CISSP Fix

Metasploit Framework is a tool for developing and executing exploit code against a remote target machine. Metasploit can be used to test the vulnerability of computer systems in order to protect them, and it can be used to break into remote systems. Like many information security tools, Metasploit can be used for both legitimate and unauthorized activities. The basic steps for exploiting a system using the Framework include -

1. Choosing and configuring an exploit (code that enters a target system by taking advantage of one of its bugs; about 300 different exploits for Windows, Unix/Linux and Mac OS X systems are included).

Snort is an open source network intrusion prevention and detection system that operates as a network sniffer. It logs activities of the network that is matched with the predefined signatures. Signatures can be designed for a wide range of traffic, including Internet Protocol (IP), Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Internet Control Message Protocol (ICMP).

The three main modes in which Snort can be configured are as follows:

• Sniffer mode: It reads the packets of the network and displays them in a continuous stream on the console.
• Packet logger mode: It logs the packets to the disk.
• Network intrusion detection mode: It is the most complex and configurable configuration, allowing Snort to analyze network traffic for matches against a user-defined rule set.

I find netcat the best tool for banner grabbing. If you have messed around with method than you must be aware that you can read and write data across a network very easily and you can also connect to servers with a normal tcp stream and send strings for your own needs. we’re interested in knowing what’s running behind port 80 and 21.

We can use Netcat to grab port banners in the following way:

So we know it’s probably a Windows 2000 machine as it’s running IIS 5.0 and Microsoft FTP Service.

Wireshark is a free packet sniffer computer application. It is used for network troubleshooting, analysis, software and communications protocol development, and education. Wireshark is very similar to tcpdump, but it has a graphical front-end, and many more information sorting and filtering options. It allows the user to see all traffic being passed over the network (usually an Ethernet network but support is being added for others) by putting the network interface into promiscuous mode.

Wireshark uses pcap to capture packets, so it can only capture the packets on the networks supported by pcap. It has the following features:

Nessus is a proprietary comprehensive vulnerability scanning program. It is free of charge for personal use in a non-enterprise environment. Its goal is to detect potential vulnerabilities on the tested systems. For example:

• Vulnerabilities that allow a remote cracker to control or access sensitive data on a system.
• Misconfiguration (e.g. open mail relay, missing patches, etc).
• Default passwords, a few common passwords, and blank/absent passwords on some system accounts. Nessus can also call Hydra (an external tool) to launch a dictionary attack.
• Denials of service against the TCP/IP stack by using mangled packets

May be this title seems little foggy and vague but what I am going to give is thrilling wave. Out of no where uCertify did it again, I don’t know what are they thinking but I really like their attitude. Its 20 % discount again. Just use discount code “SAVE20″ and avail awesome discount on any PrepKit. As usual so straight and simple, and people ask me why I am there fan. Answer is clear. Click here to find more.

I was wondering from last couple of months with the tools and techniques used to perform penetration testing. So I thought my fellow readers also might be wondering with this tiedious task too. Finally I have decided to post about most helpful and comprehensive tools used in this process.

Starting with the Netcat. Please comment on this idea. Is it helpful? or need to do something else. New more things to come, just wait and watch.

NetCat:

Cryptography is a technique of encrypting and decrypting messages. When the text is encrypted, it is unreadable by humans. When the text is decrypted, it is readable by the humans. The terms used in cryptography are as follows: Plain text: This text can be read by a user. Cipher text: This text can be converted to a non-readable format. Encryption: It is the process of creating a cipher text from a plain text. Decryption: It is the process of converting a cipher text to a plain text. Cipher: It is an algorithm that is used to encrypt and decrypt text. Key: Keys are the elements that are used in the technology of encrypting and decrypting text. For more information read Cryptographic attack

Cryptographic attacks are methods of evading the security of a cryptographic system by finding weaknesses in such areas as the code, cipher, cryptographic protocol or key management scheme in the cryptographic algorithm. The following are the cryptographic attacks usually performed by an attacker: Known plaintext attack: In a known plaintext attack, an attacker should have both the plaintext and…copy of it with the encrypted data. This is used to find patterns in the cryptographic output that might uncover a vulnerability or reveal a cryptographic key.Chosen ciphertext attack: In this type of attack, an attacker can choose the ciphertext to be decrypted and can then analyze the plaintext output of the event. The early versions of RSA used in SSL were actually vulnerable to this attack.

The new requirements include the following components:

* The minimum professional experience requirement for CISSP certification will be 5 years of work experience in two or more of the 10 domains of the CISSP CBK, or four years of work experience with an applicable college degree or a credential from the (ISC)2-approved list. The current requirements for the CISSP call for four years of work experience in one or more of the 10 domains of the CISSP CBK, or three years of experience with an applicable college degree or a credential from the (ISC)2-approved list.