Presentation is loading. Please wait.

Presentation is loading. Please wait.

Brute force attacks, DDOS, Botnet, Exploit, SQL injection

Published byAase Holter Modified over 5 years ago

Similar presentations

Presentation on theme: "Brute force attacks, DDOS, Botnet, Exploit, SQL injection"— Presentation transcript:

1 Brute force attacks, DDOS, Botnet, Exploit, SQL injection
Keywords Brute force attacks, DDOS, Botnet, Exploit, SQL injection Systems Security Attacking Systems

2 Understand the concept of SQL injection.
Attacks Objectives BEGINNER: Understand the meaning of DDOS and brute force attacks and explain the effects. ADVANCED: State how vulnerabilities can be exploited and how to protect against them. EXPERT: Understand the concept of SQL injection. Define: Brute Force Attack DDOS Starter activity

3 Understand the concept of SQL injection.
Definitions Objectives BEGINNER: Understand the meaning of DDOS and brute force attacks and explain the effects. ADVANCED: State how vulnerabilities can be exploited and how to protect against them. EXPERT: Understand the concept of SQL injection. Brute Force Attack: Trial and error method. Can be used for gaining access to password-based entry systems. Consists of an attacker trying possible passwords and passphrases until a correct one is found. DDOS: Overloading a website with unwanted traffic. Uses a number of computers over a network of infected machines which send requests to a website which would bring it offline. Used as a ‘botnet. Starter activity

4 SQL Injection What are the effects of a successful attack? Define:
Objectives BEGINNER: Understand the meaning of DDOS and brute force attacks and explain the effects. ADVANCED: State how vulnerabilities can be exploited and how to protect against them. EXPERT: Understand the concept of SQL injection. Define: SQL Injection What are the effects of a successful attack? Starter activity

5 SQL Injection Definition
Objectives BEGINNER: Understand the meaning of DDOS and brute force attacks and explain the effects. ADVANCED: State how vulnerabilities can be exploited and how to protect against them. EXPERT: Understand the concept of SQL injection. Where an attacker can execute malicious SQL statements using software which controls a database management system. Can affect websites that use SQL-based databases Companies that use SQL include Google, YouTube, PayPal, eBay, Cisco. Exploits that have been identified must be patched quickly to reduce impact on businesses therefore important for organisations to update infrastructure regularly. By exploiting the vulnerabilities of SQL through injection, attackers could access systems containing customer data, intellectual property and other sensitive information. Starter activity

6 SQL Injection Definition
Objectives BEGINNER: Understand the meaning of DDOS and brute force attacks and explain the effects. ADVANCED: State how vulnerabilities can be exploited and how to protect against them. EXPERT: Understand the concept of SQL injection. What is needed to carry out an SQL injection? A relational database using SQL at the time of the attack. Malicious code to be used in an SQL query when it is run in order for the injection attack to take place. The effects of a successful attack: Should an attacker gain access to the database, they could: Bypass authentication procedures and impersonate specific users. Execute queries, exposing data. Altering data, resulting in data integrity issues. Delete data Starter activity

Download ppt "Brute force attacks, DDOS, Botnet, Exploit, SQL injection"

Similar presentations

Incident Handling & Log Analysis in a Web Driven World Manindra Kishore.

Incident Handling & Log Analysis in a Web Driven World Manindra Kishore.
Understand Database Security Concepts

Understand Database Security Concepts
WebGoat & WebScarab “What is computer security for $1000 Alex?”

WebGoat & WebScarab “What is computer security for $1000 Alex?”
Introduction The concept of “SQL Injection”

Introduction The concept of “SQL Injection”
Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.

Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Presenter Deddie Tjahjono.  Introduction  Website Application Layer  Why Web Application Security  Web Apps Security Scanner  About  Feature  How.

Presenter Deddie Tjahjono.  Introduction  Website Application Layer  Why Web Application Security  Web Apps Security Scanner  About  Feature  How.
Web Application Vulnerabilities Checklist. EC-Council Parameter Checklist  URL request  URL encoding  Query string  Header  Cookie  Form field 

Web Application Vulnerabilities Checklist. EC-Council Parameter Checklist  URL request  URL encoding  Query string  Header  Cookie  Form field 
Incident Response Updated 03/20/2015

Incident Response Updated 03/20/2015
Bill Gates’ RSA 2006 Keynote presentation Questions and answers.

Bill Gates’ RSA 2006 Keynote presentation Questions and answers.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
Malware  Viruses  E-mail Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.

Malware  Viruses  Virus  Worms  Trojan Horses  Spyware –Keystroke Loggers  Adware.
Prepared By, Mahadir Ahmad. StopBadware makes the Web safer through the prevention, mitigation, and remediation of badware websites. partners include.

Prepared By, Mahadir Ahmad. StopBadware makes the Web safer through the prevention, mitigation, and remediation of badware websites. partners include.
Preventing SQL Injection Attacks in Stored Procedures Alex Hertz Chris Daiello CAP6135Dr. Cliff Zou University of Central Florida March 19, 2009.

Preventing SQL Injection Attacks in Stored Procedures Alex Hertz Chris Daiello CAP6135Dr. Cliff Zou University of Central Florida March 19, 2009.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Basic Security Networking for Home and Small Businesses – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Basic Security Networking for Home and Small Businesses – Chapter 8.
Attacking Data Stores Brad Stancel CSCE 813 Presentation 11/12/2012.

Attacking Data Stores Brad Stancel CSCE 813 Presentation 11/12/2012.
Chapter 1 Overview The NIST Computer Security Handbook defines the term Computer Security as:

Chapter 1 Overview The NIST Computer Security Handbook defines the term Computer Security as:

Similar presentations

Ads by Google