1 / 10

Understanding Ethical Hacking: GMail and Network Defense Essentials

This overview of ethical hacking explores the methods used by hackers to access computer systems, including unauthorized entry and password collection. Unlike criminal hackers, ethical hackers receive permission to conduct their activities, often performing "penetration tests" to identify security vulnerabilities. The course, CNIT 123 and CNIT 124, covers topics such as sniffing plaintext passwords, eavesdropping, and securing web logins. Hands-on activities include using tools like Cain to reveal passwords and hijacking sessions. For more information, contact Sam Bowne at City College of San Francisco.

rsurette
Télécharger la présentation

Understanding Ethical Hacking: GMail and Network Defense Essentials

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Ethical Hacking:Hacking GMail

  2. What do Hackers Do? • Get into computer systems without valid accounts and passwords • Take over Web servers • Collect passwords from Internet traffic • Take over computers with remote access trojans • And much, much more

  3. Ethical Hackers • Ethical Hackers do the same thing criminal hackers do, with one difference • Ethical Hackers have permission from the owner of the machines to hack in • These "Penetration Tests" reveal security problems so they can be fixed

  4. Student Agreement • Required for every student in CNIT 123: Ethical Hacking and Network Defense or CNIT 124: Advanced Ethical Hacking

  5. Sniffing Plaintext Passwords

  6. Eavesdropping To Internet Router AttackerSniffingTraffic TargetUsingWeb

  7. Insecure Login Pages • HTTP does not encrypt data • Always look for HTTPS on login pages

  8. Tool: Cain • Click NIC icon to start sniffer • Click Sniffer tab, Password tab on bottom • From http://www.oxid.it/cain.html

  9. Three Hands-On Activities • Monterey Room, Second Floor • All Day Weds. & Thurs. till noon • Sniffing plaintext passwords with Cain • Hijacking Gmail sessions with Ferret & Hamster • Revealing Windows XP Login passwords with OphCrack

  10. Contact • Sam Bowne • Computer Networking and Information Technology • City College San Francisco • Email: sbowne@ccsf.edu • Web: samsclass.info • Last modified 12-2-08

More Related