[CEH V3] Ethical Hacking - Introduction

... Certified e-Business Professional • 3. Certified e-Business Consultant • 4. E++ Certified Technical Consultant • 5. Certified Ethical Hacker EC-Council EC-Council Certified Ethical Hacker EC-Council ... Materials EC-Council Course Outline  Module I : Introduction to Ethical Hacking  Module II: Footprinting  Module III: Scanning  Module IV: Enumeration  Module V: System Hacking EC-Council ... Cryptography EC-Council EC-Council Certified e- business Certification Program There are five e-Business certification tracks under EC-Council Accreditation body: • 1. Certified e-Business Associate...

... Ethical Hacking Module I Introduction to Ethical Hacking EC-Council Module Objective  Understanding the importance of security  Introducing ethical hacking and essential ... and identification of exploit categories  Comprehending ethical hacking  Legal implications of hacking  Hacking, law and punishment EC-Council Problem Definition – Why Security?  Evolution ... taken if needed. EC-Council Modes of Ethical Hacking  Remote network – This mode attempts to simulate an intruder launch an attack over the Internet.  Remote dial-up network - This mode attempts...

... HANDS­ON ETHICAL HACKING AND NETWORK DEFENSELesson 1 0Hacking Web ServersOBJECTIVESCollection InformationDescribe Web applicationsExplain Web application vulnerabilitiesDescribe the tools used to attack Web servers23Hands-On Ethical Hacking and Network Defense4Hands-On Ethical Hacking and Network DefenseUNDERSTANDING WEB APPLICATIONSIt is nearly impossible to write a program without bugsSome bugs create security vulnerabilitiesWeb applications also have bugsWeb applications have a larger user base than standalone applicationsBugs are a bigger problem for Web applications5WEB APPLICATION COMPONENTSStatic Web pagesCreated using HTMLDynamic Web pagesNeed special components<form> tagsCommon Gateway Interface (CGI)Active Server Pages (ASP)PHPColdFusionScripting languagesDatabase connectors6WEB FORMSUse the <form> element or tag in an HTML documentAllows customer to submit information to the Web serverWeb servers process information from a Web form by using a Web applicationEasy way for attackers to intercept data that users submit to a Web server7WEB FORMS (CONTINUED)Web form example<html><body><form>Enter ... HANDS­ON ETHICAL HACKING AND NETWORK DEFENSELesson 1 0Hacking Web ServersOBJECTIVESCollection InformationDescribe Web applicationsExplain Web application vulnerabilitiesDescribe the tools used to attack Web servers23Hands-On ... name="password"></form></body></html>89COMMON GATEWAY INTERFACE (CGI)Handles moving data from a Web server to a Web browserThe majority of dynamic Web pages are created with CGI and scripting languagesDescribes how a Web server passes data to a Web browserRelies on Perl or another scripting language to create dynamic Web pagesCGI programs can be written in different programming and scripting languages10COMMON GATEWAY INTERFACE (CGI) (CONTINUED)CGI exampleWritten in PerlHello.plShould be placed in the cgi­bin directory on the Web server#!/usr/bin/perlprint "Content-type: text/html\n\n";print "Hello Security Testers!";11ACTIVE SERVER PAGES (ASP)With ASP, developers can display HTML documents to users on the flyMain difference from pure HTML pagesWhen a user requests a Web page, one is created at that timeASP uses scripting languages such as JScript or VBScriptNot all Web servers support ASP1213ACTIVE SERVER PAGES (ASP) (CONTINUED)ASP example<HTML><HEAD><TITLE>...

... EC-Council Ethical Hacking Workshop Ethical Hacking Presented by: Name of Speaker Certified Ethical Hacker Institute Name To Stop a Hacker is to Think Like One! EC-Council Background ... 2000.  Toll-free virus support EC-Council Phase 2: Stay Secure  Worldwide security-readiness events  Tools, updates, and patches • Enterprise security tools • Windows Update auto-update functionality ... required on upgrades) Protecting E-Mail EC-Council Protecting Web Servers  Apply the latest hotfixes  Install the latest service pack  Install the security roll-up packages  Remove unnecessary...

... Reproduction is Strictly Prohibited Ethical Hacking and CountermeasuresVersion6Mod le IModule I Introduction to Ethical HkiHackingApproaches to Ethical Hacking (cont’d)(cont d)Stolen equipment:• ... pooobEC-CouncilCopyright © by EC-CouncilAll Rights Reserved. Reproduction is Strictly Prohibited Ethical Hacking DeliverablesAn Ethical Hacking Report:• Details the results of the hacking ... security of an IT system through vulnerabilityEC-CouncilCopyright © by EC-CouncilAll Rights Reserved. Reproduction is Strictly Prohibited Ethical Hacking TestingThere are different forms of...

... Engineering Ethical Hacking and CountermeasuresVersion 6 Ethical Hacking and Countermeasures v6Module XI: Social EngineeringExam 31 2-5 0 Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical ... Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical HackerSocial EngineeringModule XI Page 1471 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council ... Passwords Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical HackerSocial EngineeringModule XI Page 1481 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council...

... Prohibited. Ethical Hacking and CountermeasuresVersion 6Module XIIPhishing Ethical Hacking and Countermeasures v6Module XII: PhishingExam 31 2-5 0 Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 ... anti-virus software. Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical HackerPhishingModule XII Page | 1554 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council ... Anti-Phishing Tools Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical HackerPhishingModule XII Page | 1582 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council...

... Prohibited. Ethical Hacking and CountermeasuresVersion 6Module XIII Hacking Email Accounts Ethical Hacking and Countermeasures v6 Module XIII: Hacking Email AccountsExam 31 2-5 0 Ethical Hacking ... Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical Hacker Hacking Email Accounts Module XIII Page | 1600 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council ... information for hacking email accounts Ethical Hacking and Countermeasures v6 Exam 31 2-5 0 Certified Ethical Hacker Hacking Email Accounts Module XIII Page | 1610 Ethical Hacking and Countermeasures...