Upload File

“the quieter you become, the more you can hear” · 2018. 4. 17. · security tools...

  • Home
  • Documents
  • “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap
12
“the quieter you become, the more you can hear”

Upload: others

Post on 21-Sep-2020

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

“the quieter you become,

the more you can hear”

Page 2: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

What is KALI LINUX

• Debian-derived Linux disto

• Member of UNIX OS family

• Maintained and funded by Offensive Security

• Primarily designed for Penetration Testing and Digital Forensics

• Completely customizable

• Free and always will be

Page 3: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Security Tools

• Metasploit – Develop and Execute Exploit Code

• John the Ripper – Password Cracker

• Nmap – Port scanning, services, and OS fingerprinting

• Aircrack-ng – Wireless Network “Auditing”

• Open-VAS – Vulnerability Scanner (add-on)

• Wireshark – Analyze Packets

Page 4: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Flexibility of KALI LINUX

• Run on multiple platforms and methods• Installed locally to hard drive

• Can be booted from live CD or USB

• Virtual machine

• Android

• ARM devices

Page 5: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Demo time!

• My Hack Lab• Oracle Ravello• Thanks Grant

• Flat network

• Kali Linux

• Windows 10

• Metasploitable

Page 6: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap
Page 7: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Thanks YouTube!

Page 8: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Thanks YouTube!

• MetaSploit –https://www.youtube.com/watch?v=Cs3LYS6pv6M

• John the Ripper –https://www.youtube.com/watch?v=eAn8dYdn1eY

• Aircrack-NG –https://www.youtube.com/watch?v=xGDkMutoz5Y

• NMAP –

Their all silent movies, so I’m gonna use my laptop

https://www.youtube.com/watch?v=Cs3LYS6pv6M
https://www.youtube.com/watch?v=eAn8dYdn1eY
https://www.youtube.com/watch?v=xGDkMutoz5Y
Page 9: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Offensive Security Certificates

• Offensive Security Certified Professional - OSCP• Penetration Testing with Kali Linux

• Offensive Security Wireless Professional – OSWP

• Offensive Security Wireless Attacks (WiFu)

• Offensive Security Certified Expert – OSCE• Cracking the Perimeter (CTP)

Page 10: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

Offensive Security Certificates

• Offensive Security Exploitation Expert – OSEE• Expertise in advanced windows exploit development

• Offensive Security Web Expert – OSWE• expertise in advanced web application exploitation

Page 11: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap
Page 12: “the quieter you become, the more you can hear” · 2018. 4. 17. · Security Tools •Metasploit –Develop and Execute Exploit Code •John the Ripper –Password Cracker •Nmap

howto-linux-nmap - brazil.minnesota.edubrazil.minnesota.edu/examples/ex/howto-linux-nmap.pdf · This pdf shows the installation of nmap. basic nmap operation. and saving nmap output

Creating Road Intersection MAP Data for MMITSS “ The NMAP File” Webinar #… · NMAP File Creation Workflow. 9 NMAP File Creation Workflow. ESRI ArcMAP Screen. 10 NMAP File Creation

nmap perintah

Metasploit Unleashed

Nmap Experiment

[email protected] Metasploit Framework Framework1.pdfl' interfacciamento con tool del calibro di Nmap e Nessus, (il famoso prodotto della Tenable che occupa i vertici tra I Vulnetability

Fooling Nmap and Metasploit: Cyber Deception on Production

Metasploit Basics

PerformanceEvaluationin High-SpeedNetworksbythe ... · TCPSYNflood hping3 UDPflood hping3 SYNscan nmap-sS SYNOS-scan nmap-sS-O UDPscan nmap-sU Userenumeration nmap. 14 PerformanceEvaluationinHigh-SpeedNetworksbytheExampleofIDS

Nmap Guide

Introduction Web Hacking Post-Exploitation with...Introduction Web Hacking Post-Exploitation . ... –Metasploit, Nmap, BeEF, Fierce2 –Backtrack developer for 5 years •Convinced

Metasploit Framework Unleashed beyond Metasploit · PDF fileMetasploit Framework Unleashed –beyond Metasploit ... MSF Bind Payload

Raspberry Pi for the Infrastructure and hacker · 2020. 1. 17. · ettercap-gtk ettercap-plugins fasttrack fg-dump hping ipcalc John the Ripper Laudanum mdcoll Metasploit Mimikatz

Louisville Infosec - Metasploit Class - Fuzzing and Exploit Development with Metasploit

How to overthrow a Government - DEF CON CON 24/DEF CON 24... · Tools Nmap Wireshark Burp OllyDB / Ida Pro SQLMAP Metasploit SET/BeEF Techniques Meaning Tools Pro Agitation Professional

Metasploit Completo

Nmap Nessus

Curso Metasploit

Operating Systems and Program (in)security · 2019-12-03 · NMAP Mapping and Fingerprinting Vulnerability Assessment OpenVAS Vulnerability Scanner Penetration Testing Metasploit

Risk Management Webinar Series - MedmarcStep 1 Perform a Traditional Security Assessment Open source tools such as Nmap, Nessus, and Metasploit can help. Step 2 Perform Blackbox Testing

Metasploit Analysis PPT - Temple MIS · 2017-05-08 · Nmap& NesusAnalysis! Step 1: nmapifconfig! IP address: 192.168.69.142! Step 2: nmap192.168.69.142! 977 closed ports, 23 open

The Guide to Nmap - Nmap - Free Security Scanner For Network

root@nmap~#whoami. - Irongeek.com · Nmap Scripting Engine Metasploit Integration AV Evasion NSE Scripts: What, Where, Why and How Using Scripts like a boss for pentesting

Metasploitable - Rapid7 · PDF fileScanning Metasploitable with the Metasploit Framework If you are a Metasploit Framework user, you can run an Nmap scan directly from msfconsole

Nmap: Scanning the Internet - Nmap - Free Security Scanner For

Quick Start Guide to Penetration Testing: With NMAP, OpenVAS and Metasploit

Metasploit (Module-1) - Getting Started With Metasploit

Nmap basico

Curso Nmap

Nmap/Zenmap/Metasploit/Armitage website: …nob.cs.ucdavis.edu/classes/ecs153-2015-02/outlines/2015-04-20-dis... · Nmap/Zenmap/Metasploit/Armitage website: ... Benefit of using nmap

Ahighavailability, nextgeneration firewall for ...€¦ · as Nessus, Nmap and Metasploit. We had assigned the external in terface with a fixed IPaddress for this purpose. Our goal

Nmap Basics

nmap Paper

Advanced Network Reconnaissance with Nmap · Advanced Network Reconnaissance with Nmap by Fyodor [email protected] ... "SCAN nmap fingerprint attempt"; flags…

Nsploit: Popping boxes using Nmap - SecTor boxes with Nmap… · Waiting for commands to come in from Nmap Nmap with NSE Libraries NSE core library NSE scripts that trigger Metasploit