Hands-On Ethical Hacking and Network Defense

... HANDS­ON ETHICAL HACKING AND NETWORK DEFENSELesson 1 0Hacking Web ServersOBJECTIVESCollection InformationDescribe Web applicationsExplain Web application vulnerabilitiesDescribe the tools used to attack Web servers2 3Hands-On Ethical Hacking and Network Defense 4Hands-On Ethical Hacking and Network Defense UNDERSTANDING WEB APPLICATIONSIt is nearly impossible to write a program without bugsSome bugs create security vulnerabilitiesWeb applications also have bugsWeb applications have a larger user base than standalone applicationsBugs are a bigger problem for Web applications5WEB APPLICATION COMPONENTSStatic Web pagesCreated using HTMLDynamic Web pagesNeed special components<form> tagsCommon Gateway Interface (CGI)Active Server Pages (ASP)PHPColdFusionScripting languagesDatabase connectors6WEB FORMSUse the <form> element or tag in an HTML documentAllows customer to submit information to the Web serverWeb servers process information from a Web form by using a Web applicationEasy way for attackers to intercept data that users submit to a Web server7WEB FORMS (CONTINUED)Web form example<html><body><form>Enter ... HANDS­ON ETHICAL HACKING AND NETWORK DEFENSELesson 1 0Hacking Web ServersOBJECTIVESCollection InformationDescribe Web applicationsExplain Web application vulnerabilitiesDescribe the tools used to attack Web servers2 3Hands-On ... name="password"></form></body></html>89COMMON GATEWAY INTERFACE (CGI)Handles moving data from a Web server to a Web browserThe majority of dynamic Web pages are created with CGI and scripting languagesDescribes how a Web server passes data to a Web browserRelies on Perl or another scripting language to create dynamic Web pagesCGI programs can be written in different programming and scripting languages10COMMON GATEWAY INTERFACE (CGI) (CONTINUED)CGI exampleWritten in PerlHello.plShould be placed in the cgi­bin directory on the Web server#!/usr/bin/perlprint...

... Prohibited Ethical Hacking TestingThere are different forms of security testing. Examples include vulnerability scanning, ethical hacking, and penetration testingscanning, ethical hacking, and penetration ... Reproduction is Strictly Prohibited Ethical Hacking and CountermeasuresVersion6Mod le IModule IIntroduction to Ethical HkiHackingApproaches to Ethical Hacking (cont’d)(cont d)Stolen equipment:• ... Ethical Hacking DeliverablesAn Ethical Hacking Report:• Details the results of the hacking activity, matching it against the work schedule decided ihdhAn Ethical Hacking Report:prior to the...

... Engineering Ethical Hacking and CountermeasuresVersion 6 Ethical Hacking and Countermeasures v6Module XI: Social EngineeringExam 312-50 Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical ... username and password to enter into an organization’s network. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical HackerSocial EngineeringModule XI Page 1496 Ethical Hacking and ... with Government Auditing Standards. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical HackerSocial EngineeringModule XI Page 1490 Ethical Hacking and Countermeasures v6 Copyright...

... Strictly Prohibited. Ethical Hacking and CountermeasuresVersion 6Module XIIPhishing Ethical Hacking and Countermeasures v6Module XII: PhishingExam 312-50 Ethical Hacking and Countermeasures ... propagating and hosting fraudulent websitesTrojaned Hosts Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical HackerPhishingModule XII Page | 1563 Ethical Hacking and Countermeasures ... propagating emails and hosting fraudulent websites. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical HackerPhishingModule XII Page | 1564 Ethical Hacking and Countermeasures...

... Prohibited. Ethical Hacking and CountermeasuresVersion 6Module XIII Hacking Email Accounts Ethical Hacking and Countermeasures v6 Module XIII: Hacking Email AccountsExam 312-50 Ethical Hacking and ... take command and control of any email. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Email Accounts Module XIII Page | 1625 Ethical Hacking and Countermeasures ... rediffmail, and MSN account password Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Email Accounts Module XIII Page | 1623 Ethical Hacking and Countermeasures...

... levels: Network Level Hijacking• Application level Hijacking Network level can be defined as the interception of the packets during the transmission between client and the server in a TCP and UDP ... Prohibited Network Level HijackingNetwork Level HijackingEC-CouncilCopyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Network Level HijackingThe network level ... IPv4 standardFamiliarizing with the basic attacks possible due to the IPv4 standardEC-CouncilCopyright © by EC-Council All Rights Reserved. Reproduction is Strictly ProhibitedIPv4 standardTypes...

... Prohibited Ethical Hacking and CountermeasuresVersion 6Mod le XVIModule XVI Hacking Web ServersHow are Web Servers CompromisedCompromisedMisconfigurations, in operating systems, or networksBugs, ... single, standard nameFor example, "%c0%af" and "%c1%9c" are overlong representations for ?/? and ?\?Thus, by feeding the HTTP request (as shown below) to IIS, arbitrary commands ... remotely managing service packs and hotfixesMicrosoft constantly releases updates for the OS and mission critical applications, which fix security vulnerabilities and system stability problemsUpdateExpert...

... ProhibitedEC-Council Ethical Hacking and CountermeasuresCountermeasuresVersion 6Module XVIIWeb Application VulnerabilitiesCookieDigger ToolCookieDigger helps identify weak cookie generation and insecure ... ProhibitedEC-Councilweb server, and allows the attacker to intercept, inspect, and modify the raw traffic passing in both directionsCommand Injection FlawsCommand injection flaws relay the malicious ... whether critical The tool reports on the predictability and entropy of the cookie and whether critical information, such as user name and password, are included in the cookie values EC-CouncilCopyright...