This document discusses ethical hacking and the hacking process. It describes white hat, black hat, and grey hat hackers and explains the typical steps hackers use: footprinting to gather information, scanning networks and systems, gaining access, and maintaining access. Footprinting involves techniques like DNS queries and WHOIS searches. Scanning identifies live systems, services, and vulnerabilities. Gaining access can be done by spoofing or exploiting vulnerabilities. Maintaining access may involve installing backdoors or rootkits to enable repeated unauthorized access.

2.  Introduction to ETHICAL HACKING
 Hacking
 Hackers
 Types of Hackers
 Process of Hacking:
• Foot printing
• Scanning
• Gaining Access
• Maintaining Access

3.  Ethical -- LEGAL
 i.e. Legal Hacking
 Also known as white-hat hacking.
 Independent computer security professionals
breaking into the computer systems.

4.  To access some information or details of
someone/authority/organization for personal
interest/for its unwanted use/for any benefits
with/without the permission of that
person/authority/organization.
 This is known as hacking.

5.  The person who steals/access some
information from an organization/person for
its unwanted use/benefits to a
organization/person.

6. There are mainly three types of HACKERS:-
 WHITE HAT HACKERS
 BLACK HAT HACKERS
 GREY HAT HACKERS
Other hackers:-
 RED HAT HACKERS
 GREEN HAT HACKERS(small kidies)

7.  The person who access some
information/details for the benefit/welfare to
an organization or for the defensive purpose.
 These hackers use hacking technics legally
for a organization to prevent from the
security threats.

8.  Crackers with extraordinary computing skills,
resorting for malicious or destructive
activities for own personal gains.
 CRACKERS:- The person who intentionally
hacks for own personal gains.

9.  Usually one cannot predict the behavior of
grey hat hackers.
 It refers to a computer hacker or security
expert who may sometimes violate laws or
typical ethical standards , but does not have
the malicious intent as of a black hat hacker.

10. 1. FOOT PRINTING.
2. SCANNING.
3. GAINING ACCESS.
4. MAINTAINING ACCESS.

11.  Foot printing generally refers to one of the
pre-attack phases; tasks performed prior to
doing the actual attack.
 Technique used for gathering information
about computer systems and the entities they
belong to.
 A hacker might use various tools and
technologies. Some of the tools used for
Footprinting are Sam Spade, nslookup,
traceroute, Nmap and neotrace.

12.  DNS queries
 Network enumeration
 Network queries
 Operating system identification
 Port Scanning

13.  CRAWLING is the process of surfing the
internet to get the required information about
the target.
 WHOIS is a web application used to get
information about the target website, such as
the administrator's e-mail address and details
about the registration. WHOIS is a very large
database and contains information of
approximately all the websites. It can be
searched by domain name.

14.  Search engines such as Google can also be
used to gather information about the target
system.
 TRACEROUTE is used to trace a path between
a user and the target system on the networks.
 Negative web search will reveal some other
websites when performed on the target
website.

15.  Company details , employee details and their
email addresses.
 Relation with other companies.
 Project details involving other companies.
 Legal documents of the company.
 News relating company website.
 Patents and Trademarks regarding that
particular company. Important dates
regarding new projects

16.  After footprinting and reconnaissance,
scanning is the second phase of information
gathering that hackers use to size up a
network . Example- Network Scanning.
 Scanning is where they dive deeper into the
system to look for valuable data and services
in a specific IP address range.
 Discusses how hackers can identify live
systems via protocols, blueprint a network,
and perform a vulnerability scan to find
weaknesses.

17.  Gaining access is the most important phase of an
attack in terms of potential damage, although
attackers don’t always have to gain access to the
system to cause damage.
 For instance, denial-of-service attacks can either
exhaust resources or stop services from running
on the target system. Stopping a service can be
carried out by killing processes, using a
logic/time bomb, or even reconfiguring and
crashing the system.
 Attackers use a technique called spoofing to
exploit the system.

18.  Once an attacker gains access to the target
system, the attacker can choose to use both the
system and its resources and further use the
system as a launch pad to scan and exploit other
systems, or he can keep a low profile and
continue exploiting the system.
 Both these actions can damage the organization.
 Attackers who choose to remain undetected
remove evidence of their entry and use a back
door or a Trojan to gain repeat access. They can
also install rootkits at the kernel level to gain
super user access.