Electronic Books

16.1.40/scripts/..%c0%af../winnt/system32/
cmd.exe?/c+dir+c:\
Scanning
177
Notice that the beenhacked directory is now created in the root of the C:
drive on the target.
*Note: The results of these scripts tells an attacker that the computer has read/write
access and as such can issue commands to the target as if the attacker were
sitting behind the keyboard of the target. At this point, the attacker owns the
target.
The gray bar along the top right of the application allows you to enter
custom scripts for the application to check against the target. If you wanted
to check the Program Files directory or create a beenhacked directory on each
target it is capable of compromising, you could enter these scripts here and
click the downward-pointing arrow to enter the script into the application.
Repeat this process for multiple targets
178
Practical Hacking Techniques and Countermeasures
Lab 39: Shared Resources Locator
Identify Open Shared Resources: Hydra
Prerequisites: Shared resources on the target
Countermeasures: Bastion servers/workstations, host-based firewalls
Description: The Hydra application will scan a range of IP addresses and
identify any open shares from open port 139. Open shares are shares
without passwords assigned to them, of which the majority allows
anyone to copy, move, delete, and quite often add to the share. Not
all shares are left unprotected and Hydra has the ability to brute-force
its way into the share given a username and password list combination.


Pages:
69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93