Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133...

16
Cyber Attack for Management The Armitage Project ISSA DC / 18 Jan 11

Transcript of Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133...

Page 1: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Cyber Attack for Management

The Armitage Project

ISSA DC / 18 Jan 11

Page 2: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Today…

• Your speaker

• On Hacking…

• What is Armitage?

• Demonstration

• Q&A

Page 3: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Your Speaker…

• Systems Administrator

• NOSC Crew Commander

• Cyber Ops R&D Team Lead

• Red Team Member

• Penetration Tester

Page 4: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Hacking is like… magic

Page 5: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

It’s easier than you think…

Cartoon: XKCD by Randall Munroe: http://xkcd.com/538

Page 6: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Hacking is a Process

Page 7: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

On Hacking

• It’s like magic…

• It’s easier than you think

• It’s a process

Page 8: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Metasploit

• A Penetration Testing and Exploit Development Framework

http://www.metasploit.com

Page 9: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Metasploit

Page 10: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

What is Armitage?

• A GUI for Metasploit

– Recommends exploits

– Configures modules

– Aids Post Exploitation

– Friendly to Command-line Users

Page 11: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

What is Armitage?

• A GUI for Metasploit

• Goal: Avoid this…

Page 12: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

What is Armitage?

• Usable for your penetration tests?

Image courtesy of @guerilla7 on Twitter.

Page 13: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

What is Armitage?

• Usable for your penetration tests

Image courtesy of @guerilla7 on Twitter.

Page 14: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Stop, Demo Time!

• Scanning

• Exploitation

• Post Exploitation

• Maneuver

Page 15: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Today…

• Your speaker

• On Hacking…

• What is Armitage?

• Demonstration

• Q&A

Page 16: Cyber Attack for Management · 10.1.sgo 10.1.6.103 10.18106 10.1.6.107 10 101.6.129 10.18133 10.18135 Close Help Description proto open open open Skype Microsoft Terminal Service

Go get it…

• Website

– http://www.fastandeasyhacking.com

• Twitter

– @armitagehacker

• Email

[email protected]