Top Banner
ADVANCED PENETRATION TESTING MIS 5212.001 Week 11 Site: http:// community.mis.temple.edu/mis5212sec001s1 5/
29
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
  • Slide 1
  • MIS 5212.001 Week 11 Site: http://community.mis.temple.edu/mis5212sec001s15/ http://community.mis.temple.edu/mis5212sec001s15/
  • Slide 2
  • In the news Presentations More Wireless Security Getting wireless card working in Kali Introduction to Kismet Next Week 2MIS 5212.001
  • Slide 3
  • Submitted http://thehackernews.com/2015/03/github-hit-by- massive-ddos-attack-from_27.html http://thehackernews.com/2015/03/github-hit-by- massive-ddos-attack-from_27.html http://thehackernews.com/2015/03/rc4-ssl-tls- security.html http://thehackernews.com/2015/03/rc4-ssl-tls- security.html http://www.latesthackingnews.com/2015/03/31/h otel-wi-fi-can-allow-hackers-to-inject-malware-in- your-systems/ (Broken link at time of slide creation) http://www.latesthackingnews.com/2015/03/31/h otel-wi-fi-can-allow-hackers-to-inject-malware-in- your-systems/ http://www.networkworld.com/article/2901527/m icrosoft-subnet/crypto-ransomware-attack-hit-new- jersey-school-district-locked-up-entire- network.html?t51hb http://www.networkworld.com/article/2901527/m icrosoft-subnet/crypto-ransomware-attack-hit-new- jersey-school-district-locked-up-entire- network.html?t51hb MIS 5212.0013
  • Slide 4
  • Submitted http://redmondmag.com/Articles/2015/04/01/Cy berattackers.aspx?Page=1 http://redmondmag.com/Articles/2015/04/01/Cy berattackers.aspx?Page=1 http://arstechnica.com/security/2015/03/massive- denial-of-service-attack-on-github-tied-to-chinese- government/ http://arstechnica.com/security/2015/03/massive- denial-of-service-attack-on-github-tied-to-chinese- government/ http://thehackernews.com/2015/03/anonymous- hacker-israel.html http://thehackernews.com/2015/03/anonymous- hacker-israel.html MIS 5212.0014
  • Slide 5
  • What I noted http://krebsonsecurity.com/2015/03/sign-up-at-irs-gov- before-crooks-do-it-for-you/ http://krebsonsecurity.com/2015/03/sign-up-at-irs-gov- before-crooks-do-it-for-you/ http://krebsonsecurity.com/2015/03/tax-fraud-advice- straight-from-the-scammers/ http://krebsonsecurity.com/2015/03/tax-fraud-advice- straight-from-the-scammers/ http://www.scmagazine.com/passport-visa-info-on-g20- leaders-leaked-in-email/article/406424/ http://www.scmagazine.com/passport-visa-info-on-g20- leaders-leaked-in-email/article/406424/ http://www.theregister.co.uk/2015/03/31/verizon_sup ercookies_disabled/ http://www.theregister.co.uk/2015/03/31/verizon_sup ercookies_disabled/ http://www.theregister.co.uk/2015/03/31/us_still_hoar ding_0days_says_eff/ http://www.theregister.co.uk/2015/03/31/us_still_hoar ding_0days_says_eff/ http://www.theregister.co.uk/2015/03/31/ebay_snuffs_ malware_upload_bug/ http://www.theregister.co.uk/2015/03/31/ebay_snuffs_ malware_upload_bug/ http://www.bbc.com/news/uk-england-london- 32095189 http://www.bbc.com/news/uk-england-london- 32095189 MIS 5212.0015
  • Slide 6
  • If anyone wants to connect with me on LinkedIn, please feel free to shoot me a request Ive got connections with a fair number of vendors and consulting companies MIS 5212.0016
  • Slide 7
  • 7
  • Slide 8
  • Open WiFi Networks vs Encrypted WiFi Networks In an open network, your browsing can be monitored Every thing is sent in the clear WPA2-PSK fixes this Somewhat MIS 5212.0018
  • Slide 9
  • Uses a pre-shared key (hence the acronym PSK) The pre-shared key is known to all authorized users Anyone with the pre-shared key has what they need to decrypt traffic Wireshark has a built in option to decrypt traffic if you have the key This means WPA2-PSK is not much more secure than no encryption, unless you trust everyone on the network MIS 5212.0019
  • Slide 10
  • 10 Edit->Preferences->IEEE 802.11
  • Slide 11
  • WPA2-PSK tries to address this issue by use of PTK However, the PTK is derived from the PSK So It is easy to capture the PTK if you have the PSK MIS 5212.00111
  • Slide 12
  • WPA2-Enterprise corrects these issues for large networks EAP authentication along with a Radius server ensures each client gets a unique key Other authenticated users no longer have a master key to decrypt the traffic MIS 5212.00112
  • Slide 13
  • Even in WPA2-Enterprise there is still a potential vulnerability from other authorized users (Abuses GTK or Group Temporal Key) Limited to: ARP poisoning Injecting malicious code Denial of Service w/o using de-auth packets More detailed description http://www.airtightnetworks.com/home/resources /knowledge-center/wpa2-hole196- vulnerability.html http://www.airtightnetworks.com/home/resources /knowledge-center/wpa2-hole196- vulnerability.html MIS 5212.00113
  • Slide 14
  • 802.11 wireless: Network detector Sniffer Intrusion detection system Works with any wireless card which supports raw monitoring mode (not all do) Can sniff: 802.11b 802.11a 802.11g 802.11n MIS 5212.00114
  • Slide 15
  • Supports a plugin architecture allowing for additional non-802.11 protocols to be decoded Identifies networks by passively collecting packets and detecting networks, which allows it to detect (and given time, expose the names of) hidden networks and the presence of non- beaconing networks via data traffic MIS 5212.00115
  • Slide 16
  • Pre-installed in Kali Did not launch from drop down menu in my instance Needed to start from command line Be patient, it will walk through configuration You can automate via configuration files, but for now just follow prompts MIS 5212.00116
  • Slide 17
  • We will Get USB Wireless Adapter working with Kali Launch and configure Kismet Explore a little bit MIS 5212.00117
  • Slide 18
  • MIS 5212.00118
  • Slide 19
  • Use the command: iwconfig This should give something like the following: MIS 5212.00119
  • Slide 20
  • MIS 5212.00120
  • Slide 21
  • MIS 5212.00121
  • Slide 22
  • http://kismetwireless.net/documentation.sht ml http://kismetwireless.net/documentation.sht ml MIS 5212.00122
  • Slide 23
  • Saw this briefly last semester Pre-installed in Kali MIS 5212.00123
  • Slide 24
  • MIS 5212.00124
  • Slide 25
  • Will throw an error due to running as root in Kali, just click OK and move on Will need to turn wireless menu on by going to View tab and clicking on Wireless Toolbar MIS 5212.00125
  • Slide 26
  • Select wlan0mon Click on Start Be patient, it will take a minute or so to update MIS 5212.00126
  • Slide 27
  • MIS 5212.00127
  • Slide 28
  • In the news More wireless WEP in detail Intro to AirCrack and breaking WEP MIS 5212.00128
  • Slide 29
  • ? MIS 5212.00129

Related Documents
MIS Week-5

MIS Week-5

Category: Documents
MIS 5211.001 Week 3 Site:

MIS 5211.001 Week 3 Site:

Category: Documents
MIS 5212.001 Week 4 Site:

MIS 5212.001 Week 4 Site:

Category: Documents
What MIS Brings to the Table & What MIS Needs From Your Area MIS 495 - Week 8.

What MIS Brings to the Table & What MIS Needs From Your Area...

Category: Documents
MIS 3534 Fall 2016 – Strategic Management of Information ......MIS 3534 – Strategic Management of Information Technology Min-Seok Pang – Oct.24.2016 MIS 3534 Fall 2016 – Week

MIS 3534 Fall 2016 – Strategic Management of Information.....

Category: Documents
MIS 5211.001 Week 10 Site:

MIS 5211.001 Week 10 Site:

Category: Documents
WEEK 10 - Temple MIS

WEEK 10 - Temple MIS

Category: Documents
MIS 0855 Fall 2016 – Data Science€¦ · MIS 0855 Fall 2016 – Data Science. Week 11 – Predictive Analytics. MIS 0855 Fall 2016 – Week 11 – Predictive Analytics 2 MIS 0855

MIS 0855 Fall 2016 – Data Science€¦ · MIS 0855 Fall.....

Category: Documents
MIS 5212.001 Week 1 Site:

MIS 5212.001 Week 1 Site:

Category: Documents
Vocab week ppt #8.1 male mono mal inter mis

Vocab week ppt #8.1 male mono mal inter mis

Category: Documents
Week 10 - Temple MIS...Week 10 MIS 5214. Agenda •Project •Authentication –Biometrics •Access Control Models •Access Control Techniques •Centralized Remote Access Control

Week 10 - Temple MIS...Week 10 MIS 5214. Agenda •Project.....

Category: Documents
MIS 5211.001 Week 1 Site:

MIS 5211.001 Week 1 Site:

Category: Documents