Electronic Books

594
Practical Hacking Techniques and Countermeasures
The directory listing of the root directory will now be displayed.
In this example, the attacker noted a directory named tools and decided
to change to that directory by typing cd tools and pressing Enter.
Wireless
595
By running another directory listing, you can view the contents of the tools
directory.
You can see how easy it is for the attacker to look through the target. The
attacker had one final task of looking through the password file by typing:
cat /etc/passwd
*Note: Many readers ask at this point how to get the target to initiate the Telnet session
to begin with. Keep in mind that most companies allow for port 80 and port 25
traffic anyway, and with tools like Elitewrap (Lab 87) the target can unknowingly
initiate a session to the attacker. If the target is Unix/Linux, have the cron job initiate
the connection. Security personnel should remember that those computers not
needing Telnet should have the application removed from it altogether. After all,
why give the tools away to the attacker? Make attackers upload their own toolkit.
596
Practical Hacking Techniques and Countermeasures
Lab 85: Covert Channel ??“??“??“ Reverse Shell
Exploit Data from Target Computer: Reverse Shell
Prerequisites: None
Countermeasures: Updated antivirus, strong ACLs
Description: The rx.exe application is ???The Smallest VC++ Coded Universal
Windows Reverse Shell??? for all versions of Windows
NT/2K/XP/2003 with any service pack.


Pages:
180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204