Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hacking Your Local Internets

Published byAysel Çalık Modified over 5 years ago

Similar presentations

Presentation on theme: "Hacking Your Local Internets"— Presentation transcript:

1 Hacking Your Local Internets
A guide for monkeys

2 What are we going after The ISP’s Externally facing IP Addresses
Routers Cameras DVR’s Whatever else is out there with an IP

3 What tools are needed? Linux or Windows Python Masscan or nmap Common words Arin db

4 What exactly are we doing?
Attacking morons and low hanging fruit

5 Step 1: What’s my ip?

6 Step 2: What’s the range? So /16 is the address range, roughly 64k hosts.

7 Step 3: Scan! masscan -p80,443,8080,8443,81,4444,4443, /16 Starting masscan ( at :59:13 GMT -- forced options: -sS -Pn -n --randomize-hosts -v --send-eth Initiating SYN Stealth Scan Scanning hosts [8 ports/host] Discovered open port 8080/tcp on Discovered open port 443/tcp on Discovered open port 443/tcp on Discovered open port 8080/tcp on Discovered open port 443/tcp on Discovered open port 81/tcp on Discovered open port 443/tcp on Discovered open port 443/tcp on Discovered open port 8080/tcp on Discovered open port 8080/tcp on

8 Step 4: Visit / Probe - this can take forever

9 Step 5: Format Datas

10 Step 5.5 Formatting Datas….
Assume I did the same for HTTPS...

11 Step 6: Code Your Attack

12 Step 7: Automate that shit

13 Step 8: Reap the rewards of your fruit

14 Step 9: Look at the weird stuff on your local CDIR

15 Step 10: Pop some boxes Classic file abuse in CGI program:

16 Now let’s go after the local net here...

17 Thank you Questions?

Download ppt "Hacking Your Local Internets"

Similar presentations

Code-Red : a case study on the spread and victims of an Internet worm David Moore, Colleen Shannon, Jeffery Brown Jonghyun Kim.

Code-Red : a case study on the spread and victims of an Internet worm David Moore, Colleen Shannon, Jeffery Brown Jonghyun Kim.
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,

 Dynamic policies o Change as system security state/load changes o GAA architecture  Extended access control lists  Pre-, mid- and post-conditions,
Security Scan melalui Internet Onno W. Purbo

Security Scan melalui Internet Onno W. Purbo
TRUE Blind ip spoofed portscanning Thomas Olofsson C.T.O Defcom.

TRUE Blind ip spoofed portscanning Thomas Olofsson C.T.O Defcom.
CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.

CIT 380: Securing Computer SystemsSlide #1 CIT 380: Securing Computer Systems Scanning.
Scanning Determining if the system is alive IP Scanning Port Scanning War Dialing.

Scanning Determining if the system is alive IP Scanning Port Scanning War Dialing.
CS682- Network Management and Security Prof. Katz.

CS682- Network Management and Security Prof. Katz.
Remote Viewing Setup DVR & IP Video Devices

Remote Viewing Setup DVR & IP Video Devices
Network Terminology … Remember: Knowledge is Power!

Network Terminology … Remember: Knowledge is Power!
1 Anti-Hacker Tool Kit Port Scanners Chapter 6. 2 Introduction The first step in the process of hacking –Discover the services –Version label –Operation.

1 Anti-Hacker Tool Kit Port Scanners Chapter 6. 2 Introduction The first step in the process of hacking –Discover the services –Version label –Operation.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Port Scanners.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Port Scanners.
CIS 235: Networks Fall, 2007 Western State College Computer Networks Fall, 2007 Prof Peterson.

CIS 235: Networks Fall, 2007 Western State College Computer Networks Fall, 2007 Prof Peterson.
Port Scanning Yiqian Zhang CS 265 Project. What is Port Scanning? port scanning is equivalent to knocking on the walls to find all the doors and windows.

Port Scanning Yiqian Zhang CS 265 Project. What is Port Scanning? port scanning is equivalent to knocking on the walls to find all the doors and windows.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
McGraw-Hill©The McGraw-Hill Companies, Inc., 2001 Chapter 24 TCP/IP.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2001 Chapter 24 TCP/IP.
IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)

IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)
Ana Chanaba Robert Huylo

Ana Chanaba Robert Huylo
Mohan Kumar Puttasiddaiah

Mohan Kumar Puttasiddaiah
1 Reconnaissance, Network Mapping, and Vulnerability Assessment ECE4112 – Internetwork Security Georgia Institute of Technology.

1 Reconnaissance, Network Mapping, and Vulnerability Assessment ECE4112 – Internetwork Security Georgia Institute of Technology.

Similar presentations

Ads by Google