This was a very fun week, we finally got to do some true penetration tests. Until this week most of the Cyber forensics class was very theoretical with some minor application like port scanning. However we were introduced to metasploit, which is a Security analyst's dream. Metasploit is a program that shows you all the possible exploits on a particular OS. It is open sourced and constantly updated so you have wealth of information to use.
Let me explain the process, let say you are asked to penetrate a website. Well you use dig to get the IP address of the site, you then use nmap to extract available Ports and potential operating systems. Then you use metasploit to infiltrate the computer. In class we opened up a reverse console on a Windows XP machine. We were then able to navigate, download and upload files . . . it was very cool. This particular exploit tricked the target computer into starting the TCP connection. You see most firewall protect against incoming connections but not outgoing. So we told the target computer the attacker's IP and it opened a console to us, clever.
As I get deeper into the class I will keep you posted on what I am learning. I am also writing a paper on how to secure video games from hacker's attacks though authentication and encryption, so keep an eye out for that.
See you in thirty one weeks.
No comments:
Post a Comment