Free Samples

CSI5208 Ethical Hacking And Defence

.cms-body-content table{width:100%!important;} #subhidecontent{ position: relative;
overflow-x: auto;
width: 100%;}

CSI5208 Ethical Hacking And Defence

0 Download7 Pages / 1,663 Words

Course Code: CSI5208
University: Edith Cowan University

MyAssignmentHelp.com is not sponsored or endorsed by this college or university

Country: Australia

Questions:

You are to infiltrate the provided system and attain root level privileges. Additionally there are five flags, these flags are represented as values and are awarded at each point of system compromise. Look for them in home directories, web pages etc.
 
You are to write a report outlining each test / attack run against the system and the result. You must follow a process, which should be defined prior to the commencement of testing. Your report should include the flags as well as any credentials you uncover as part of your hacking endeavours.

Answer:
Description 
This report projects on ethical hacking. To conduct this study, a case study is provided. To carry out the study, it is necessary that the user gain access to the system that is provided and root level privileges must be attained. The observation of the study represents that there are five flags for this project. These flags are performed with the use of the virtual machine’s case study. All the flags and their requirements will be found in this report. Each flag contains unique characteristics which will be determined in this project report. 
Methodology and Testing Log   
Identification of IP Address 
Flag: Web Server
Firstly, the web server needs records of the website to store all the HTML reports along with appropriate resources, this could also include the following:

CSS templates
Textual Styles
Documents Of JavaScript
Recordings
Images or pictures and so on.

It is also possible that all the above mentioned records could be stored in a PC. It is also a good practice to store the records on a committed web server. Because, it benefits with the following benefits (Cope, 2017):

It is actively running.
It is dependable.
It is continuously linked to Internet.
It can be safeguarded from the external suppliers.
It constantly contains same IP address (not all ISPs provide the settled IP deliver to the home lines) 

2ndFlag:Web shells
The web-shell could be referred as a harmful substance that is utilized by the attackers with a reason to improve and save the steady access on a starting negotiated web application(Prodromou, 2016). Web-shells can’t strike or experience remote incapability, so it is constantly the second step of a trap.The general vulnerabilities could be misused by the attacker. An example could be represented as follows, The SQL implantation, RFI, FTP, or even use XSS as a part of a social planning strike with a particular true objective for exchanging the substance that is malicious. The fundamental usefulness rages it, but however it isnot just limited to the execution of the web shell, record organization,database tally and code execution (“Everything You Need To Know About Web Shells”, 2017).

Zombie

The Web-shells another usage includes makingthe servers part of the botnet. The botnet is defined as an arrangement of exchanged off systems which the attacker might try to control, it can be either for using it for themselves, or to help the other bad parties(“What is a Web shell?”, 2017).

Propelling and Pivoting Attacks

The web-shell could be utilized to revolve internally or externally area of the framework. The attacker has to screen the framework, for development of the structure, then test the internal framework foridentifying any unauthorized access, and provide firewall as well as switches in the framework. This will allow to secure the framework from the hackers (Glia, 2016).

Consistent Remote Access

The web-shell generally comprises an access which is probably indirect and it gives the power for the attacker for remotely accessing and controlling the server. The access can be allowed as and when needed by the hacker. This would save the attacker from any kind of complex misusing a weakness each time access to the exchanged off server is required.  
3rdFlag: Password cracker
If the hacker hacks the webpage, the attacker daily leaves web shell or an auxiliary section forachieving accomplishment to reach the website in future. This leaves the user confused and avoids any kind of proofs which could be recognized, and the attackers require confirmation, so that the attackers can get into the site. This post represents a process to simplify the web shell and shows how the affirmation could be evaded, when there is availability of source code and when the password is missing (Engebretson, 2013).
Deobfuscating the web shell
The preg_replace consists of 3 disputes namely,

Regex
Substitution
Subject

As the regex contains an e modifier, it could easily evaluate anything in the substitution as a PHP code. This states that the following code can be utilized(“What is a Web shell?”, 2017): 
PHP is used, as physically changing this string might be hard: 
Bypassing check
The suggested main code is, $auth_pass, this might need approval for the web shell. The course of action of $auth_pass, 32 hexadecimal characters suggest that it is MD5 of the plaintext mystery word. As the wellspring of the web shell is present, the following can be undertaken(Ethical hacking and countermeasures, 2017): 
Updates
Split a few passwords,
Hash Password
64a113a4ccc22cffb9d2f75b8c19e333 cmonqwe123#@!
9e4bf26d87b7e8b6b66b0a2305f67184 lex1312 
4thFlag: TCP port scanner – NMAP
The technique known as Port checking is utilized for perceiving whether the targeted port is open or close. In case the organization which uses a specific port to contact with different systems, the port could be open. It is the inspiration which drives when the port is open, then it is possible to provide service for a long period based on the type of organization it uses, by sending targets with a phenomenally made packages. In case the target IP address is known, then it is possible to dispatch the port checking for the trap. It will be obviously if no decision is selected, then the Nmap runs the TCP SYN Scan which is referred as, Stealth Scan (“Port Scanning Techniques”, 2018).For measuring such a scope it contains the tendency to be beneficial for restoring the TCP 3-way handshake speculation. It is that part which addresses the method the TCP affiliation could start. Irrespective of whether such an outcome is default, “- sS” parameter could be utilized. As, it will help to set up the pursued with the objective’s IP address (“TCP Port Scan with Nmap | Pentest-Tools.com”, 2018): 
Due to each reason, the users contains least need for runningNmap from the limited shared shell accounts and it is fortunate enough because the privileged options lets Nmapto becomes highly flexible and powerful. As Nmaptries to generate accurate results, it must be remembered that each ofits insights depend on the returned packets which the target machines send (due to firewalls). Similar hosts cannot be trusted and it transfers the responses that can confuse the Nmap. non-RFC-compliant hosts are the most common ones which probesNmap. The following scans can be susceptible are FIN, NULL, and Xmas scans.Similar problems are particular for certain type of scans.
The most famous and default option for scan includes, SYN scan, which could be conducted instantly, to scan ports which are thousands in number per second on a fast network not hampered by the firewalls which are restrictive. It is linked with unobtrusive and stealthy, because it never finishes the TCP connections. Against any kind of compliant, SYN scan works. It even lets the reliable and clear differentiation among the open, closed, and filtered states. 
Such a technique could be referred as the half-open scanning, as the complete TCP connection is not opened. It is possible to send the SYN packet, due to opening the real connection and next it waits for the response. The SYN/ACK denotes the listening of the port (open), when RST (reset) is indicative of non-listener. When no response arrives once various retransmissions, the port will be marked as filtered. The port is also marked filtered if an ICMP unreachable error (type 3, code 0, 1, 2, 3, 9, 10, or 13) is received. When the SYN packet (without the ACK flag) receives the response it is considered that the port is opened. This is because of the feature of TCP which is rare and is called to be simultaneous open /split handshake connection
-sT (TCP connect scan).
The TCP connect scan refers to the default the TCP scan type, in case where the SYN scan isn’t the option. This is the case when a user does not have raw packet privileges. Rather thannwriting the raw packets like how various types of scan perform, the Nmap asks for underlying operating system, for establishing the connection with the target machine and port by issuing the connect system call. TheNmap utilizes API for obtaining the information status on every single try of the connection.
5thFlag: Privilege
The things learnt related to fundamentals of the Linux privilege escalation are listed below (Feroze, 2018):

Applications and Services
Operating System
Confidential Information
Preparation
Finding Exploit Code
File Systems
Networking communication 

Result and Conclusion 
The topic ethical hacking is covered effectively, with the help of a provided case study. It is noted that the study can be carried out,when the user gainssystem access along with root level privileges. The cases study’s observation displays five flags for this project. These flags were worked with the use of virtual machine.The First flag is utilized for checking the content of the web server,where the admin’s username and password is identified. The second flag is utilized for learning web shells, then the third flag is utilized for cracking the password and the fourth flag is utilized for finding the user entering the incorrect password intothe system. This process is supported by a tool named, TCP port scanner. At last, the final flag is utilized to gain knowledge of the general Linux privilege escalations.
Therefore, all the flags and their requirements are identified, where each flag represents different characteristics.   
References 
Cope, S. (2017). Introduction to HTTP : Understanding HTTP Basics. Retrieved from https://www.steves-internet-guide.com/http-basics/
Everything You Need To Know About Web Shells. (2017). Retrieved from https://www.darknet.org.uk/2016/07/everything-need-know-web-shells/
Feroze, R. (2018). A guide to Linux Privilege Escalation. Retrieved from https://payatu.com/guide-linux-privilege-escalation/
Glia. (2016). Web Shells and Backdoors. Retrieved from https://no-sec.net/web-shells-and-backdoors/
Port Scanning Techniques. (2018). Retrieved from https://nmap.org/book/man-port-scanning-techniques.html
Prodromou, A. (2016). Detection and Prevention – An Introduction to Web-Shells – Final Part. Retrieved from https://www.acunetix.com/blog/articles/detection-prevention-introduction-web-shells-part-5/
What is a Web shell?. (2017). Retrieved from https://malware.expert/general/what-is-a-web-shell/

Free Membership to World’s Largest Sample Bank

To View this & another 50000+ free samples. Please put
your valid email id.

E-mail

Yes, alert me for offers and important updates

Submit 

Download Sample Now

Earn back the money you have spent on the downloaded sample by uploading a unique assignment/study material/research material you have. After we assess the authenticity of the uploaded content, you will get 100% money back in your wallet within 7 days.

UploadUnique Document

DocumentUnder Evaluation

Get Moneyinto Your Wallet

Total 7 pages

PAY 4 USD TO DOWNLOAD

*The content must not be available online or in our existing Database to qualify as
unique.

Cite This Work
To export a reference to this article please select a referencing stye below:

APA
MLA
Harvard
OSCOLA
Vancouver

My Assignment Help. (2020). Ethical Hacking And Defence. Retrieved from https://myassignmenthelp.com/free-samples/csi5208-ethical-hacking-and-defence/port-scanner.html.

“Ethical Hacking And Defence.” My Assignment Help, 2020, https://myassignmenthelp.com/free-samples/csi5208-ethical-hacking-and-defence/port-scanner.html.

My Assignment Help (2020) Ethical Hacking And Defence [Online]. Available from: https://myassignmenthelp.com/free-samples/csi5208-ethical-hacking-and-defence/port-scanner.html[Accessed 18 December 2021].

My Assignment Help. ‘Ethical Hacking And Defence’ (My Assignment Help, 2020) accessed 18 December 2021.

My Assignment Help. Ethical Hacking And Defence [Internet]. My Assignment Help. 2020 [cited 18 December 2021]. Available from: https://myassignmenthelp.com/free-samples/csi5208-ethical-hacking-and-defence/port-scanner.html.

×
.close{position: absolute;right: 5px;z-index: 999;opacity: 1;color: #ff8b00;}

×

Thank you for your interest
The respective sample has been mail to your register email id

×

CONGRATS!
$20 Credited
successfully in your wallet.
* $5 to be used on order value more than $50. Valid for
only 1
month.

Account created successfully!
We have sent login details on your registered email.

User:

Password:

If you are not sure how to write an essay in a short time, then visit our website MyAssignmenthelp.com to avail top-notch quality output in a jiffy. Experienced qualified writers are at your disposal for writing an essay based on the client’s requirements. We also have numerous essay examples stored in our repository as free samples which highlight the extensive research work the writers conduct to create unique content. Moreover, you get 100% original content at an economical price. Professional essay help is at its best with our writers as they incorporate additional information into the content in the form of graphs, charts, tables etc.

Latest Management Samples

div#loaddata .card img {max-width: 100%;
}

MPM755 Building Success In Commerce
Download :
0 | Pages :
9

Course Code: MPM755
University: Deakin University

MyAssignmentHelp.com is not sponsored or endorsed by this college or university

Country: Australia

Answers:
Introduction
The process of developing a successful business entity requires a multidimensional analysis of several factors that relate to the internal and external environment in commerce. The areas covered in this current unit are essential in transforming the business perspective regarding the key commerce factors such as ethics, technology, culture, entrepreneurship, leadership, culture, and globalization (Nzelibe, 1996; Barza, 2…
Read
More

SNM660 Evidence Based Practice
Download :
0 | Pages :
8

Course Code: SNM660
University: The University Of Sheffield

MyAssignmentHelp.com is not sponsored or endorsed by this college or university

Country: United Kingdom

Answers:
Critical reflection on the objective, design, methodology and outcome of the research undertaken Assessment-I
Smoking and tobacco addiction is one of the few among the most basic general restorative issues, particularly to developed nations such as the UK. It has been represented that among all risk segments smoking is the fourth driving purpose behind infections and other several ailments like asthma, breathing and problems in the l…
Read
More
Tags:
Australia Maidstone Management Business management with marketing University of New South Wales Masters in Business Administration 

BSBHRM513 Manage Workforce Planning
Download :
0 | Pages :
20

Course Code: BSBHRM513
University: Tafe NSW

MyAssignmentHelp.com is not sponsored or endorsed by this college or university

Country: Australia

Answer:
Task 1
1.0 Data on staff turnover and demographics
That includes the staffing information of JKL industries for the fiscal year of 2014-15, it can be said that the company is having problems related to employee turnover. For the role of Senior Manager in Sydney, the organization needs 4 managers; however, one manager is exiting. It will make one empty position which might hurt the decision making process. On the other hand, In Brisba…
Read
More

MKT2031 Issues In Small Business And Entrepreneurship
Download :
0 | Pages :
5

Course Code: MKT2031
University: University Of Northampton

MyAssignmentHelp.com is not sponsored or endorsed by this college or university

Country: United Kingdom

Answer:
Entrepreneurial ventures
Entrepreneurship is the capacity and willingness to develop, manage, and put in order operations of any business venture with an intention to make profits despite the risks that may be involved in such venture. Small and large businesses have a vital role to play in the overall performance of the economy. It is, therefore, necessary to consider the difference between entrepreneurial ventures, individual, and c…
Read
More
Tags:
Turkey Istanbul Management University of Employee Masters in Business Administration 

MN506 System Management
Download :
0 | Pages :
7

Course Code: MN506
University: Melbourne Institute Of Technology

MyAssignmentHelp.com is not sponsored or endorsed by this college or university

Country: Australia

Answer:
Introduction
An operating system (OS) is defined as a system software that is installed in the systems for the management of the hardware along with the other software resources. Every computer system and mobile device requires an operating system for functioning and execution of operations. There is a great use of mobile devices such as tablets and Smartphones that has increased. One of the widely used and implemented operating syste…
Read
More
Tags:
Australia Cheltenham Computer Science Litigation and Dispute Management University of New South Wales Information Technology 

Next