Pen test for sys admin

14
Penetration Testing for System Administrators Sept 13, 2010 ryan Linn NCSA Meeting Thursday, September 23, 2010

TAGS:

description

 

Transcript of Pen test for sys admin

Page 1: Pen test for sys admin

Penetration Testing for System

AdministratorsSept 13, 2010

ryan LinnNCSA Meeting

Thursday, September 23, 2010

Page 2: Pen test for sys admin

Agenda

• Introduction

• Description of Penetration Testing

• Overview of Process

• Walkthrough of Common Tasks

• Questions/Closing

Thursday, September 23, 2010

Page 3: Pen test for sys admin

Introduction

• Information Security Engineer at SAS

• Columnist at EthicalHacker.net

• Contributed code to Metasploit, Browser Exploitation Framework (BeEF), and Nikto

• Spoken at numerous regional and national security conferences

Thursday, September 23, 2010

Page 4: Pen test for sys admin

Description of Pen Testing

• Means different things to different people• Find vulnerabilities and stop

• Find vulnerabilities and verify• Find vulnerabilities and see how far

you can get

• For today: Find vulnerabilities and verify

Thursday, September 23, 2010

Page 5: Pen test for sys admin

Overview of Process

• Recon

• Discovery/Scanning

• Enumeration

• Exploitation

Thursday, September 23, 2010

Page 6: Pen test for sys admin

Recon

• Non Invasive

• Whois

• Google

• Basic DNS Queries

Thursday, September 23, 2010

Page 7: Pen test for sys admin

Discovery/Scanning

• Port Scans

• In-depth DNS queries

• Vulnerability Scanning

• OS Identification

Thursday, September 23, 2010

Page 8: Pen test for sys admin

Enumeration

• SMB enumeration

• Oracle DB Enumeration

• User enumeration

Thursday, September 23, 2010

Page 9: Pen test for sys admin

Exploitation

• Leverage information gathered

• Verify vulnerability information

• Possibly go back to gather more information if successful

Thursday, September 23, 2010

Page 10: Pen test for sys admin

Walkthroughs

• Recon

• Scanning

• Exploitation

Thursday, September 23, 2010

Page 11: Pen test for sys admin

Scanning

• Nmap Scans

• Port/Service/OS Identification

• Nessus/OpenVAS

• Vulnerability Scanner

• Safe Checks/Unsafe Checks

Thursday, September 23, 2010

Page 12: Pen test for sys admin

Exploitation/Verification

• Metasploit

• Penetration Testing Framework

• Aids in Exploit Development

• Exploitation of Vulnerability

• Also has scanning capability

Thursday, September 23, 2010

Page 13: Pen test for sys admin

Docs/Training

• SANS Sec504 : Incident Handling

• SANS Sec580: Metasploit Kung Fu for Enterprise Pen Testing

• http://www.offensive-security.com/metasploit-unleashed

• http://www.EthicalHacker.net

Thursday, September 23, 2010

http://www.offensive-security.com/metasploit-unleashed
http://www.offensive-security.com/metasploit-unleashed
http://www.offensive-security.com/metasploit-unleashed
http://www.offensive-security.com/metasploit-unleashed
http://www.offensive-security.com/metasploit-unleashed
http://www.offensive-security.com/metasploit-unleashed
Page 14: Pen test for sys admin

Questions?

• Contact Info:

• Twitter: @sussurro

• Blog: blog.happypacket.net

• http://www.ethicalhacker.net

Thursday, September 23, 2010

http://www.ethicalhacker.net
http://www.ethicalhacker.net

Wc7220 Wc7225 Sys Admin Guide en-us

Wc7220 Wc7225 Sys Admin Guide en-us

ASU - checoweb.org · ASU Network/Telecom/Sys Admin Sys admin team lead is now also managing network and telecom Time for more bandwidth, renegotiation with Centurylink, second provider

ASU - checoweb.org · ASU Network/Telecom/Sys Admin Sys admin team lead is now also managing network and telecom Time for more bandwidth, renegotiation with Centurylink, second provider

Sys Admin Guide Xerox WorkCentre 7775

Sys Admin Guide Xerox WorkCentre 7775

5 3 0 Sys Admin Guide

5 3 0 Sys Admin Guide

Mqv7 Sys Admin Faqs

Mqv7 Sys Admin Faqs

Roger McNamee presentation€¦ · Business Development ! time Accountant ! time Office Manager CTO/Developer Sys Admin Sys Admin Technology Programs Finance/Admin Developer Volunteer

Roger McNamee presentation€¦ · Business Development ! time Accountant ! time Office Manager CTO/Developer Sys Admin Sys Admin Technology Programs Finance/Admin Developer Volunteer

Sys Admin Course Physical Storage and File Systems Fourie Joubert.

Sys Admin Course Physical Storage and File Systems Fourie Joubert.

Xerox 550 Sys Admin Guide En

Xerox 550 Sys Admin Guide En

RH intro sys admin

RH intro sys admin

Linux Host Utilities 6.1 Installation and Setup Guide - Admin-Sys

Linux Host Utilities 6.1 Installation and Setup Guide - Admin-Sys

Windows Sys Admin Questions

Windows Sys Admin Questions

Workcentre 7535 Sys Admin Guide Us-En

Workcentre 7535 Sys Admin Guide Us-En

ewsd x25 sys admin

ewsd x25 sys admin

Interview Questions for Sys Admin

Interview Questions for Sys Admin

ServiceNow Sys Admin Exam Specs

ServiceNow Sys Admin Exam Specs

Xerox 6360 Sys Admin Guide English

Xerox 6360 Sys Admin Guide English

Sys Admin Guide Pt-br

Sys Admin Guide Pt-br

Sys Admin Guide En

Sys Admin Guide En

ServiceNow Certified Sys Admin Exam Blue Print

ServiceNow Certified Sys Admin Exam Blue Print

Ss Sys Admin

Ss Sys Admin