Lec.%20Sanchai%20Yeewiyom - PowerPoint PPT Presentation
Title: Lec.%20Sanchai%20Yeewiyom
1
?????????????????????
235034 Security in Computer Systems and Networks
- Lec. Sanchai Yeewiyom
- School of Information and Communication
Technology - University of Phayao
2
Objective
- ??????????????????????
- ????????? Hacker
- ??????????????
- ???????????
3
??????????? (Hacking)
- To write or refine computer program skillfully
- To use ones skill in computer programming to
gain illegal or unauthorized access to a file or
network hacked into the companys intranet - To gain access to (a computer file or network)
illegally or without authorization hacked the
firm's personnel database - Computers. to devise or modify (a computer
program), usually skillfully - ????? www.dictionary.com
4
??????????? (Hacking)
- ????????????????????????????????????????
- ????? www.nectec.or.th
- ??????? ????????????????????????????????????
?????????? Cracking (Cracker) - ????????? Hacking (Hacker) ???????????????????????
???????????????????????????????? - ????????????????????????? Hacking (Hacker) ???????
5
????????? Hacker
- Hacker
- Cracker
- Script kiddy
- Spy
- Employee
- Terrorist
6
Hacker
- ?????????? 2 ???
- ??????? ???? ????????????????????????????????????
???????????????? - ??????????????? ????????????????????????
???????????????? - ??????? ???????????? ???????? ????????????????????
????? - ?????? ??? ?????????????????????
????????????????????? ?????????????????????????
???????????????? ??????????????????????
???????????????????????????????
?????????????????????????????
7
Cracker
- ???????????????????????
- ??????? Hacker ???????????????????????????????????
???????? ?????????? ???????????????????? - ????????????????????????????????????
8
Script kiddy
- ????????????????????? ????????????????????????????
???????????? ????? Download ??????????????? - ???????????? ???????????????? ?????????
????????????????? ????????????????????????????????
??????????? - ??????????????????????????????????????????????????
??
9
Spy
- ?????????????????????????????????????????
- ?????????????????????????
- ?????????????????????????????
- ?????????????????
10
Employee
- ????????????????
- ?????????????????????????????
- ??????????????????????????????????????????????????
???? ??????????????????????????????????????? - ????????????????? ???? ?????????????????
- ???????????????????????????????? ???????????????
11
Terrorist
- ?????????????? ???????????????????
????????????????? ???????????????? ????????????
???? ?????????????????????? - ???????????????????????????????????????????????
???? ???????????????? ????????????????????????
12
?????????????????
13
??????????????
- ?????????? ??????
- Social Engineering
- Password Guessing
- Denial of Service
- Decryption
- Birthday Attacks
- Sniffing
- Man-in-the-middle Attacks
14
Social Engineering
- ????????????????????????? ???????????????????
- ?????????????????????????????????????????
- ???????????????????????????????????
- ?????????????????????????????? (Dumpster Diving)
???????????????????????????????????? - ??????????? Phishing
- ?????????????????? ???????????????????????????????
?????????????????? ???? ??????????????????
???????????????????????????????????????
15
Password Guessing
- Password ?????????????????????????????????????????
?????????? ???????????????????? - ??????????????????????????? ???????????????????
???????????????????????? ?????? Password
????????? ??????????????? Password ??????? - Password ???????????????? ?????? ????
??????????????? ???????????????? ??? Password
???????????? ?? Password ??????????? ??????????
Password ???????????????????
16
Denial of Service
- ?????????????????????????????????
- ?????????????????????????????????????
????????????????????????????? Firewall ???? IDS - ???????????? Update ??????????????????????????????
????? - ??????????????????????????????????????????????????
??????? Software ???????????????
17
Decryption
- ?????????? ????????????????????? Key ?????
Algorithm ???????????????????????? - ???????????????????????????????????????????? Key
?????????????? Weak Key ??????????????????????????
??????????????? ??? ???????? Key ??????? ??????
Key ???????????????? 128 bit - ??????????????????????????????????? Key
????????????????
18
Birthday Attacks
- ?????????????????????????????????????? Key
- ?????? ??????????????????????? ???????????????????
?? 1 ?? 365 ??? ??????????????????????????????????
???????????????????? - ???????????????????????????????????????????
Random Key ?????? Random Key ?????????????????????
Key ??????????
19
Sniffing
- ??????????????????????????????
- ????????????? ???? Wireshark
- ??????????????????????? ???? Password,
Cookie/Session ID, ??????? ???????
20
Wireshark
21
Man-in-the-middle Attacks
- ??????????????????????????????????????????????????
????????????????? - ???????????? ARP Spoof/ARP Poisoning
?????????????????????? (Victim) ??? Gateway - ??????????? Active ????????????????????????
?????????????? Passive ???????????????????????????
- ??????????? Replay Attack ????????????????????????
?????????????????????? - ??????????????????????????? ??????? Digital
Signature
22
ARP Spoof/ARP Poisoning
23
ARP Spoof/ARP Poisoning
24
???????????
- Threat ??????????????????????????? Computer
Vulnerability - ?????????????????????????????? Software ????
Hardware - ???????????????????? Software ??????
- Input Validation Error
- Access Validation Error
- Exception Condition Handling Error
- Environmental Error
- Configuration Error
- Race Condition
25
???????????????????? Software
- Input Validation Error ???????????????? Input
?????????????????????????????????????????????
????????????????? - Buffer Overflow ????????????? Input
????????????????????????? ????? Buffer
????????????????????????????? ????????????????????
????????????????????????? Process ????
?????????????????????? Run Process ????
?????????????????? Run ??????? - Boundary Condition Error ?????????? Input
?????????????????????????????????????????
????????????????????????????? ??????????????????
Resource ????? ??????????? Reset ????????????
????????? Division by Zero (0/0)
26
???????????????????? Software
- Access Validation Error ????????????????????????
(Access Control) ???????????? ???????????????????
?? - Exception Condition Handling Error
??????????????????????????????????????????????????
?????? - Environmental Error ????????????????????????????
????????????? ???? ???????????????????????????????
????????????????????????? ????????????????????????
???????????????????????? ?????????????????????????
?????????????
27
???????????????????? Software
- Configuration Error ?????????? Configuration
????????????????? ?????????? ??????????? ????
??????????????? Default ?????????????????????
?????????????????????? - Race Condition ??????????????? Delay
????????????????????????????????? ????
???????????????????????? ?????????????????????????
????????? ????????????????????????????????????????
???????????????
28
??????????????????
- ?????????????????????
- ??????????????????????
- ????????????????
- ????????????
- ????????
29
?????????????????????
- ??????????????????????? ??????? Website ??? IRC
- Exp.
- http//insecure.org
- www.antionline.com
- http//ftp4.de.freesbie.org/pub/misc/www.rootshell
.com/ - http//packetstormsecurity.org/
- www.nmap.org
- www.nessus.org
30
http//insecure.org
31
www.antionline.com
32
http//ftp4.de.freesbie.org/pub/misc/www.rootshell
.com/
33
http//packetstormsecurity.org/
34
www.nmap.org
35
www.nessus.org
36
??????????????????????
- ??????????????????????????????????????????????????
?????? - ??????????????????????????
- ???????????????????????? ????????????????????
????????????????????????????????????????
?????????????????? - IP Address ????????????????????????
- ?????????????????????????????????????
- ??????????????????????????????
- ????????????????????????????????
37
????????????????
- ???????????????????????????????????????????
- ?????????? ping (ICMP ping)
- ????????????????? telnet ???????????????????????
port 80, 25, 21 ??????????????????????????? ping
??? Router ???? Firewall
38
????????????
- ?????????????? ????????????? ??????????
????????????? ????????????????????????? IDS,
Honey pot ???? Firewall - ????????????????? ??? NMAP
39
(No Transcript)
40
????????
- ??????????????????????????????????????????????????
???? - DoS ??? Ping of Death (IP Packet ??????????? Ping
???????????????????? (65,535 ????)) - DoS ??? Ping Flood (?????? ICMP Request
?????????? ?????????????????? ICMP Reply
??????????????????????) - DoS ??? Smurf Attack (?????? ICMP Echo Request
??? Broadcast ??? Host ????????? Network
?????????????????? ICMP Echo Reply
???????????????????????????????????????????
Hacker ?????????? IP Address ??????)
41
????????
- Rootkit (?????????????????????????????????????????
?????????????? (root) ?????????????????
?????????????????? ???????????????????????????????
?????????) - Cross Site Scripting (XSS) ????????????????
Link ?????? Code ???? Script ??????????? Hacker
?????? ???????????????????????????????????????????
???? ?????????????????????????????????????????????
?? Hacker
42
????????????????????????
- ?????????????????? (Vulnerability Scanning)
???????????????? ????????????????????? ?????????
DMZ (Demilitarized Zone) ???? - ??????????????????????? Update Patch
????????????????????
43
???????????????????????????????????
- GFI LANguard Network Security Scanner (N.S.S.)
- eEye Retina Network Security Scanner
- Microsoft Baseline Security Analyzer (MBSA)
- Nessus Security Scanner
44
GFI LANguard Network Security Scanner (N.S.S)
- ????????????????????????????????????????????????
- ???? TCP ??? UDP Port
- ?????? Patch ??? Service Pack
- www.gfi.com
45
GFI LANguard Network Security Scanner
46
eEye Retina Network Security Scanner
- ????????????????????????????????
- ???????????????????????????? ???????????????
??????????????????????????????? - www.eeye.com
47
eEye Retina Network Security Scanner
48
Microsoft Baseline Security Analyzer (MBSA)
- ??????????????????????????????????????????????????
???? Microsoft ??????? - ??????????????????????????????????????
- ??????????????? Configuration ????????????? ???
Patch ??????????????????? - http//technet.microsoft.com/en-us/security/cc1849
24
49
Microsoft Baseline Security Analyzer
50
Nessus Security Scanner
- ???????????????????????????? ???????????????
- ???????????????????????????????????
- ???? Software ??? Client/Server
??????????????????????????????????????????????????
??????????????????? ?????????????????????? - www.nessus.org
51
Nessus Security Scanner
52
??????????????????????
- ???????????????????????? ??????
53
Advanced IP Scanner
- ???????????????????????? ?????????????????????????
?????????????????????????????????
?????????????????? Folder ????????????????????????
???????????
54
NetworkView
- ??????????????????????????????????
55
Multiscan
- ?????????????? Port ???????????????
56
SuperScan
- ?????????????? IP Address ?????????? Port
???????????????
57
Angry IP Scanner
- Scan ?? IP Address ????????????????????????????
58
Look_at_LAN
- ?????????????? IP Address, Computer Name
???????????????
59
NmapWin
- ?????????????? Port ??????????????
??????????????????
60
SoftPerfect Network Scanner
- ?????? Scan ??????????????? Protocol IP, SNMP and
NetBIOS ???
61
????????????????????????????
- http//www.hackingexposed.com
- http//www.gfi.com
- http//insecure.org/nmap/
- http//se-ed.net/hacking/
Recommended
CrystalGraphics Presentations
