Electronic Books

The answer is that because you have Administrative access on one
computer does not necessarily indicate you have Administrative access throughout the
entire network. However, gaining command shell Administrative access to one computer
on the network will allow the attacker to execute other tools from the compromised
system, map the network, install tools, Trojans, viruses, and so forth. Do not always
assume that Administrative access on one computer is the key to the city.
638
Practical Hacking Techniques and Countermeasures
Lab 90: TCP Relay ??“??“ Bypass Firewalls
Traffic Redirection: NETWOX/NETWAG
Prerequisites: None
Countermeasures: Log monitoring, strong ACL
Description: The NETWOX (NETWork toolbOX) application can be a
very dangerous tool in the wrong hands. The latest version has 197
different techniques to enumerate information from the LAN or launch
attacks against a remote target. This tool is listed in several sections of
this manual. In this lab the tool is used to demonstrate its ability to
relay TCP traffic. (Tool 185 permits multiple/simultaneous connections.)
Disgruntled employees can use this technique to bypass content
filtering and an attacker uses compromised systems to launch attacks
from.
Procedure: Install NETWOX/NETWAG, run the NETWOX application, and
review the results. (The NETWAG application is the Graphical User
Interface [GUI] for the NETWOX application. In Lab 53 the GUI was
demonstrated.


Pages:
193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217