Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION.

Published byDerrick Jenkins Modified over 8 years ago

Similar presentations

Presentation on theme: "CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION."— Presentation transcript:

1 CSE 4481 Computer Security Lab Mark Shtern

2 INTRODUCTION

3 Security Our life depends on computer systems – Traffic control – Banking – Medical equipment – Internet – Social networks Growing number of attacks on computer systems

4 Security Results from malicious attack – Financial loss – Loss of reputation – A drop in the value of a company’s stock – Legal issues Hacker may not be a computer expert – Numerous attacking scripts / tools available – Hacker training material also available

5 Statistics (2009) 85% of attacks were not considered highly difficult 96% of breaches were avoidable through simple or intermediate control 48% involved privileges misuse 86% of victims had evidence of the breach in their log files

6 Course Objectives Hands on experience in various security topics – Execution of popular attacks – Attack prevention and risk mitigation

7 Attack Examples Network (sniffing, session hijacking) Password Cracking Web Code injection Overflows (Buffer, Number)

8 Defence Techniques Auditing Vulnerability scanners Firewalls (Network and application) Intrusion Preventions and Detections Honeypots

9 ATTACK LAB Orientation

10 Attack Lab Isolated Lab accessed through an IP KVM Attack Lab consists of – Physical equipment, such as servers, workstations and network switches – Virtual equipment, such as virtual machines and virtual switches Attack Lab has monitoring software that audits student activity

11 Attack Lab Policies Physical lab equipment, such as servers, routers, workstations and switches are not to be configured, attacked or modified in any manner Data in the attack lab can not be copied out of the attack lab The attack lab user password should not be reused in other systems

12 Attack Lab Policies Students are allowed to modify, configure, or attack their private Virtual Machines only within the scope of the lab exercises Violation of the Attack Lab policies may be considered an Academic Integrity offence

13 Access to attack lab Sign the security lab agreement to get your password Login at https://seclab.cse.yorku.cahttps://seclab.cse.yorku.ca – User name is CSE user name Click on vShpereClient Select “Use Windows session credentials” Click Login button

14 vLab

15 How to use a VM CD-ROM Click on CD-ROM icon Select CD/DVD Drive 1 Select “Connect to ISO image on local disk” Browse to “C:\ISOs” folder or your private folder Select CD-ROM image Access to CDROM from VM

16 How to transfer files into the lab (1) Create an ISO file that contains your files first.iso Create an ISO file that contains first.iso second.iso Click on Virtual Media and select second.iso Click on CDROM in Attack Lab machine and copy first.iso into Private Directory

17 How to transfer files into the lab (2) Start vSphere Client Select Virtual Machine Connect CDROM (the media name is first.iso) Copy files from CDROM into Virtual Machine

18 Add/Remove application Software package in Linux OS – apt-get install – apt-get remove Windows component – Insert Windows CD into Virtual Machine – Click on Add/Remove Program – Select/Deselect windows component

19 ADMINISTRIVIA

20 Marking Scheme The performance of the students will be evaluated as a combination of –7 labs ( 50 %) – Term Project (35%) – Project presentation ( 5 %) – Game ( 5 % + bonus) – Participation ( 5 %) One week labs are worth 5 % Two week labs are worth 10 %

21 Labs Lab reports and source code must be submitted before 11:59pm on the day the lab is due The lab report must be a short, precise and professional document (title, table of contents, page numbering etc) The lab report must contain sufficient evidence that you completed the lab exercise Code developed during the labs is expected to be simple Developed applications are prototypes

22 Report antipattern Screenshots are attached – Figure number? Figure description? “I verified DNS configuration using nslookup” – How? Evidence? “I created a folder named ‘xxx’ and gave read/write and execute permission...” – How? Evidence? “I developed a script...” – Evidence? Script source code?

23 Term Project Project consists of four phases – Implementation – Penetration testing – Fixing security bugs – QA phase Developed application is a final product The project report must be a detailed, precise and professional document (title, table of contents, page numbering etc)

24 Report Antipattern Design is just a list of functions Design justification : “The design is flexible” – Why is the design flexible? Test case : “Run the application” – What are the user inputs? What are the expected results?

25 Game QA Team – Project presentation – Review project design – Penetrate other students’ projects IT Security – Secure infrastructure

26 Project Plan

27 LAB 1

28 Lab 1 Read Lab 1 Ask questions

29 Lab 1 Plan – Develop naming schema – Configure Windows 2003 server – Promote server to Domain Controller

30 Lab 1 Plan – Test Connectivity – Test DNS – Join Workstation to Domain – Configure users – Review how to develop setuid Linux application

31 Lab 1 Plan – Security Tests Find passwords Two ways of hiding files Develop two attacks

32 QUESTIONS?

Download ppt "CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION."

Similar presentations

1. Reasons for logging on as a root •Most people are familiar with Windows systems with regard to administrative privileges. Many user running windows.

1. Reasons for logging on as a root •Most people are familiar with Windows systems with regard to administrative privileges. Many user running windows.
Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.

Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
Security Issues and Challenges in Cloud Computing

Security Issues and Challenges in Cloud Computing
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.

CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.

1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Internet Relay Chat Chandrea Dungy Derek Garrett #29.

Internet Relay Chat Chandrea Dungy Derek Garrett #29.
Intrusion Prevention, Detection & Response. IDS vs IPS IDS = Intrusion detection system IPS = intrusion prevention system.

Intrusion Prevention, Detection & Response. IDS vs IPS IDS = Intrusion detection system IPS = intrusion prevention system.
Website Hardening HUIT IT Security | Sep 30 2011.

Website Hardening HUIT IT Security | Sep
VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.

VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.
Microsoft ® Official Course Module 9 Configuring Applications.

Microsoft ® Official Course Module 9 Configuring Applications.
Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.

Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.
AIS, 20141 Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)

AIS, Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)
N ETWORKED & D ISTRIBUTED COMPUTING S YSTEMS L AB Programming Assignments EE323 Computer Networks.

N ETWORKED & D ISTRIBUTED COMPUTING S YSTEMS L AB Programming Assignments EE323 Computer Networks.
1-Vulnerabilities 2-Hackers 3-Categories of attacks 4-What a malicious hacker do? 5-Security mechanisms 6-HTTP Web Servers 7-Web applications attacks.

1-Vulnerabilities 2-Hackers 3-Categories of attacks 4-What a malicious hacker do? 5-Security mechanisms 6-HTTP Web Servers 7-Web applications attacks.
 Prototype for Course on Web Security ETEC 550.  Huge topic covering both system/network architecture and programming techniques.  Identified lack.

 Prototype for Course on Web Security ETEC 550.  Huge topic covering both system/network architecture and programming techniques.  Identified lack.
Home Media Network Hard Drive Training for Update to 2.0 By Erik Collett 6.03.09 Revised for Firmware Update.

Home Media Network Hard Drive Training for Update to 2.0 By Erik Collett Revised for Firmware Update.

Similar presentations

Ads by Google