Yesterday I decided to share with the team an overview of a Wired and Wireless Network and how certain loopholes in them can pose a threat to our data and confidential information. Due to lack of time I could not cover, “How to secure the network from such vulnerabilities” Which I hope to cover another time along with Web Server Security.
Below are the topics that were covered during the presentation.
Network Analyzer and Sniffers:
An overview of Wired and Wireless Networks & key distinctions between them.
Wired Equivalent Privacy (WEP) on wireless networks.
Gateways and Routers.
Address Resolution Protocol (ARP) and how ARP requests could be re-routed to a specific MAC.
Mac Cloning, Ip Spoofing.
Creation of fake RSA certification for a MITM (Man in the middle) attack.
MITM attack with ARP poisoning and Denial of Service (DOS).
Decryption SSL dumps.
DEMO given on the above, to read captured passwords from a live ssl session over Wired/Wireless Network.
Remote administration tools:
Firewall bypassing methods even over NAT.
Anti-virus bypassing methods with the use of Compilers, Packers and Compressors.
Demo given with a Yahoo IM Trojan with DLL injection capabilities and how confidential information could be retrieved without the user knowing off it.
Later had a feedback from the guys, that they had thoroughly enjoyed the presentation and were looking forward to more of such stuff in the future.