Presentation is loading. Please wait.

Presentation is loading. Please wait.

Team BAM! Scott Amack, Everett Bloch, Maxine Major.

Published byClemence Dalton Modified over 8 years ago

Similar presentations

Presentation on theme: "Team BAM! Scott Amack, Everett Bloch, Maxine Major."— Presentation transcript:

1 Team BAM! Scott Amack, Everett Bloch, Maxine Major

2 Overview  What is penetration testing?  Who uses it and why?  Penetration testing tools  Demo

3 What is Penetration Testing?  Goal: identify holes in computer security  Penetration testing is identification of vulnerabilities.  Penetration testing may or may not include exploitation.

4 What is Penetration Testing? There are two sources of vulnerabilities to which penetration testing may be applied:  Human  Physical access to computing systems  Untrained / poor decisions  Hard to “fix”  Non-human  Open/unprotected ports  Poor passwords  Website vulnerabilities (XSS, etc.)

5 Who Uses Penetration Testing?  Most major companies perform penetration testing on their own services.  average loss is $5.5 million (not including value of data stolen!)  FICO - continually pen testing  Data vulnerability management Market  $400.5 million in 2011  $1 billion expected in 2016 (Businessweek)  Penetration testing is more than just using tools.

6 Penetration Testing  Penetration tester Kevin Bong developed the “Mini Pwner:” a computer the size of an Altoids tin.  After being plugged into a company’s Ethernet port, Mini Pwner:  Runs simple scanning tools,  Maps a company’s network,  Creates a VPN connection so a hacker can connect to the router’s wifi, and run further exploitation tools. (Forbes, 2012)

7 Penetration Testing  “The easiest way to get into a company is still to walk in looking professional and talk your way into a wiring closet” - Kevin Bong, Synercomm penetration tester

8 Penetration Testing Tools  Port Scanners  Vulnerability Scanners  Application Scanners

9 Penetration Testing Tools  Port Scanners  Gather info from a test target from a remote network location.  They tell us what network services are available for connection  Probes each of the target’s ports or services  Scans both TCP/UDP  Probing with TCP allows scanners to find out what OS is running

10 Penetration Testing Tools  Port Scanners Common Port Scanners include  Nmap  Angry IP Scanner  Superscan  NetScanTools  Unicornscan

11 Penetration Testing Tools  Vulnerability Scanners  Tests the vulnerabilities on target system.  Not only collects data about ports, it tests the ports.

12 Penetration Testing Tools  Commonly used Vulnerability Scanners  Nessus  Core Impact  Nexpose  QualysGuard  Retina  Nipper  SAINT

13 Penetration Testing Tools  Application Scanners  Targets web based applications  Probes each page of an web-based application and attempts common attacks on each page of the application.  Tests for the potential to attack:  Buffer overruns  Cookie manipulation  SQL injection  XSS

14 Penetration Testing Tools  Commonly used Application Scanners  Appscan  Nikto  WebInspect  w3af  Paros proxy  WebScarab  sqlmap  skipfish

15 The Future of Penetration Testing  Idappcom developed software Traffic IQ as an attempt to replace penetration testing companies.  Data comes from Sourcefire, McAfee, Juniper, Cisco, etc.  Exploits come from Metasploit, Packetstorm and SecurityFocus forums.  Can be continually run, rather than “snapshot” penetration testing.  (Just another tool.)

16 Penetration Test Demo  Tool we will use: Nmap Goal: discover and gather information on open ports and vulnerabilities on target systems in this laboratory.

17 Nmap Demo Recap -sTTCP -sSSYN -sUUDP -sXXMAS -sNNULL

18 Conclusions  Penetration testing must look for both the human and non-human weaknesses of a system.  Penetration test your own system before someone else does!  Penetration testing tools are useful, but their power is incomplete. Experience is the best tool.

19 Recap  What is penetration testing?  Who uses it and why?  Types of penetration testing tools  Port Scanners  Vulnerability Scanners  Application Scanners  Nmap demo

20 Questions?

21 References  Nmap http://nmap.org/  Hacker's Tiny Spy Computer Cracks Corporate Networks, Fits In An Altoid “Tin” http://www.forbes.com/sites/andygreenberg/2012/04/17/hackers-tiny-spy- computer-cracks-corporate-networks-fits-in-an-altoid-tin/  “FICO Hacks Itself to Prevent Cybercriminal Attacks “ http://mobile.businessweek.com/articles/2012-04-03/fico-hacks-itself-to- prevent-cybercriminal-attacks  “Organisations can stay cyber secure with fixed-price penetration testing” http://www.melodika.net/index.php?option=com_content&task=view&id=5 61926&Itemid=55  “Idappcom seeks to displace penetration testers” http://www.pcworld.idg.com.au/article/362450/idappcom_seeks_displace_p enetration_testers/

Download ppt "Team BAM! Scott Amack, Everett Bloch, Maxine Major."

Similar presentations

ETHICAL HACKING.

ETHICAL HACKING.
PENETRATION TESTING Presenters:Chakrit Sanbuapoh Sr. Information Security MFEC.

PENETRATION TESTING Presenters:Chakrit Sanbuapoh Sr. Information Security MFEC.
Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.
Penetration Testing & Countermeasures Paul Fong & Cai Yu CS691 5 May 2003.

Penetration Testing & Countermeasures Paul Fong & Cai Yu CS691 5 May 2003.
Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.

Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.
Penetration Testing Anand Sudula, CISA,CISSP SSA Global Technologies, India Anand Sudula, CISA,CISSP SSA Global Technologies, India.

Penetration Testing Anand Sudula, CISA,CISSP SSA Global Technologies, India Anand Sudula, CISA,CISSP SSA Global Technologies, India.
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Vulnerability Analysis Borrowed from the CLICS group.

Vulnerability Analysis Borrowed from the CLICS group.
CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.

CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.
Network Security Testing Techniques Presented By:- Sachin Vador.

Network Security Testing Techniques Presented By:- Sachin Vador.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Commercial Attack Tools Team BAM! Scott Amack, Everett Bloch, Maxine Major.

Commercial Attack Tools Team BAM! Scott Amack, Everett Bloch, Maxine Major.
Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.

Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.
Sam Cook April 18, 2013. Overview What is penetration testing? Performing a penetration test Styles of penetration testing Tools of the trade.

Sam Cook April 18, Overview What is penetration testing? Performing a penetration test Styles of penetration testing Tools of the trade.
Performing a Penetration Test.  Penetration Tester  Attempts to reveal potential consequences of a real attack  Security Audit / Vulnerability Assessment.

Performing a Penetration Test.  Penetration Tester  Attempts to reveal potential consequences of a real attack  Security Audit / Vulnerability Assessment.
Information Systems CS-507 Lecture 40. Availability of tools and techniques on the Internet or as commercially available software that an intruder can.

Information Systems CS-507 Lecture 40. Availability of tools and techniques on the Internet or as commercially available software that an intruder can.
CIS 460 – Network Design Seminar Network Security Scanner Tool GFI LANguard.

CIS 460 – Network Design Seminar Network Security Scanner Tool GFI LANguard.
Common Cyber Defenses Tom Chothia Computer Security, Lecture 18.

Common Cyber Defenses Tom Chothia Computer Security, Lecture 18.
Attack Lifecycle Many attacks against information systems follow a standard lifecycle: –Stage 1: Info. gathering (reconnaissance) –Stage 2: Penetration.

Attack Lifecycle Many attacks against information systems follow a standard lifecycle: –Stage 1: Info. gathering (reconnaissance) –Stage 2: Penetration.

Similar presentations

Ads by Google