Presentation is loading. Please wait.

Presentation is loading. Please wait.

NT SECURITY: HACKING AND HOW TO PREVENT IT BY GREG WATSON.

Published byHortense Neal Modified over 8 years ago

Similar presentations

Presentation on theme: "NT SECURITY: HACKING AND HOW TO PREVENT IT BY GREG WATSON."— Presentation transcript:

1 NT SECURITY: HACKING AND HOW TO PREVENT IT BY GREG WATSON

2 WHAT IS HACKING? HACKING VS. "CRACKING" THE WORD HACKING HAS TWO DEFINITIONS: 1) THE HOBBY OR PROFESSION OF WORKING WITH COMPUTERS. 2) BREAKING INTO COMPUTER SYSTEMS OR "CRACKING" INTO THEM.

3 WHY HACK OR WHY CRACK? THE MIND OF THE HACKER OR WHAT ARE THE MOTIVATIONS OF HACKERS: SOCIAL MOTIVATIONS - peer acceptance, a feeling of self superiority. TECHNICAL MOTIVATIONS - people who hack who hack to help, in their minds, progress the evolution of technology.

4 FINANCIAL MOTIVATIONS - people who hack for personal gain. Corporate espionage, financial institutions, and even people who are pirating (or cracking) software for profit. POLITICAL MOTIVATIONS - hackers who break into systems related to a political movement they want to speak out against.

5 GOVERNMENT MOTIVATIONS - acts committed by one government against another. Information warfare and governmental espionage would fit into this category.

6 NT HACKER TOOLS NT Recover and NT Locksmith by Sysinternals. With NTRecover you can access a dead x86 NT system's disks from a good system over a serial connection. You can then salvage data off of the drives using native NT commands and utilities.

7 NTLocksmith is an add-on program to NTRecover that allows for the changing of passwords on systems where the administrative password has been lost. It works 100% of the time, and if you've forgotten the password to your machine, you can gain entry within minutes using NTLocksmith.

8 MORE NT HACKING TIPS pwdump - http://www.inch.com/~agagescu/hp/Ntpass.ht m#crack2. It walks through your SAM database and writes out a file with userid's and the hash values associated with the user's password.

9 SYN ATTACK Multiple TCP connection requests (SYN) are sent to the target computer with an unreachable source IP address. On receiving the connection request, the target computer allocates resources to handle and track the new connection, then responds with a "SYN-ACK" to the unreachable address.

10 10 An Internet Browsing Hacking Tip A URL such as 'http://www.domain.com/..\..' allows you to browse and download files outside of the webserver content root directory. A URL such as 'http://www.domain.com/scripts..\..\script name' allows you to execute the target script.

11 11 THE GUEST ACCOUNT By default user 'Guest' or IUSR_WWW has read access to all files on an NT disk. These files can be browsed, executed or downloaded by wandering guests.

12 12 KNOWN NT EXPLOITS http://xforce.iss.net/library/bill_stout/ntex ploits.htm

13 NT HACKING PREVENTION 18 basic NT Security Tips available at http://www.ntsecurity.net Rule #1: Always use NTFS disk partitions instead of FAT. /

14 14 Disable the Guest Account Create a New Administrator Account, and take the permissions away from the existing Administrator Account.

15 15 Make sure routers between your UN- trusted bordering networks (Internet, etc) can (and are configured to) stop source routing, IP spoofing, and ICMP redirects

Download ppt "NT SECURITY: HACKING AND HOW TO PREVENT IT BY GREG WATSON."

Similar presentations

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)
Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.
CISCO NETWORKING ACADEMY PROGRAM (CNAP)

CISCO NETWORKING ACADEMY PROGRAM (CNAP)
Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.

Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.
 Someone who exercises playful ingenuity  Misusers of the internet who try to obtain or corrupt information; people who try to prevent it.

 Someone who exercises playful ingenuity  Misusers of the internet who try to obtain or corrupt information; people who try to prevent it.
1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.

1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.
Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.

Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.
 Overview User Accounts Groups User Rights Permissions.

 Overview User Accounts Groups User Rights Permissions.
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.

ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Hacking Presented By :KUMAR ANAND SINGH 04-243,ETC/2008.

Hacking Presented By :KUMAR ANAND SINGH ,ETC/2008.
Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.

Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
Network Security Testing Techniques Presented By:- Sachin Vador.

Network Security Testing Techniques Presented By:- Sachin Vador.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Assessing the Threat How much money is lost due to cyber crimes? –Estimates range from $100 million to $100s billions –Why the discrepancy? Companies don’t.

Assessing the Threat How much money is lost due to cyber crimes? –Estimates range from $100 million to $100s billions –Why the discrepancy? Companies don’t.
Internet Relay Chat Security Issues By Kelvin Lau and Ming Li.

Internet Relay Chat Security Issues By Kelvin Lau and Ming Li.
Corso referenti S.I.R.A. – Modulo 2 Local Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano.

Corso referenti S.I.R.A. – Modulo 2 Local Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano.

Similar presentations

Ads by Google