Backdoors and Remote Access Tools Roy INSA Laboratory.
-
date post
20-Dec-2015 -
Category
Documents
-
view
217 -
download
1
Transcript of Backdoors and Remote Access Tools Roy INSA Laboratory.
![Page 1: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/1.jpg)
Backdoors and Remote Access Tools
Roy
INSA Laboratory
![Page 2: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/2.jpg)
Introduction
• The goal is to control remotely
![Page 3: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/3.jpg)
Outline
• Windows– VNC– NetBus Pro– BO– Sub7
• Linux– STCPSHELL
![Page 4: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/4.jpg)
VNC
• Simple Remote Assess Tool
• Desktop
• http://www.realvnc.com/
![Page 5: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/5.jpg)
Setup VNC Server
![Page 6: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/6.jpg)
Connect to VNC Server
![Page 7: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/7.jpg)
NetBus Pro
• Allow full control
• It isn’t as graphically friendly asVNC
• http://www.packetstormsecurity.org
![Page 8: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/8.jpg)
Setup NetBus Server
![Page 9: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/9.jpg)
Double Click
![Page 10: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/10.jpg)
Back Orifice
• More functions
• Support plug-ins
• http://www.bo2k.com/
![Page 11: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/11.jpg)
Setup BO Server
![Page 12: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/12.jpg)
Setup Client
![Page 13: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/13.jpg)
Connect to Victim
![Page 14: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/14.jpg)
SubSeven
• Sub7 is similar to BO2k and Netbus
• More convenient– Just execute file
• http://www.hackpr.net/~sub7/downloads.html
![Page 15: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/15.jpg)
Setup Sub7 Server
![Page 16: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/16.jpg)
Connect to Victim
![Page 17: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/17.jpg)
SCTPSHELL
• Create a virtual shell on victim’s computer
• Spoof TCP packets
• http://www.pkcrew.org/tools/stcpshell.c
• Server• IP Spoofing• Client
Client
140.123.113.72
Server
140.123.113.93
![Page 18: Backdoors and Remote Access Tools Roy INSA Laboratory.](https://reader030.fdocuments.net/reader030/viewer/2022032704/56649d4d5503460f94a2b56b/html5/thumbnails/18.jpg)
Summary