NK
Uploaded byNandan Kushwaha
PPTX, PDF1,212 views

Ethical hacking

The document provides an overview of ethical hacking, which is legal hacking performed with organizational permission to enhance security. It categorizes hackers into white hat, black hat, and grey hat, explains the ethical hacking process in stages such as footprinting, scanning, enumeration, gaining access, and covering tracks, and discusses methods like sniffing and SQL injection. The conclusion advises caution in sharing passwords and using the internet securely.

Embed presentation

Downloaded 84 times
Ethical Hacking BY:- NANDAN KUSHWAHA & RICHA ARORA
CONTENTS Introduction Types of Hacker Types of Hacking Term used in Hacking Why- Ethical Hacking Ethical Hacking Process Footprinting Scanning Enumeration Gaining Access Covering Tracks Sniffing SQL Injection Conclusion
INTRODUCTION 'Ethical Hacking' Is A Form of 'Legal Hacking' That Is Done With The Permission of An Organization To Help Increase Its Security.
TYPES OF HACKERS White Hat Hacker  Good guys  Don’t use their skill for illegal purpose  Computer security experts and help to protect from Black Hats. Black Hat Hacker/Cracker  Bad guys  Use their skill maliciously for personal gain  Hack banks, steal credit cards and deface websites  Grey Hat Hacker  It is a combination of White hat & Black Hat Hackers
TYPES OF HACKING Website Hacking Email Hacking Network Hacking Password Hacking Online banking Hacking Computer Hacking
TERMS USED IN HACKING Vulnerability If we find any low security or absence of security in system this is called vulnerability. Vulnerability is the cause of hacking. RED Team Different skills of hackers work together for hacking purpose. Target or Victim Hacked system is called target or victim. Patch Level Removing vulnerability is called patch level.
Why – Ethical Hacking To protect from possible External Attacks. To create a security from being Hacked.
Ethical Hacking Processes Footprinting Scanning Enumeration Gaining Access Covering Tracks
Phase-1: FOOTPRINTING The fine art of gathering target information is called footprinting. Collecting as much information about the target DNS Servers IP Ranges Administrative Contacts
TYPES OF FOOTPRINTING 1. Passive In passive footprinting attacker never makes any contact with the target system.  Google Search whois queries DNS lookup  Social Networking sites 2. Active Mirroring website Download all available content for offline Analysis. Tools- Teleport pro, HTTrack website copier. Email Tracking Examine email processing path.
Phase-2: SCANNING What is actually running on the system. Windows Linux Mac UNIX Scanning is important to both attackers and those responsible for security hosts and network.
TYPES OF SCANNING PORT Scanning Scans open ports and services Network Scanning IP Addresses  VALNERABILITY Scanning Presence of Known weakness
Phase-3: ENUMERATION Enumeration makes a fixed active connection to a system and collect information like. User Name & User Group List of computer and their operating system and Open Ports. Machine name, network resources and Services.
Phase-4: GAING ACCESSS This is the place where real hacking takes place. On this phase hacker gain access on the target system. This hacking attack done with the specialized tools. The hacker has control on target and can use the target system as their wish.
Phase-5: COVERING TRACKS Covering tracks refers to the activities that the hacker does to hide their actions. If this is not done then a hacker can easily track back. This is the step where hacker removes all his/her identity or tracks like History files, Backup Files etc..
Sniffing Sniffing is a data interception technology. It is done within a network when data flows. The purpose is to steal information, usually user ID’s, password, network details, credit card numbers etc.
SQL Injection SQL Injection is a technique where user can inject SQL commands into a SQL statement, via web page input. Used to bypass UserID and Password. Hacker use these string on the place of User Name & Password: ‘ or 1=1— ‘or ‘a’=‘a’ “or” 1=1 ‘) or (‘a’=‘a’
SQL Injection Continue… What happens when use these string as user id and password? Login ID: ‘OR “=“ Password: ‘OR “=“ SQL Query for this value: SELECT Username FROM users WHERE Username= “OR”=“ AND Password= “OR”=“ This query compares “ (nothing) to “(nothing), which always returns true. So, A hacker can easily bypass UserID and Password and Login in to the website by using SQL Injection.
CONCLUSION Don’t expose your password to untrusted sites. Close your internet when not in use. Be safe and secure.
THANK YOU   

More Related Content

PPTX
Social engineering presentation
bypooja_doshi
 
PPSX
Information Security and Ethical Hacking
byDivyank Jindal
 
PPTX
Ethical hacking
byInstitute of Information Security (IIS)
 
PPTX
Ethical Hacking
byNamrata Raiyani
 
PPT
Ethical Hacking
byKeith Brooks
 
PPT
Ethical hacking a licence to hack
byDharmesh Makwana
 
PPTX
Cybersecurity Awareness
byJoshuaWisniewski3
 
PPTX
Social engineering
byAbdelhamid Limami
 
Social engineering presentation
bypooja_doshi
 
Information Security and Ethical Hacking
byDivyank Jindal
 
Ethical hacking
byInstitute of Information Security (IIS)
 
Ethical Hacking
byNamrata Raiyani
 
Ethical Hacking
byKeith Brooks
 
Ethical hacking a licence to hack
byDharmesh Makwana
 
Cybersecurity Awareness
byJoshuaWisniewski3
 
Social engineering
byAbdelhamid Limami
 

What's hot

PPTX
Presentation of Social Engineering - The Art of Human Hacking
bymsaksida
 
PPTX
Cyber Security
byADGP, Public Grivences, Bangalore
 
PPTX
Ethical Hacking
byTharindu Kalubowila
 
PDF
Social engineering
byRobert Hood
 
PPTX
Man in the middle attack .pptx
byPradeepKumar728006
 
PPTX
Owasp Top 10 A1: Injection
byMichael Hendrickx
 
PPTX
Ethical hacking
byAlapan Banerjee
 
PPTX
Social engineering-Attack of the Human Behavior
byJames Krusic
 
PPTX
Cyber security(2018 updated)
byPrabhatChoudhary11
 
PPTX
Ethical hacking presentation
bySuryansh Srivastava
 
PPTX
Anti phishing
byShethwala Ridhvesh
 
PPTX
Social engineering
byMaulik Kotak
 
PPTX
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
PPT
Ethical hacking
byMonika Deswal
 
PPTX
Cyber security Information security
byAYESHA JAVED
 
PPTX
Introduction To Exploitation & Metasploit
byRaghav Bisht
 
PPTX
Ethical hacking
byVipinYadav257
 
DOCX
Final report ethical hacking
bysamprada123
 
PPTX
Introduction to Cyber Security
byPriyanshu Ratnakar
 
PPTX
Social engineering
byVishal Kumar
 
Presentation of Social Engineering - The Art of Human Hacking
bymsaksida
 
Cyber Security
byADGP, Public Grivences, Bangalore
 
Ethical Hacking
byTharindu Kalubowila
 
Social engineering
byRobert Hood
 
Man in the middle attack .pptx
byPradeepKumar728006
 
Owasp Top 10 A1: Injection
byMichael Hendrickx
 
Ethical hacking
byAlapan Banerjee
 
Social engineering-Attack of the Human Behavior
byJames Krusic
 
Cyber security(2018 updated)
byPrabhatChoudhary11
 
Ethical hacking presentation
bySuryansh Srivastava
 
Anti phishing
byShethwala Ridhvesh
 
Social engineering
byMaulik Kotak
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
byStephen Cobb
 
Ethical hacking
byMonika Deswal
 
Cyber security Information security
byAYESHA JAVED
 
Introduction To Exploitation & Metasploit
byRaghav Bisht
 
Ethical hacking
byVipinYadav257
 
Final report ethical hacking
bysamprada123
 
Introduction to Cyber Security
byPriyanshu Ratnakar
 
Social engineering
byVishal Kumar
 

Similar to Ethical hacking

PPTX
Ethical hacking : Its methodologies and tools
bychrizjohn896
 
DOCX
Ethical hacking
byNitheesh Adithyan
 
PPTX
ethical hacking
bysamprada123
 
PPTX
Ethical Hacking.pptx
byMadhuKumar114889
 
PPT
1.hacking and its types for all types of attackers.ppt
byRohitAhuja58
 
PPTX
ethecal hacking ciber security ,need of ethecal hacking
byamriksinghtalwar74
 
PPTX
Cse ethical hacking ppt
bySHAHID ANSARI
 
PPTX
Cse ethical hacking ppt
bySHAHID ANSARI
 
PPTX
Introduction to ethical hacking
byHassanAhmedShaikh1
 
PPT
Introduction to ethical hacking
byankit sarode
 
PPTX
Ethical Hacking
byAditya Vikram Singhania
 
PPTX
How to hack or what is ethical hacking
bybaabtra.com - No. 1 supplier of quality freshers
 
PPTX
Introduction to Pre-Cybersecurity.pptx
byyoufanlimboo
 
PPTX
Ethical hacking introduction to ethical hacking
bymissstevenson01
 
PPTX
Ethical hacking introduction to ethical hacking
byMissStevenson1
 
PPTX
Ethical Hacking
byNitheesh Adithyan
 
PPTX
Introduction ethical hacking
byVishal Kumar
 
PPTX
Ethical hacking
byPraneeth Reddy
 
PPT
Ethical Hacking
byRohan Raj
 
PDF
Lec_11_Introduction to Cyber Security.pdf
byMohammedAdel426426
 
Ethical hacking : Its methodologies and tools
bychrizjohn896
 
Ethical hacking
byNitheesh Adithyan
 
ethical hacking
bysamprada123
 
Ethical Hacking.pptx
byMadhuKumar114889
 
1.hacking and its types for all types of attackers.ppt
byRohitAhuja58
 
ethecal hacking ciber security ,need of ethecal hacking
byamriksinghtalwar74
 
Cse ethical hacking ppt
bySHAHID ANSARI
 
Cse ethical hacking ppt
bySHAHID ANSARI
 
Introduction to ethical hacking
byHassanAhmedShaikh1
 
Introduction to ethical hacking
byankit sarode
 
Ethical Hacking
byAditya Vikram Singhania
 
How to hack or what is ethical hacking
bybaabtra.com - No. 1 supplier of quality freshers
 
Introduction to Pre-Cybersecurity.pptx
byyoufanlimboo
 
Ethical hacking introduction to ethical hacking
bymissstevenson01
 
Ethical hacking introduction to ethical hacking
byMissStevenson1
 
Ethical Hacking
byNitheesh Adithyan
 
Introduction ethical hacking
byVishal Kumar
 
Ethical hacking
byPraneeth Reddy
 
Ethical Hacking
byRohan Raj
 
Lec_11_Introduction to Cyber Security.pdf
byMohammedAdel426426
 

Ethical hacking

  • 1.
  • 2.
    CONTENTS Introduction Types of Hacker Typesof Hacking Term used in Hacking Why- Ethical Hacking Ethical Hacking Process Footprinting Scanning Enumeration Gaining Access Covering Tracks Sniffing SQL Injection Conclusion
  • 3.
    INTRODUCTION 'Ethical Hacking' IsA Form of 'Legal Hacking' That Is Done With The Permission of An Organization To Help Increase Its Security.
  • 4.
    TYPES OF HACKERS WhiteHat Hacker  Good guys  Don’t use their skill for illegal purpose  Computer security experts and help to protect from Black Hats. Black Hat Hacker/Cracker  Bad guys  Use their skill maliciously for personal gain  Hack banks, steal credit cards and deface websites  Grey Hat Hacker  It is a combination of White hat & Black Hat Hackers
  • 5.
    TYPES OF HACKING WebsiteHacking Email Hacking Network Hacking Password Hacking Online banking Hacking Computer Hacking
  • 6.
    TERMS USED INHACKING Vulnerability If we find any low security or absence of security in system this is called vulnerability. Vulnerability is the cause of hacking. RED Team Different skills of hackers work together for hacking purpose. Target or Victim Hacked system is called target or victim. Patch Level Removing vulnerability is called patch level.
  • 7.
    Why – EthicalHacking To protect from possible External Attacks. To create a security from being Hacked.
  • 8.
  • 9.
    Phase-1: FOOTPRINTING The fineart of gathering target information is called footprinting. Collecting as much information about the target DNS Servers IP Ranges Administrative Contacts
  • 10.
    TYPES OF FOOTPRINTING 1.Passive In passive footprinting attacker never makes any contact with the target system.  Google Search whois queries DNS lookup  Social Networking sites 2. Active Mirroring website Download all available content for offline Analysis. Tools- Teleport pro, HTTrack website copier. Email Tracking Examine email processing path.
  • 11.
    Phase-2: SCANNING What isactually running on the system. Windows Linux Mac UNIX Scanning is important to both attackers and those responsible for security hosts and network.
  • 12.
    TYPES OF SCANNING PORTScanning Scans open ports and services Network Scanning IP Addresses  VALNERABILITY Scanning Presence of Known weakness
  • 13.
    Phase-3: ENUMERATION Enumeration makesa fixed active connection to a system and collect information like. User Name & User Group List of computer and their operating system and Open Ports. Machine name, network resources and Services.
  • 14.
    Phase-4: GAING ACCESSS Thisis the place where real hacking takes place. On this phase hacker gain access on the target system. This hacking attack done with the specialized tools. The hacker has control on target and can use the target system as their wish.
  • 15.
    Phase-5: COVERING TRACKS Coveringtracks refers to the activities that the hacker does to hide their actions. If this is not done then a hacker can easily track back. This is the step where hacker removes all his/her identity or tracks like History files, Backup Files etc..
  • 16.
    Sniffing Sniffing is adata interception technology. It is done within a network when data flows. The purpose is to steal information, usually user ID’s, password, network details, credit card numbers etc.
  • 17.
    SQL Injection SQL Injectionis a technique where user can inject SQL commands into a SQL statement, via web page input. Used to bypass UserID and Password. Hacker use these string on the place of User Name & Password: ‘ or 1=1— ‘or ‘a’=‘a’ “or” 1=1 ‘) or (‘a’=‘a’
  • 18.
    SQL Injection Continue… Whathappens when use these string as user id and password? Login ID: ‘OR “=“ Password: ‘OR “=“ SQL Query for this value: SELECT Username FROM users WHERE Username= “OR”=“ AND Password= “OR”=“ This query compares “ (nothing) to “(nothing), which always returns true. So, A hacker can easily bypass UserID and Password and Login in to the website by using SQL Injection.
  • 19.
    CONCLUSION Don’t expose yourpassword to untrusted sites. Close your internet when not in use. Be safe and secure.
  • 20.