LDAP Ethical Enumeration
LDAP is the Lightweight Directory Access Protocol and is used extensively in various forms of enterprise servers. It provides a repository for organizational entity information. Allowing the structure of organizations and the people within them, to be reflected in a form that can be queried.
Know more
-SMTP and DNS Enumeration
SMTP enumeration allows us to identify valid users on the SMTP server. This is done with the built-in SMTP commands using them. VRFY – This command is used to authenticate the user. EXPN – This command displays the actual mailing address for aliases and mailing lists.
Know more
-Other enumeration technique
Enumeration is extracting a system's valid usernames, machine names, share names, directory names, and other information. It is a key component of ethical hacking and penetration testing, as it can provide attackers with a wealth of information that can be used to exploit vulnerabilities
Know more
-Enumeration countermeasure
Know more
-Enumeration Pen Testing
Enumeration is the method that a penetration tester uses to identify information about in-scope assets. A pen tester will use an automated process to identify all active IP addresses within the scope and some limited information about those devices, such as type and operating system version.
Know more
-Vulnerability Assessment Concept:
A vulnerability assessment is a systematic review of security weaknesses in an information system. It evaluates if the system is susceptible to any known vulnerabilities, assigns severity levels to those vulnerabilities, and recommends remediation or mitigation, if and whenever needed.
Know more
-Vulnerability Assessment Solution-
The integrated vulnerability assessment solution supports both Azure virtual machines and hybrid machines. To deploy the vulnerability assessment scanner to your on-premises and multicloud machines, connect them to Azure first with Azure Arc as described in Connect your non-Azure machines to Defender for Cloud.
Know more
-Vulnerability Scoring System
The Common Vulnerability Scoring System (CVSS) is a method used to supply a qualitative measure of severity. CVSS is not a measure of risk. CVSS consists of three metric groups: Base, Temporal, and Environmental.
Know more
-vulnerability Assessment tool-
Vulnerability assessment tools are designed to automatically scan for new and existing threats that can target your application. Types of tools include: Web application scanners that test for and simulate known attack patterns. Protocol scanners that search for vulnerable protocols, ports and network services.
-Vulnerability Assessment Report
Vulnerability assessment reports play a vital role in ensuring the security of an organization's applications, computer systems, and network infrastructure. The goal of a vulnerability assessment report is to highlight threats to an organization's security posed by vulnerabilities in its IT environment
Know more
-System hacking Concept -
System hacking is defined as the compromise between computer systems and software to access the target computer and steal or misuse their sensitive information. The malware and the attacker identify and exploit the vulnerability of the computer system to gain unauthorized access.
Know more
-Cracking password
Password cracking is the process of attempting to gain Unauthorized access to restricted systems using common passwords or algorithms that guess passwords. In other words, it’s an art of obtaining the correct password that gives access to a system protected by an authentication method.
Know more
-Scalating privileges
Privilege escalation is a type ofnetwork attack used to gain unauthorized access to systems within a security perimeter.
Attackers start by finding weak points in an organization’s defenses and gaining access to a system. In many cases that first point of penetration will not grant attackers with the level of access or data they need. They will then attempt privilege escalation to gain more permissions or obtain access to additional, more sensitive systems.
Know more
-Executing Application
Intruder executes malicious applications after gaining administrative privileges so they can run malicious programs remotely, to capture all sensitive data, crack passwords, capture screenshots or to install a backdoor.
Know more
-Hiding files
Rootkits are programs that hackers use in order to evade detection while trying to gain unauthorized access to a computer. Rootkits when installing on a computer, are invisible to the user and also take steps to avoid being detected by security software.
Know more
-Covering Tracks -
Covering tracks is made possible by obfuscating the source of a malicious event and removing any residual traces of that event before leaving the target environment.
Know more
-Penetration testing
A penetration test (pen test) is an authorized simulated attack performed on a computer system to evaluate its security. Penetration testers use the same tools, techniques, and processes as attackers to find and demonstrate the business impacts of weaknesses in a system.
Know more
-Malware concept
Malware is malicious software which when enters the target host, gives an attacker full or limited control over the target. They can either damage or modify the functionalities of target host helping an attacker to steal or destroy information.
Know more
-Trojon Concept
Trojans are non-replication programs; they don't reproduce their own codes by attaching themselves to other executable codes. They operate without the permissions or knowledge of the computer users. Trojans hide themselves in healthy processes.
Know more
-The worm is a standalone malicious program which spreads from computer to computer, but unlike a virus, it has the capability to travel without any human action. A worm takes advantage of file or information transport features on the system, which is what allows it to travel unaided.
Know more
-Malware analysis
A strong Malware Analysis practiceaids in the analysis, detection, and mitigation of potential threats. Malware Analysis can help organizations identify malicious objects used in advanced, targeted, and zero-day attacks.
Know more
-Countermeasures
Actions, devices, procedures, techniques, or other measures that reduce the vulnerability of an information system. Protective measures prescribed to meet the security requirements (i.e., confidentiality, integrity, and availability) specified for an information system.
Know more
-Anti-malware software
Antimalware is a type of software program created to protect information technology (IT) systems and individual computers from malicious software, or malware. Antimalware programs scan a computer system to prevent, detect and remove malware.
Know more
-Malware penetration
The aim of all virus writers and cybercriminals is to disseminate their virus, worm or Trojan across as many computers or mobile telephones as possible. This can be achieved through one of two ways:
- by social engineering
- by infecting a system without the user’s knowledge
Know more
-Sniffing concept
What Is Sniffing? In its simplest form, sniffing is the act of intercepting and monitoring traffic on a network. This can be done using software that captures all data packets passing through a given network interface or by using hardware devices explicitly designed for this purpose.
Know more
-Sniffing Technique MAC attacks
It's a targeted attack, where attacker sniffs the traffic and chooses targets. It uses ARP poisoning method to forge fake ARP request/reply to targets forcing them to update their ARP cache with MAC address of Attacker machine in the place of the genuine target.
Know more
-sniffing Technique DHCP attacks
This section discusses the DHCP attacks. A DHCP attack is an active sniffing technique used by the attackers to steal and manipulate sensitive data. This section describes how DHCP works, DHCP starvation attacks, tools used for starvation attacks, rogue server attacks, and the ways to defend against DHCP attacks.
Know more
-sniffing Technique ARP poisoning
Address Resolution Protocol (ARP) is a stateless protocol used for resolving IP addresses to machine MAC addresses. All network devices that need to communicate on the network broadcast ARP queries in the system to find out other machines’ MAC addresses. ARP Poisoning is also known as ARP Spoofing.
Know more
-sniffing Technique Spoofing Attacks
Using a spoof to represent a communication coming from a known and trusted source is Spoofing. It can be as simple as email Spoofing, phone Spoofing, website Spoofing, or more technical such as a computer Spoofing an IP address, ARP, or DNS server.
Know more
-sniffing Technique DNS poising
DNS Poisoning is a technique that tricks a DNS server into believing that it has received authentic information when, in reality, it has not. It results in the substitution of false IP address at the DNS level where web addresses are converted into numeric IP addresses. It allows an attacker to replace IP address entries for a target site on a given DNS server with IP address of the server controls. An attacker can create fake DNS entries for the server which may contain malicious content with the same name.
Know more
-sniffing tool
Sniffing is a process of monitoring and capturing all data packets passing through given network.Sniffers are used by network/system administrator to monitor and troubleshoot network traffic. Attackers use sniffers to capture data packets containing sensitive information such as password, account information etc.
Know more
-countermeasures
- Using encryption to protect sensitive data from being intercepted.
- Never sending sensitive information over an unencrypted connection.
- Ensuring that all computers on a network are adequately protected with antivirus and firewall software.
-sniffing detection technique
Send a ping request to the suspect machine with its IP address and incorrect MAC address. The Ethernet adapter reject it, as the MAC address does not match, whereas the suspect machine running the sniffer responds to it as it does not reject packets with a different MAC address. 
Know more
Sniffing pen testing S
Sniffing pen test is used to check if the data transmission from an organization is secure from sniffing and interception attacks.
Know more
0 Comments