cyber uc meeting 45
play

Cyber@UC Meeting 45 Direct Recon If Youre New! Join our Slack - PowerPoint PPT Presentation

Jul 30, 2023 •363 likes •629 views

Cyber@UC Meeting 45 Direct Recon If Youre New! Join our Slack ucyber.slack.com SIGN IN! Feel free to get involved with one of our committees: Content, Finance, Public Affairs, Outreach, Recruitment Ongoing Projects:

  1. Cyber@UC Meeting 45 Direct Recon

  2. If You’re New! ● Join our Slack ucyber.slack.com SIGN IN! ● Feel free to get involved with one of our committees: Content, Finance, Public ● Affairs, Outreach, Recruitment ● Ongoing Projects: Malware Sandboxing Lab ○ ○ Cyber Range RAPIDS Cyber Op Center ○

  3. Announcements ● CTF at RevolutionUC went great! Lab space has been approved , equipment has been ordered ● Lakota East outreach was awesome ●

  4. Announcements: OC3 website ● They liked our demo site! We found some security issues in their CMS platform ●

  6. ASME E-FEST

  7. Public Affairs ● Please fill out Google form for GroupMe Numbers! https://goo.gl/forms/94i9kMJgtpDGXsC22 ● Our brand new YouTube channel has just been made. We will be live streaming meetings, events, etc and posting relevant videos to the channel. Please subscribe! youtube.com/channel/UCWcJuk7A_1nDj4m-cHWvIFw Follow us on our social media: Facebook : facebook.com/CyberAtUC/ Twitter : twitter.com/UCyb3r Instagram : instagram.com/cyberatuc/ Website : gauss.ececs.uc.edu/UC.yber/

  8. Weekly Content

  9. Kali now available on Windows 10 ● There is an existing feature in Windows 10 called, Windows Subsystem for Linux (WSL) Kali is just the most recent of several available Linux distributions ● ○ Ubuntu, OpenSUSE, SUSE Enterprise You can also get the kali desktop environment running, instructions in the link ● below ● Unfortunately, this Kali does not come with the typical pre-installed tools https://thehackernews.com/2018/03/kali-linux -hacking-windows.html

  10. BotNet Roundup: Avalanche, Kronos ● This article is giving updates on three different botnets Avalanche, Kronos, NanoCore ○ ● Avalanche: leader of Avalanche gang, Gennady Kapkanov, has been on the run since a cybercrime crackdown in Ukraine Fired on officers with Kalashnikov, released on an arrest technicality ○ ○ Re-arrested this past Monday because his passport was fake Kronos: Marcus “MalwareTech” Hutchins, helped stop WannaCry, but is now ● on trial for Kronos botnet, currently claims innocence ○ Prosecutors expect a quick trial: Business records, statements, malware samples, Jabber chats, audio recordings of interrogations

  11. BotNet Roundup: NanoCore ● NanoCore was developed by Taylor Huddleston Sold a RAT on hackforums[dot]net advertised to allow remote administration ● of one or many computers, claimed RAT was meant to be remote administration tool ● Defense argued that Mr. Huddleston was not guilty for what his clients did with the software he developed Sentencing suggests that where you choose to sell something online says a ● lot about what you think of your product and who is likely to buy it https://krebsonsecurity.com/2018/02/bot-roundup- avalanche-kronos-nanocore/

  12. Memcached DDoS Attacks ● In the last week, we’ve seen two new record breaking DDoS attacks 1.35 Tbps and 1.7 Tbps ○ ● These attacks relied on amplification/reflection to amplify the bandwidth of the DDoS by a factor of 51,000 Memcached is an open source distributed memory caching system ● Exploit works by sending a forged request to the targeted Memcached server ● on port 11211 using a spoofed IP address that matches the victim’s IP ● These few bytes sent to the memcached server triggers tens of thousands of times bigger response against the target IP

  13. Sources https://thehackernews.com/2018/03/memcached-ddos-exploit-code.html https://thehackernews.com/2018/02/memcached-amplification-ddos.html https://thehackernews.com/2018/03/ddos-attack-memcached.html https://thehackernews.com/2018/03/biggest-ddos-attack-github.html Exposed servers: https://pastebin.com/raw/eSCHTTVu Exploit code: https://pastebin.com/raw/ZiUeinae

  14. Part 4: Direct Recon Spring Break is not for COOP students

  15. The Topics Today Go Something Exactly Like This - Steps of Ethical Hacking - Information Gathering - What is / Types? - Why do? / Goals - Information Type and Sources - Social Engineering - Direct Contact - Tool Overviews - Maltego - Social Engineering Toolkit - Target Websites and Servers - 127.0.0.1 on the range - Stay Out (or don’t)

  16. Put on your 3 ̶ D ̶ ̶ g ̶ l ̶ a ̶ s ̶ s ̶ e ̶ s ̶ Linux Distro now

  17. Steps of Ethical Hacking: Reconnaissance - Reconnaissance helps us know what systems, software, and data our targets may hold

  18. What is Information Gathering? - Gathering of useful information on target(s) that can be used to create an advantage later - This can include anything from the fact that a manager is out of town to knowing what payroll software a target uses

  19. Types of Information Gathering - Indirect - Using publicly available information - Google - Facebook - Job Sites - Direct - Directly gathering information from the target through site visits, social engineering, etc. - Use tools like Maltego and the Social Engineer’s Toolkit to grab data from targets directly - Dumpster Diving is also valid

  20. Types of Information - Network/Systems - What systems are they using - What tools are they using - What is running on the network - Organizational - Employee information - Business Goals - Supplier Information - Client Information - Security - What systems are in place

  21. Direct Sources of Information - Social Engineering - Job Interviews - Emails - Site Casing - Reveal Private Web Apps / Menus - Find Top Level Network Information - Enumerate through subdomains

  22. Tool Warning - The tools we are starting to cover can be abused very easily - Some people don’t take kindly to you gathering a very large amount of personal information on them - If anyone abuses a tool we cover, they may ruin it for all of us

  23. Tool Overview: Maltego - Basically an intelligence agency with a yearly subscription fee - Maltego correlates personal information and public records to graph out a target entity’s internet footprint - Offers a free, community edition if you register - Maltego’s cheapest paid version costs just under $800 for the first year - Used every day to find criminals by law enforcement

  24. Tool Overview: Social Engineer’s Toolkit - Made by the same people who make the Penetration Tester’s Framework - Focuses on creating digital social engineering attacks such as malicious emails and scripts embedded in documents - Does a whole lot more too

  25. 127.0.0.1 on the Range This week’s Activities: - Maltego - Graph yourself - SEC - Make a USB with reverse shell that attempts to autorun - Robots.txt - Find something that should not be available to you on a website but someone forgot to require authentication for

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of our committees:

430 views • 23 slides
NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For ACM CCS I ndustry/ Govt Track Oct. 26, 2004 Carl Landwehr ( clandweh@nsf.gov ) Cyber Trust Coordinator National Science Foundation What s the

439 views • 17 slides
CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College

CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College

3/29/2012 CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College of India I N T R O D U C T I O N What is Cyber-safety Consequences Threats of Inaction Cyber-safety? Cyber-safety Cyber-safety at

215 views • 7 slides
What is Cyber Crime? Cyber Enabled Crime Cyber Dependant Crime Traditional crime that is

What is Cyber Crime? Cyber Enabled Crime Cyber Dependant Crime Traditional crime that is

R egional C yber C rime U nit DC Louise Gibson Prepare, Prevent & Protect What is Cyber Crime? Cyber Enabled Crime Cyber Dependant Crime Traditional crime that is enhanced in scale or Crimes that can only be committed solely reach by use

316 views • 9 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities?

The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities?

The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities? What is the FBIs Cyber Structure? HQ Division Dedicated Cyber squads in all 56 field offices, including satellite locations overseas.

1.54k views • 14 slides
Strategic Priorities Assurance Board Cyber and Cyber Enabled Crime Introduction Cyber

Strategic Priorities Assurance Board Cyber and Cyber Enabled Crime Introduction Cyber

Strategic Priorities Assurance Board Cyber and Cyber Enabled Crime Introduction Cyber Dependent crime examples of these offences are Distributed Denial of Service attack (DDOS), Account Compromise (hacking), Malware (virus) and

237 views • 7 slides
FEMA Region III Cyber Security Program Maryland Cyber Security Workshop (January 16, 2019)

FEMA Region III Cyber Security Program Maryland Cyber Security Workshop (January 16, 2019)

FEMA Region III Cyber Security Program Maryland Cyber Security Workshop (January 16, 2019) (Presented again at the October 16, 2018, meeting of the Maryland Cybersecurity Council and published with permission.) Overview Current Landscape

560 views • 23 slides
Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK businesses and how to remain safe What help is available Further reading Setting the scene 21.2bn The cost of fraud to the

304 views • 19 slides
Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT

Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT

Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT ITY How cyber is becoming a key aspect of the ubiquity generation. CYBER SUMMIT More to come 3 2018 Deloitte Cyber Risk Services 4 2018

514 views • 19 slides
Latest in Cyber Security November 7, 2013 TCIPG Annual Meeting Douglas Maughan Division

Latest in Cyber Security November 7, 2013 TCIPG Annual Meeting Douglas Maughan Division

Homeland Security Advanced Research Projects Agency A View from Washington: The Latest in Cyber Security November 7, 2013 TCIPG Annual Meeting Douglas Maughan Division Director http://www.dhs.gov/cyber-research Presentation Outline

794 views • 32 slides
CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY HAPPEN London June 2019 INTRODUCTION Cyber Security The activity or process, ability or capability, or state whereby information and

735 views • 24 slides
Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the Land: : Wh What t the Numbe mbers rs Tell l Us Visit www.advisenltd.com at the end of this webinar to download: Copy of these slides

722 views • 31 slides
Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack

Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack

Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of

563 views • 11 slides
Cyber@UC Meeting 59 Actually Doing Star Night! If Youre New! Join our Slack:

Cyber@UC Meeting 59 Actually Doing Star Night! If Youre New! Join our Slack:

Cyber@UC Meeting 59 Actually Doing Star Night! If Youre New! Join our Slack: ucyber.slack.com SIGN IN! (Slackbot will post the link in #general) Feel free to get involved with one of our committees: Content Finance Public

525 views • 23 slides
Cyber@UC Meeting 63 Contributing to the Website If Youre New! Join our Slack:

Cyber@UC Meeting 63 Contributing to the Website If Youre New! Join our Slack:

Cyber@UC Meeting 63 Contributing to the Website If Youre New! Join our Slack: ucyber.slack.com SIGN IN! (Slackbot will post the link in #general every Wed@6:30) Feel free to get involved with one of our committees: Content

491 views • 14 slides
Power Virtualization in Multi-tenant Networks Srini Seetharaman Deutsche Telekom R&D Lab USA

Power Virtualization in Multi-tenant Networks Srini Seetharaman Deutsche Telekom R&D Lab USA

Power Virtualization in Multi-tenant Networks Srini Seetharaman Deutsche Telekom R&D Lab USA Clean Slate Lab, Stanford University Oct 2010 Consumption Computing Networking In datacenter, ~45% In datacenter, ~15% Billed by hourly rate

493 views • 15 slides
Security and Privacy: A Brief Overview Tadayoshi (Yoshi) Kohno University of Washington

Security and Privacy: A Brief Overview Tadayoshi (Yoshi) Kohno University of Washington

Security and Privacy: A Brief Overview Tadayoshi (Yoshi) Kohno University of Washington Challenges to Security Why Are Technologies Insecure? { 1. Oversight: Designers didnt consider security and privacy 80% 2. Choice: Designers chose

389 views • 28 slides
ECE590 Computer and Information Security Fall 2018 Human Factors and Social Engineering Tyler

ECE590 Computer and Information Security Fall 2018 Human Factors and Social Engineering Tyler

ECE590 Computer and Information Security Fall 2018 Human Factors and Social Engineering Tyler Bletsch Duke University Definition What is non-social engineering? Manipulating objects to achieve an end What is social engineering?

656 views • 19 slides
IDENTITY THEFT ISSUES, TAX PLANNING IN AN ELECTION YEAR AND OTHER IMPORTANT ISSUES RELEVANT TO

IDENTITY THEFT ISSUES, TAX PLANNING IN AN ELECTION YEAR AND OTHER IMPORTANT ISSUES RELEVANT TO

IDENTITY THEFT ISSUES, TAX PLANNING IN AN ELECTION YEAR AND OTHER IMPORTANT ISSUES RELEVANT TO BANKERS Presented by: Don Johnston, CPA , MST Partner, Grossman Yanak & Ford LLP W.P.A.S.G.L. Small Business Lending Conference May 23, 2016

680 views • 48 slides
DUBLIN COMMUNITY POOL NORTH PUBLIC INPUT SESSION #1 SEPTEMBER 13, 2018 6-8 P.M. DCRC, TALLAS

DUBLIN COMMUNITY POOL NORTH PUBLIC INPUT SESSION #1 SEPTEMBER 13, 2018 6-8 P.M. DCRC, TALLAS

DUBLIN COMMUNITY POOL NORTH PUBLIC INPUT SESSION #1 SEPTEMBER 13, 2018 6-8 P.M. DCRC, TALLAS WELCOME & INTRODUCTIONS HERE TO SUPPORT YOU WHAT IS OUR PURPOSE TONIGHT? As you all know, the north pool has served this community well

699 views • 43 slides
Webinar Overview ! ! Partnership between the Pennsylvania Department of Education and

Webinar Overview ! ! Partnership between the Pennsylvania Department of Education and

Our Agenda Topic Speaker Webinar Overview and Instructions Hilary Hunt Banking Basics: What Students Should Know Tricia Heisey about Banking Today Financial Education Resources Available from Financial Institutions February 18, 2015 Model

632 views • 13 slides
How to Talk about Statistics The Sovereign Grand Lodge to Smart People who dont

How to Talk about Statistics The Sovereign Grand Lodge to Smart People who dont

1/26/09 How to Talk about Statistics The Sovereign Grand Lodge to Smart People who dont Independent Order of Odd Fellows know the difference between an Odds Ratio and an Odd Fellow Social and mutual-aid society started in 17th

480 views • 8 slides
Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 /

Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 /

Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 / 26 State Surveillance Over the summer, weve learned about a number of NSA programs that spy on . . . , well, just about everyone.

753 views • 26 slides

More recommend