manual.”)

10 Easy Productive Things to Do to Increase Creativity

A User’s and Hacker’s Guide to the SimpleScalar ...ee565/project/sscalar_hack_guide.pdfA User’s and Hacker’s Guide to the SimpleScalar Architectural Research Tool Set (for

Easy Things You Can Do To Have An Impact

Making Easy Things Easy and Lowering the Barrier to Entry ... · 01-12-2010  · Making Easy Things Easy - Motivations • There is a wide spectrum of interoperability needs in the

Computer Science and Engineering 1 Web Application Hacker’s Toolkit

CS4513 Distributed Computer Systems “Phreak, Out!” – A Hacker’s View of a Cracker

Negotiating skills. What medical managers do Doing things comfortable, prime job Maintaining things safe, easy management Changing things uncomfortable,

Social Engineering › files › 2018 › 09 › Tech-Update-May-2016.pdfPeople Information Security Social engineering is the hacker’s easy way around IT security safeguards, and

A Hacker’s Teleology · 2020. 10. 1. · A Hacker’s Teleology: Sharing the Wealth of Our Shrinking Planet Charles Hugh Smith Table of Contents Introduction 1. Connecting the Dots

13 easy things to beautify your eyes

How to make things Easy to Read (and understand)

SimpleScalar Hacker’s GuideSimpleScalar Hacker’s Guide Todd Austin SimpleScalar LLC Execution- vs. Trace-Driven Simulation • trace-based simulation – simulator reads a “trace”

4 easy things every manager can do RIGHT Now

Give Me Three Things: Anti-Virus Bypass Made Easy

HACKER’S CREEK

Easy Crafts from Things Around the House

Integrating Perl and Databases Making simple things easy

EBOOK A Hacker’s Guide to Ransomware Mitigation and Recovery

We Make Things Easy - Finger tec Support

Tim Jensen, CISSP CBI Shodan: The Hacker’s Search Engine

Septage Receiving Made Easy: Ten Things we have … Sweeris - Allegan Septage... · Septage Receiving Made Easy: Ten Things we have Learned Trevor Wagenmaker, P.E., Hubbell, Roth