Upload
emad-soltani
View
64
Download
14
Tags:
Embed Size (px)
Citation preview
Linux server penetration testing project
By: emad soltani nezhad
Bardia IzadpanahiIslamic Azad University
Pardis BranchMay 2015
2
How to?
Linux server penetration testing project
3
Linux server penetration testing project
Roadmap Introduction Scenario and steps penetration Used tools Gather information Penetration into the target system Increasing the level of access Embedded backdoors
4
Linux server penetration testing project
Introduction
5
Linux server penetration testing project
Scenario and steps penetration
Port Scan
Open FTP & SSH
6
Linux server penetration testing project
Used tools Ubuntu 14.4 Nmap Hydra Netcat Ssh Find strings
7
Linux server penetration testing project
Gather information
192.168.222.132
8
Linux server penetration testing project
Penetration into the target system
Dictionarybrute force
9
Linux server penetration testing project
Penetration into the target system
users.txt
10
Linux server penetration testing project
Penetration into the target system
pass.txt
11
Linux server penetration testing project
Penetration into the target system
RUN hydra
12
Linux server penetration testing project
Penetration into the target system
Log in or through ssh
13
Linux server penetration testing project
Hacking The System
Penetration into the target system
14
Dynamic Source Routing simulation
Increasing the level of access
Step1 (Checks setuid File)
15
Linux server penetration testing project
Increasing the level of access
Step2 (Contents sid.txt File)
16
Linux server penetration testing project
Increasing the level of access
Step3 (Run myexec)
17
Linux server penetration testing project
Increasing the level of access
Step4 (Analysis myexec)
18
Linux server penetration testing project
Increasing the level of access Step5 (Program execution with the password
mypasscode)
19
Linux server penetration testing project
20
Linux server penetration testing project
Embedded backdoorsEmbedded Backdoors
21
Embedded backdoors Step1 (Open the port 1500 on the target system)
Linux server penetration testing project
22
Linux server penetration testing project
Embedded backdoors Step2 (Out of the target system)
23
Linux server penetration testing project
Embedded backdoors Step3 (Enter target without login)
24
Linux server penetration testing project
25
Linux server penetration testing project
26
Linux server penetration testing project