Abstract image of a woman sitting on books and studying on a laptop

Ethical Hacking

Download as PPT, PDF
S
shahhardik27

The document discusses ethical hacking and related concepts. It defines hacking, ethical hacking, and different types of hackers such as white hat and black hat hackers. It outlines the steps of an ethical hack including footprinting, scanning, enumeration, and attacks such as SQL injection. It also discusses wireless hacking techniques and ways to improve Wi-Fi network security.

Technology
1 of 21
Downloaded 119 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
CAUTION HACKER A T WORK Ethical Hacking
Hacking • Hacking is an act of penetrating computer systems to gain knowledge about the system and how it works. • Hacking is the act of gaining access without legal authorization to a computer or computer network or network resources.
Hacking means making something work regardless of the circumstances
Hacking is not very complex
Ethical Hacking • Ethical hacking is the use of hacking knowledge to attempt to enter a network to find its loopholes and back doors. • It is often referred to as ‘legalized hacking’ and yes it is indeed legal and can even reap a lot of profits for highly skilled individuals.
Hacker • Hackers are actually computer enthusiasts who know a lot about computers and computer networks and use this knowledge with a criminal intent. • He is a person who uses his hacking skills and tool sets for destructive or offensive purposes such as disseminating viruses or performing DoS attacks to compromise or bring down systems and networks. • Hackers are sometimes paid to damage corporate reputations or steal or reveal credit-card information
Types of Hackers • White hat –  Good guys  Don’t use their skills for illegal purposes  Computer security experts • Black hat –  Bad guys  Use their skills for illegal purposes  Criminals
Types of Hackers • Script kiddies –  Wannabe hackers  No technical skills  Have no clue about what’s happening in • Elite hackers –  Usually professionals  Develop new attacks/tools
Why perform an ethical hack?  To determine flaws and vulnerabilities  To provide a quantitative metric for evaluating systems and networks  To measure against pre-established baselines  To determine risk to the organization  To design mitigating controls
Skills Required Becoming an Ethical Hacker  Criminal mindset  Thorough knowledge about Computer programming, Networking and operating systems. highly targeted platforms (such as Windows, Unix, and Linux), etc.  Patience, persistence, and immense perseverance
Levels in Ethical Hacking
Ethical Hacking Steps
Footprinting  Gathering information of target information Internet Domain name, network blocks, IP addresses open to Net, TCP and UDP services running, ACLs, IDSes Intranet Protocols (IP,NETBIOS), internal domain names, etc Remote access Phone numbers, remote control, telnet, authentication Extranet Connection origination, destination, type, access control
Scanning  After obtaining a list of network and IP addresses scanning starts:  ping sweeps (active machines): user pinger in Windows and nmap in Linux/UNIX. This is an example of pinger.  TCP port scanning (open ports in active machines): SYN and connect scans work with most hosts. SYN is stealthier and may not be logged.  In Windows NT use SuperScan and in Linux/UNIX use nmap. See an example of SuperScan. BUT, hackers use scripts with binary files, not graphical tools. 14
Types of Scanning Scanning Type Purpose Port scanning Determines open ports and services Network scanning IP addresses Vulnerability scanning Presence of known weaknesses
Scanning Tools ■ Nmap ■ Nessus ■ SNMP Scanner ■ THC-Scan ■ Netscan ■ IPSecScan
Enumeration • After scanning process and is the process of gathering and compiling usernames, machine names, network resources, shares, and services. • It also refers to actively querying or connecting to a target system to acquire this information.
Attack • SQL injection • SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. • The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed.
SQL injection • During a SQL injection attack, malicious code is inserted into a web form field or the website’s code to make a system execute a command shell or other arbitrary commands. • Just as a legitimate user enters queries and additions to the SQL database via a web form, the hacker can insert commands to the SQL server through the same web form field.
Wireless Hacking Techniques • Cracking encryption and authentication mechanism • Eavesdropping or sniffing • Denial of Service • AP masquerading or spoofing • MAC spoofing
Wi-Fi network security • Use Strong Encryption Protocol • Don’t Announce Yourself-Disable SSID • Change Default Administrator Passwords and Usernames • Limit Access To Your Access Point • Do Not Auto-Connect to Open Wi-Fi Networks • Assign Static IP Addresses to Devices • Enable Firewalls On Each Computer and the Router • Position the Router or Access Point Safe

More Related Content

PDF
Cs8792 cns - unit v
ArthyR3
 
PDF
Ethical Hacking Tools
Multisoft Virtual Academy
 
PPTX
Intruders detection
Ehtisham Ali
 
PPTX
Inetsecurity.in Ethical Hacking presentation
Joshua Prince
 
PPTX
Hacktrikz - Introduction to Information Security & Ethical Hacking
Ravi Sankar
 
PPT
Chapter 2
shahhardik27
 
PPTX
Cse ethical hacking ppt
shreya_omar
 
PPTX
Penetration testing
PTC
 
Cs8792 cns - unit v
ArthyR3
 
Ethical Hacking Tools
Multisoft Virtual Academy
 
Intruders detection
Ehtisham Ali
 
Inetsecurity.in Ethical Hacking presentation
Joshua Prince
 
Hacktrikz - Introduction to Information Security & Ethical Hacking
Ravi Sankar
 
Chapter 2
shahhardik27
 
Cse ethical hacking ppt
shreya_omar
 
Penetration testing
PTC
 

What's hot (19)

PPT
Ethical Hacking
Viraj Kansara
 
PPT
Ethical hacking
A Raheem Ansari
 
PPTX
ETHICAL HACKING PRESENTATION
Yash Shukla
 
PDF
CNIT 123 Ch 1: Ethical Hacking Overview
Sam Bowne
 
PPT
Ethical hacking
Sourabh Badve
 
PPTX
Ethical hacking : Its methodologies and tools
chrizjohn896
 
PPTX
Cse ethical hacking ppt
SHAHID ANSARI
 
PDF
Certified Ethical Hacking - Book Summary
udemy course
 
PDF
An Introduction to Ethical Hacking
Vinny Vessel
 
PPTX
Ethical Hacking Redefined
Pawan Patil
 
PPT
Introduction to Hacking
Rishabha Garg
 
PPTX
Network Security & Ethical Hacking
Sripati Mahapatra
 
PPTX
Ethical Hacking
Aditya Vikram Singhania
 
PPTX
Ethical hacking
Pradeep Sharma
 
PPT
Ethical hacking
Ravi Rajput
 
PPTX
Web hacking 1.0
Q Fadlan
 
PPTX
Ethical hacking
S Sai Karthik
 
PPT
Ethical hacking by shivam
Shivam Ðreamchazer
 
PPT
Ethical Hacking and Penetration Testing
Rishabh Upadhyay
 
Ethical Hacking
Viraj Kansara
 
Ethical hacking
A Raheem Ansari
 
ETHICAL HACKING PRESENTATION
Yash Shukla
 
CNIT 123 Ch 1: Ethical Hacking Overview
Sam Bowne
 
Ethical hacking
Sourabh Badve
 
Ethical hacking : Its methodologies and tools
chrizjohn896
 
Cse ethical hacking ppt
SHAHID ANSARI
 
Certified Ethical Hacking - Book Summary
udemy course
 
An Introduction to Ethical Hacking
Vinny Vessel
 
Ethical Hacking Redefined
Pawan Patil
 
Introduction to Hacking
Rishabha Garg
 
Network Security & Ethical Hacking
Sripati Mahapatra
 
Ethical Hacking
Aditya Vikram Singhania
 
Ethical hacking
Pradeep Sharma
 
Ethical hacking
Ravi Rajput
 
Web hacking 1.0
Q Fadlan
 
Ethical hacking
S Sai Karthik
 
Ethical hacking by shivam
Shivam Ðreamchazer
 
Ethical Hacking and Penetration Testing
Rishabh Upadhyay
 

Similar to Ethical Hacking (20)

PDF
What is ethical hacking and complete cyber security presentation on this file
AyushSrivastava673855
 
PPTX
Ethical hacking
Rishabha Garg
 
PPTX
Seucrity in a nutshell
Yahia Kandeel
 
PPTX
Ethical hacking (legal)
Thangaraj Murugananthan
 
PPTX
Detailed_Scanning_and_Footprinting_Ethical_Hacking.pptx
anitha901605
 
PDF
Ccna sec 01
EduclentMegasoftel
 
PPTX
640-554 IT Certification and Career Paths
hibaehed
 
PPTX
Ethical Hacking
Bharat Sabne
 
PPTX
Ethical hacking/ Penetration Testing
ANURAG CHAKRABORTY
 
PPT
Ethical Hacking: Safeguarding Systems through Responsible Security Testing
champubhaiya8
 
PPTX
building foundation for ethical hacking.ppt
ShivaniSingha1
 
PPTX
Phases of penetration testing
Abdul Rahman
 
PPTX
Ethical hacking presentation.pptx
vineetrajput7902
 
PPTX
Ethical hacking
Institute of Information Security (IIS)
 
PPTX
Types of Attack in Information and Network Security
padmeshagrekar
 
PPT
324515851-Ethical-Hacking-Ppt-Download4575.ppt
ssuserde23af
 
PPT
324515851-Ethical-Hacking-Ppt-Download4575.ppt
ssuserde23af
 
PPT
324515851-Ethical-Hacking-Ppt-Download4575A.ppt
ssuserde23af
 
PPT
intrusion detection system (IDS)
Aj Maurya
 
PPTX
How to hack or what is ethical hacking
baabtra.com - No. 1 supplier of quality freshers
 
What is ethical hacking and complete cyber security presentation on this file
AyushSrivastava673855
 
Ethical hacking
Rishabha Garg
 
Seucrity in a nutshell
Yahia Kandeel
 
Ethical hacking (legal)
Thangaraj Murugananthan
 
Detailed_Scanning_and_Footprinting_Ethical_Hacking.pptx
anitha901605
 
Ccna sec 01
EduclentMegasoftel
 
640-554 IT Certification and Career Paths
hibaehed
 
Ethical Hacking
Bharat Sabne
 
Ethical hacking/ Penetration Testing
ANURAG CHAKRABORTY
 
Ethical Hacking: Safeguarding Systems through Responsible Security Testing
champubhaiya8
 
building foundation for ethical hacking.ppt
ShivaniSingha1
 
Phases of penetration testing
Abdul Rahman
 
Ethical hacking presentation.pptx
vineetrajput7902
 
Ethical hacking
Institute of Information Security (IIS)
 
Types of Attack in Information and Network Security
padmeshagrekar
 
324515851-Ethical-Hacking-Ppt-Download4575.ppt
ssuserde23af
 
324515851-Ethical-Hacking-Ppt-Download4575.ppt
ssuserde23af
 
324515851-Ethical-Hacking-Ppt-Download4575A.ppt
ssuserde23af
 
intrusion detection system (IDS)
Aj Maurya
 
How to hack or what is ethical hacking
baabtra.com - No. 1 supplier of quality freshers
 

Recently uploaded (20)

PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
PPT
Module 1.ppt Iot fundamentals and Architecture
nanditha7766
 
PDF
Getting started with AI Agents and Multi-Agent Systems
Maxim Salnikov
 
PDF
A novel scalable deep ensemble learning framework for big data classification...
IAESIJAI
 
PDF
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
PDF
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
PPTX
Modernising the Digital Integration Hub
Daniel Toomey
 
PDF
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PDF
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
PDF
CloudStack 4.21: First Look Webinar slides
ShapeBlue
 
PDF
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
PDF
Unlock new opportunities with location data.pdf
Precisely
 
PPTX
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PPTX
Web Crawler for Trend Tracking Gen Z Insights.pptx
Actowiz Solustions
 
PPTX
O2C Customer Invoices to Receipt V15A.pptx
ssuserbfa915
 
PDF
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
PPTX
The various Industrial Revolutions .pptx
bandileshozi3
 
PDF
sustainability-14-14877-v2.pddhzftheheeeee
VenkateshGovindaraja9
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
Module 1.ppt Iot fundamentals and Architecture
nanditha7766
 
Getting started with AI Agents and Multi-Agent Systems
Maxim Salnikov
 
A novel scalable deep ensemble learning framework for big data classification...
IAESIJAI
 
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
Modernising the Digital Integration Hub
Daniel Toomey
 
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
CloudStack 4.21: First Look Webinar slides
ShapeBlue
 
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
Unlock new opportunities with location data.pdf
Precisely
 
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
Web Crawler for Trend Tracking Gen Z Insights.pptx
Actowiz Solustions
 
O2C Customer Invoices to Receipt V15A.pptx
ssuserbfa915
 
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
The various Industrial Revolutions .pptx
bandileshozi3
 
sustainability-14-14877-v2.pddhzftheheeeee
VenkateshGovindaraja9
 

Ethical Hacking

  • 1. CAUTION HACKER A T WORK Ethical Hacking
  • 2. Hacking • Hacking is an act of penetrating computer systems to gain knowledge about the system and how it works. • Hacking is the act of gaining access without legal authorization to a computer or computer network or network resources.
  • 3. Hacking means making something work regardless of the circumstances
  • 4. Hacking is not very complex
  • 5. Ethical Hacking • Ethical hacking is the use of hacking knowledge to attempt to enter a network to find its loopholes and back doors. • It is often referred to as ‘legalized hacking’ and yes it is indeed legal and can even reap a lot of profits for highly skilled individuals.
  • 6. Hacker • Hackers are actually computer enthusiasts who know a lot about computers and computer networks and use this knowledge with a criminal intent. • He is a person who uses his hacking skills and tool sets for destructive or offensive purposes such as disseminating viruses or performing DoS attacks to compromise or bring down systems and networks. • Hackers are sometimes paid to damage corporate reputations or steal or reveal credit-card information
  • 7. Types of Hackers • White hat –  Good guys  Don’t use their skills for illegal purposes  Computer security experts • Black hat –  Bad guys  Use their skills for illegal purposes  Criminals
  • 8. Types of Hackers • Script kiddies –  Wannabe hackers  No technical skills  Have no clue about what’s happening in • Elite hackers –  Usually professionals  Develop new attacks/tools
  • 9. Why perform an ethical hack?  To determine flaws and vulnerabilities  To provide a quantitative metric for evaluating systems and networks  To measure against pre-established baselines  To determine risk to the organization  To design mitigating controls
  • 10. Skills Required Becoming an Ethical Hacker  Criminal mindset  Thorough knowledge about Computer programming, Networking and operating systems. highly targeted platforms (such as Windows, Unix, and Linux), etc.  Patience, persistence, and immense perseverance
  • 11. Levels in Ethical Hacking
  • 13. Footprinting  Gathering information of target information Internet Domain name, network blocks, IP addresses open to Net, TCP and UDP services running, ACLs, IDSes Intranet Protocols (IP,NETBIOS), internal domain names, etc Remote access Phone numbers, remote control, telnet, authentication Extranet Connection origination, destination, type, access control
  • 14. Scanning  After obtaining a list of network and IP addresses scanning starts:  ping sweeps (active machines): user pinger in Windows and nmap in Linux/UNIX. This is an example of pinger.  TCP port scanning (open ports in active machines): SYN and connect scans work with most hosts. SYN is stealthier and may not be logged.  In Windows NT use SuperScan and in Linux/UNIX use nmap. See an example of SuperScan. BUT, hackers use scripts with binary files, not graphical tools. 14
  • 15. Types of Scanning Scanning Type Purpose Port scanning Determines open ports and services Network scanning IP addresses Vulnerability scanning Presence of known weaknesses
  • 16. Scanning Tools ■ Nmap ■ Nessus ■ SNMP Scanner ■ THC-Scan ■ Netscan ■ IPSecScan
  • 17. Enumeration • After scanning process and is the process of gathering and compiling usernames, machine names, network resources, shares, and services. • It also refers to actively querying or connecting to a target system to acquire this information.
  • 18. Attack • SQL injection • SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. • The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed.
  • 19. SQL injection • During a SQL injection attack, malicious code is inserted into a web form field or the website’s code to make a system execute a command shell or other arbitrary commands. • Just as a legitimate user enters queries and additions to the SQL database via a web form, the hacker can insert commands to the SQL server through the same web form field.
  • 20. Wireless Hacking Techniques • Cracking encryption and authentication mechanism • Eavesdropping or sniffing • Denial of Service • AP masquerading or spoofing • MAC spoofing
  • 21. Wi-Fi network security • Use Strong Encryption Protocol • Don’t Announce Yourself-Disable SSID • Change Default Administrator Passwords and Usernames • Limit Access To Your Access Point • Do Not Auto-Connect to Open Wi-Fi Networks • Assign Static IP Addresses to Devices • Enable Firewalls On Each Computer and the Router • Position the Router or Access Point Safe