Covering Tracks is a process to delete all logs on the remote system. If target system is linux or UNIX, delete all entries of /var folder and if it is windows os delete all events and logs.
Case Study: 1.3
You are working in abc company as a ethical hacker and your company get a contract from government to hack terrorist organization server for getting all their emails.
Ans) 1st we perform Information gathering (like collect all information like IP address and
physical address). 2nd we perform port scanning to find open ports: 22, 25, 80. And then perform OS fingerprinting with help of nmap and p0f and if result is “Linux 2.6” then next perform banner grabbing on port no: 25 (related to email server) in which command is used :
c:\> telnet abc.com 80
Result is : HTTP 1.1 400 BAD REQUEST
Server: Apache 2.0 Linux
So after we perform manual vulnerability assessment manually with help of www.milw0rm.com
and search “Apache 2.0” then after download exploit code - compile the exploit code and attack then take all email backup from remote system.
0 comments:
Post a Comment