logging in or signing up Windows Hacking technocrawl Download Post to : URL : Related Presentations : Share Add to Flag Embed Email Send to Blogs and Networks Add to Channel Uploaded from authorPOINT lite Insert YouTube videos in PowerPont slides with aS Desktop Copy embed code: (To copy code, click on the text box) Embed: URL: Thumbnail: WordPress Embed Customize Embed The presentation is successfully added In Your Favorites. Views: 434 Category: Entertainment License: Some Rights Reserved Like it (0) Dislike it (0) Added: November 05, 2009 This Presentation is Public Favorites: 0 Presentation Description No description available. Comments Posting comment... By: satsin727 (12 month(s) ago) THANXXXXXXXXXX please send it to me @ satsin727@gmail.com Saving..... Post Reply Close Saving..... Edit Comment Close By: shu22 (14 month(s) ago) Hii I am rahul........This presentation is excellent and very much helpfull to me .So plz can u send it to me .My mailid is rkjskn22@gmail.com .I m very greatfull to u. Thank you . Saving..... Post Reply Close Saving..... Edit Comment Close By: jiten_nigam (20 month(s) ago) hi i m karan ...i like this presentation ..it's very helpful for me ..plz send it to my id karannigam482@gmail.com thanks... Saving..... Post Reply Close Saving..... Edit Comment Close Premium member Presentation Transcript Slide 1: WINDOWS HACKING Module 2 Slide 2: Why Windows Hacking? Popular and Widely used OS As per the W3Schools OS stat‘s, Windows OS Family hits 90% worldwide usage. Slide 3: Windows Registry Part of the OS that records the relationship between the software, Hardware, Users, Memory Space and other System preferences. It logs or records all the Software’s Installed and Hardware’s configured and so on. Slide 4: Registry Hives HKEY_CLASSES_ROOT HKEY_CURRENT_USER HKEY_LOCAL_MACHINE HKEY_USERS HKEY_CURRENT_CONFIG Slide 5: Registry : Implementing Security Disable Task manager Disable CD auto-play Disable Specific Keys Disable Tool bar in Browser Disable Run line commands Disable Right Click Disable Network Password Caching Hardening TCP/IP Stack to prevent DoS attacks And so on…….. Slide 6: SAM SAM - Security Accounts Managers Holds Windows logon password hashes Located at %windir%\System32\config\SAM Can’t be Accessed, Renamed, Modified, Copied or Deleted. Slide 7: SAM : Behind the hood Windows Logon password are encrypted and converted into hashes which looks like, C7A514A6251F0364A1DF3132F881723E and gets stored in SAM file. Even the Administrative users can’t access the SAM. Slide 8: Windows Password Hashes Password Hashes in windows are of two types, LM Hash (LAN Manager Hash) NTLM Hash (New Technology LAN Manager Hash) Slide 9: LM Hash The Hash generated for the password that ranges from 1 to 7 characters in length. Both the LM and NTLM hashes are of 32 bits in length. LM password Examples, Pwd Passwd Slide 10: NTLM Hash The Hash generated for the password that ranges from 8 to 14 and more characters in length. Both the LM and NTLM hashes are of 32 bits in length. NTLM password Examples, MyP@$$w0rd 3m@1l@cc0unt Slide 11: Cracking Windows Login Passwords Cain and Abel Ophcrack Live CD USB Hacking Copying Inactive SAM SAM Spoofing Slide 12: Cracking Windows Login Passwords Slide 13: Cracking Windows Login Passwords Slide 14: NetBIOS Hack The NetBIOS can be exploited in Windows 95, 98, NT 4.0 both workstation and server, 2000 server. C:\>nbtstat -a 10.1.22.212 The <20> implies that NetBIOS service is turned ON and can be exploited. Slide 15: NetBIOS Hack Remote computer’s Root drive on your computer. C:\>net use H: \\10.1.22.212\C Slide 16: NULL Session Establishing a remote connection using RPC without specifying any credentials. Windows OS has few hidden shares namely, C$, D$, E$, F$, ADMIN$, IPC$ IPC$ can be used for establishing remote connection without using any credentials. C:\>net use \\10.1.22.212\ipc$ "" /user:"“ The command completed successfully. To clear the traces, C:\>Net use \\10.1.22.212\IPC$ /delete Slide 17: DNS Poisoning You do not have the permission to view this presentation. In order to view it, please contact the author of the presentation.
Windows Hacking technocrawl Download Post to : URL : Related Presentations : Share Add to Flag Embed Email Send to Blogs and Networks Add to Channel Uploaded from authorPOINT lite Insert YouTube videos in PowerPont slides with aS Desktop Copy embed code: (To copy code, click on the text box) Embed: URL: Thumbnail: WordPress Embed Customize Embed The presentation is successfully added In Your Favorites. Views: 434 Category: Entertainment License: Some Rights Reserved Like it (0) Dislike it (0) Added: November 05, 2009 This Presentation is Public Favorites: 0 Presentation Description No description available. Comments Posting comment... By: satsin727 (12 month(s) ago) THANXXXXXXXXXX please send it to me @ satsin727@gmail.com Saving..... Post Reply Close Saving..... Edit Comment Close By: shu22 (14 month(s) ago) Hii I am rahul........This presentation is excellent and very much helpfull to me .So plz can u send it to me .My mailid is rkjskn22@gmail.com .I m very greatfull to u. Thank you . Saving..... Post Reply Close Saving..... Edit Comment Close By: jiten_nigam (20 month(s) ago) hi i m karan ...i like this presentation ..it's very helpful for me ..plz send it to my id karannigam482@gmail.com thanks... Saving..... Post Reply Close Saving..... Edit Comment Close Premium member Presentation Transcript Slide 1: WINDOWS HACKING Module 2 Slide 2: Why Windows Hacking? Popular and Widely used OS As per the W3Schools OS stat‘s, Windows OS Family hits 90% worldwide usage. Slide 3: Windows Registry Part of the OS that records the relationship between the software, Hardware, Users, Memory Space and other System preferences. It logs or records all the Software’s Installed and Hardware’s configured and so on. Slide 4: Registry Hives HKEY_CLASSES_ROOT HKEY_CURRENT_USER HKEY_LOCAL_MACHINE HKEY_USERS HKEY_CURRENT_CONFIG Slide 5: Registry : Implementing Security Disable Task manager Disable CD auto-play Disable Specific Keys Disable Tool bar in Browser Disable Run line commands Disable Right Click Disable Network Password Caching Hardening TCP/IP Stack to prevent DoS attacks And so on…….. Slide 6: SAM SAM - Security Accounts Managers Holds Windows logon password hashes Located at %windir%\System32\config\SAM Can’t be Accessed, Renamed, Modified, Copied or Deleted. Slide 7: SAM : Behind the hood Windows Logon password are encrypted and converted into hashes which looks like, C7A514A6251F0364A1DF3132F881723E and gets stored in SAM file. Even the Administrative users can’t access the SAM. Slide 8: Windows Password Hashes Password Hashes in windows are of two types, LM Hash (LAN Manager Hash) NTLM Hash (New Technology LAN Manager Hash) Slide 9: LM Hash The Hash generated for the password that ranges from 1 to 7 characters in length. Both the LM and NTLM hashes are of 32 bits in length. LM password Examples, Pwd Passwd Slide 10: NTLM Hash The Hash generated for the password that ranges from 8 to 14 and more characters in length. Both the LM and NTLM hashes are of 32 bits in length. NTLM password Examples, MyP@$$w0rd 3m@1l@cc0unt Slide 11: Cracking Windows Login Passwords Cain and Abel Ophcrack Live CD USB Hacking Copying Inactive SAM SAM Spoofing Slide 12: Cracking Windows Login Passwords Slide 13: Cracking Windows Login Passwords Slide 14: NetBIOS Hack The NetBIOS can be exploited in Windows 95, 98, NT 4.0 both workstation and server, 2000 server. C:\>nbtstat -a 10.1.22.212 The <20> implies that NetBIOS service is turned ON and can be exploited. Slide 15: NetBIOS Hack Remote computer’s Root drive on your computer. C:\>net use H: \\10.1.22.212\C Slide 16: NULL Session Establishing a remote connection using RPC without specifying any credentials. Windows OS has few hidden shares namely, C$, D$, E$, F$, ADMIN$, IPC$ IPC$ can be used for establishing remote connection without using any credentials. C:\>net use \\10.1.22.212\ipc$ "" /user:"“ The command completed successfully. To clear the traces, C:\>Net use \\10.1.22.212\IPC$ /delete Slide 17: DNS Poisoning