The effectiveness of pass the hash attacks have been demonstrated and discussed throughout this chapter to build an understanding of why hackers use this attack. It is important as a cyber security professional to understand the vulnerabilities found within authentication protocols and hash functions. Understanding how NTLM and Kerberos authenticate users is fundamental in creating strong defenses against password attacks. It is recommended to keep up to date on new changes to authentication protocols, to not fall victim to unforeseen vulnerabilities. Knowing how to use different types of passing and crack hashing tools will allow for much better awareness against this type of attack in the future. Remember the lessons from the Target hack. As we discussed in this chapter, pass the hash attacks can be stopped or at least mitigated by having strong security policies and practicing effective security methods...
Applied Network Security
Applied Network Security
Overview of this book
Computer networks are increasing at an exponential rate and the most challenging factor organisations are currently facing is network security. Breaching a network is not considered an ingenious effort anymore, so it is very important to gain expertise in securing your network. The book begins by showing you how to identify malicious network behaviour and improve your wireless security. We will teach you what network sniffing is, the various tools associated with it, and how to scan for vulnerable wireless networks. Then we’ll show you how attackers hide the payloads and bypass the victim’s antivirus. Furthermore, we’ll teach you how to spoof IP / MAC address and perform an SQL injection attack and prevent it on your website. We will create an evil twin and demonstrate how to intercept network traffic. Later, you will get familiar with Shodan and Intrusion Detection and will explore the features and tools associated with it. Toward the end, we cover tools such as Yardstick, Ubertooth, Wifi Pineapple, and Alfa used for wireless penetration testing and auditing. This book will show the tools and platform to ethically hack your own network whether it is for your business or for your personal home Wi-Fi.
Table of Contents (18 chapters)
Introduction to Network Security
Sniffing the Network
How to Crack Wi-Fi Passwords
Creating a RAT Using Msfvenom
Social Engineering Toolkit and Browser Exploitation
Passing and Cracking the Hash
Web Application Exploits
Evil Twins and Spoofing
The Internet of Things
Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra