A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN...

22
A ttack B ox D esign 7/11/01 D0G of WAR

Transcript of A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN...

Page 1: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Attack Box Design7/11/01

D0Gof

WAR

Page 2: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

 

Blake~Internet Consultant~

Security Audits & WAN / LAN Infrastructure Designs

[email protected]

San Jose (408) 907-5003 / San Francisco (415) 561-9374

Page 3: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

1. Introduction2. Attack Box Design:

-CUJ0 OS Selection Hardware Selection OS Layout Baseline Software Load Lock & Load: Extended Toolz Selection - Layout of the Lab -Zombies -Those Evil Web Servers -Fighting Back, ‘Rooting the Attacker’

-P0IS0N -Conceptual: The Death Star Design 3. Overview of Security Audits 4. Closing

Page 4: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Building an Attack Box

From the Ground Up….

‘CUJ0’

Page 5: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

OS Selection For Tools

WINDOWS (98 / NT / Win2k)

LINUX

BSD

SOLARIS

Single OS vs Multiboot

Page 6: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Hardware SelectionVia Piece-Meal

(which Manufacturers, Sizing, etc ???)Motherboard, Processor(s)

RAM

Hard Drives

Floppy

NIC Cards

CD Rom / CD Burner

External Modem

Printer

Total Cost =

Page 7: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Hardware Selection: (cont’d)

Laptops

Used Hardware(Where to look for Cheap Stuff)

Page 8: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Multiboot Options

MBRWindows Boot.ini

Lilo bootFreeBSD multiboot

BootMagicSystem Commander

MSTBoot Bootit NGVMWare

Page 9: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

OS Load Order

Which one first ???

The Problems with Installations

Page 10: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Partitions

PrimaryExtendedLogicalVirtual

Formatting

Layout on the Hard DrivesSizing & Resizing

Page 11: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Baseline

Software Loads

Different Configurations

Partition Imaging of Different Loads

Drive Imaging

Storage

Page 12: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

TOOLZSelection

Integration

Testing

Evaluation

Parsing the Code

Making you own Scripts & Toolz

Page 13: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Layout of the Lab for Testing Toolz

Master File Server

Attack, Victim, & Monitoring Boxes

Page 14: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Network Equipment & Configurations

Fractional / T1

DSL

Cable Modem

Dial-up

Routers / Switches / Hubs

Firewalls

Sniffers / Network IDS

Page 15: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Other Types of Attack Boxes

(cont’d)

Automated vs ‘Hands-on’

Vulnerability Scanners

Page 16: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Other Types of Attack Boxes

(cont’d)

Zombies

Page 17: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Other Types of Attack Boxes

(cont’d)

Those

Evil Web Servers

Page 18: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

FIGHTING BACK

‘Rooting the Attacker’

Page 19: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Other Types of Attack Boxes

(cont’d)

‘P0IS0N’The Honeypot with an Attitude

(A Box That Bites Back)

Page 20: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

Other Types of Attack Boxes

(cont’d)

‘The Death Star Design’

Page 21: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

PERFORMING SECURITY AUDITS

Discussion

Page 22: A ttack B ox D esign 7/11/01 D0G of WAR. Blake ~Internet Consultant~ Security Audits & WAN / LAN Infrastructure Designs Netspan@hotmail.com San Jose (408)

END


Telecom Operator Challenges - RedShift Networks · A ttack detection, p reve ntion, emediatio and reporting Visibility, control and Softswitch, application s erv r s, and di ectorie

Telecom Operator Challenges - RedShift Networks · A ttack detection, p reve ntion, emediatio and reporting Visibility, control and Softswitch, application s erv r s, and di ectorie

formation Technology Sector · INCREASED ATTACK SURFACES – MOBILITY AND INTERNET OF THINGS (IOT).....33. I. NCREASED . A. TTACK . S ... botnet—has resulted in a massive increase

formation Technology Sector · INCREASED ATTACK SURFACES – MOBILITY AND INTERNET OF THINGS (IOT).....33. I. NCREASED . A. TTACK . S ... botnet—has resulted in a massive increase

1 S TATE P ENSIONS U NDER A TTACK The Voter Empowerment Act of 2016 2016 Classified Educational Leaders…

1 S TATE P ENSIONS U NDER A TTACK The Voter Empowerment Act of 2016 2016 Classified Educational Leaders…

M ITNICK A TTACK. WHO IS THIS GUY?

M ITNICK A TTACK. WHO IS THIS GUY?

Netspan Northbound if User Guide SR6

Netspan Northbound if User Guide SR6

Player Development Model U9 Program - squamishsoccer.ca · behaviour (creating space, positioning, support, ombin ation pl y, 1v1, 2v2 ttack nd defense) ... Conform to FIFA with the

Player Development Model U9 Program - squamishsoccer.ca · behaviour (creating space, positioning, support, ombin ation pl y, 1v1, 2v2 ttack nd defense) ... Conform to FIFA with the

C yber A ttack R emediation & M itigation Introducing.

C yber A ttack R emediation & M itigation Introducing.

For Lease - Cloudinaryres.cloudinary.com/jll-global-hirise/image/upload/v1572384844/prod/... · B0K B0H B0F B0E B0D C0H C0J C0K C0G D0A E0A D0J D0G E0H E0G E0D E0K C0F C0E R0C R0B

For Lease - Cloudinaryres.cloudinary.com/jll-global-hirise/image/upload/v1572384844/prod/... · B0K B0H B0F B0E B0D C0H C0J C0K C0G D0A E0A D0J D0G E0H E0G E0D E0K C0F C0E R0C R0B

ppx2450-2480 User-Manual NL 253447695-AControleer of de netspan-ning van de adapter overeenkomt met de netspanning die op de opstelplaats beschikbaar is. Het juiste voltage is op het

ppx2450-2480 User-Manual NL 253447695-AControleer of de netspan-ning van de adapter overeenkomt met de netspanning die op de opstelplaats beschikbaar is. Het juiste voltage is op het

A ttack B ox D esign 7/11/01

A ttack B ox D esign 7/11/01

ISMS4SME - msec.be · ANALYTICS Big data Social media . Actors threatening your business Financial gain ... espionage Weaken defence \ttack adversary 2015 Deloitte Belgium o Cyber

ISMS4SME - msec.be · ANALYTICS Big data Social media . Actors threatening your business Financial gain ... espionage Weaken defence \ttack adversary 2015 Deloitte Belgium o Cyber

The Spanish A ttack Mexico

The Spanish A ttack Mexico

NNNNetSureetSure ™™™™ 212211211 1 1 1 … são marcas registradas e marcas de serviço da Emerson Electric Co. NetSure , NetSpan , NetReach , NetXtend , and NetPerform são

NNNNetSureetSure ™™™™ 212211211 1 1 1 … são marcas registradas e marcas de serviço da Emerson Electric Co. NetSure , NetSpan , NetReach , NetXtend , and NetPerform são

7 THE A TTACK LOOMS · 7 THE A TTACK LOOMS 7.1 FIRST ARRIVALS IN CALIFORNIA In chapter 5 w e descr ibed the Southeast Asia tra vels of Na waf al Hazmi, Khalid al Mihdhar, and others

7 THE A TTACK LOOMS · 7 THE A TTACK LOOMS 7.1 FIRST ARRIVALS IN CALIFORNIA In chapter 5 w e descr ibed the Southeast Asia tra vels of Na waf al Hazmi, Khalid al Mihdhar, and others

7 THE A TTACK LOOMS - U.S. Government Publishing Office · PDF file · 2016-05-117 THE A TTACK LOOMS ... Mosque” and had follo wers“suppor t= ... dealt directly with him and studied

7 THE A TTACK LOOMS - U.S. Government Publishing Office · PDF file · 2016-05-117 THE A TTACK LOOMS ... Mosque” and had follo wers“suppor t= ... dealt directly with him and studied

7 THE A TTACK LOOMS - GPO

7 THE A TTACK LOOMS - GPO

Airspan MicroMAX Basic Link Setup via Netspan(Step-By-step)

Airspan MicroMAX Basic Link Setup via Netspan(Step-By-step)

 · 9/1 fin oobm.m/Q nn mmooo bdbm ffl.q. bdbm m - bdbm) 6). qn 00bm.d/Q bdbb b. mn 00bm.m/Q 6)dbd bdbm odod.b/d0G

 · 9/1 fin oobm.m/Q nn mmooo bdbm ffl.q. bdbm m - bdbm) 6). qn 00bm.d/Q bdbb b. mn 00bm.m/Q 6)dbd bdbm odod.b/d0G

ppx3407-3410 User-Manual NL 253528536-Amedia.flixcar.com/f360cdn/Philips-1427627065-ppx3410_eu...Controleer of de netspan-ning van de adapter overeenkomt met de netspanning die op

ppx3407-3410 User-Manual NL 253528536-Amedia.flixcar.com/f360cdn/Philips-1427627065-ppx3410_eu...Controleer of de netspan-ning van de adapter overeenkomt met de netspanning die op

ttack of the B - Oral Interpretation Pieces, Games and ... · ttack of the B-Grade Boyfriends ... might choose to portray each poem with a different persona. ... mother as many of

ttack of the B - Oral Interpretation Pieces, Games and ... · ttack of the B-Grade Boyfriends ... might choose to portray each poem with a different persona. ... mother as many of