SHODAN

      Shodan is a search engine that allows us to find the full specifications of a particular computer such as routers, servers, IP and others using a variety of filters that we want to get a scan of the existing port. Shodan can be used to find a host of vulnerabilities.


      Shodan works by taking data from a host banner, then the meta-data captured by the crawler Shodan is given by the client. With this, the obtained information about the server software, support services, etc. to use it then go and register to http://www.shodanhq.com/

IG By Proxy TOR

For an attack, which began in the attack step is IG (informasition gathering). For the IG to do when we do find information in a system or website that is not in the know and the more secure it is better to use the TOR network to IG. In order for the search process more secure and not in the know. example:

http://www.4shared.com/file/TRkWqfAd/Detiktargz.html

Buffer Overflow

     Buffer overflow is a computer process which shows a peculiar behavior due to the stored data exceeds the capacity of buffer memory. used by the buffer overflow is not responsible for the weakness of the buffer overflow exploit this. The weakness of this type can be used in remote access or local access, because it can give the attacker the opportunity to melanjarkan moves by coding the target computer.

Cymothoa

       cymothoa is a tool to create backdoors on a target. cymothoa advantage of this tool is unknown processes running on the system, while browsing in a target system. cymothoa process:

1. nc or netcat connect from Backtrack (attacker) to connect to ubuntu (target)

SQL injection and blin SQL injection

SQL INJECTION

      Sql Injection is a technique to explore the web application using data from the client supplies the SQL syntax. SQL Injection is a type of hack or attack that only requires port 80 and does not require any other port. SQL Injection is a programmer error when coding web.

      SQL injection to attack web-based application-server-side scripting such as ASP, JSP, PHP, CGI, and similar to it. With SQL Injection is very possible for us to send the user name and password and are considered true by the web because of errors on the web.

Backdoor to the NC (Net Cat)

The process of sending NC (Cat Net) file from localhost (backtrack) to the target (ubuntu) to send a backdoor on the target.

IP BT(backtrack)

IP UBUNTU

Privilege Escalation Website

Privilege Escalation is a process of action for assault or exploit any damage or cracks, or flaws in a system or an operating system. in order to get access to central systems that are usually protected. Or type of network intrusion that takes advantage of programming errors or design flaws to give the attacker access to the network and related data and applications.

A. There are two types of privilege escalation: vertical and horizontal.
vertical privilege requires the attacker to give himself a higher right. This is usually accomplished by performing a kernel-level operations that allow an attacker to run unauthorized code.

Horizontal privilege requires the attacker to use the same privilege level he had been given, but assumes the identity of another user with the same permissions. For example, someone gained access to online banking accounts of others would be a horizontal privilege escalation

Example Privilege Escalation process to do:1. IG with nmap * suspicious look like port 10000 (webmin is sought)