3.
Auditoria de Segurana de Redes e Sistemas
Operacionais
3.1. SAINT
3.1.1. Objetivo
3.1.2. Teoria Introdutria:
SAINT SATAN Security Administrator Tool for
Analyzing Networks SAINT
Word Wide Digital
Security Inc
SAINT
SATAN
SATAN
WWW Gopher anonymous FTP
CERT, Computer Emergency Response Team CIAC Computer
Incident Advisory Capability
SATAN SAINT
3.1.2.1. A Interface e Opes do Sistema
SATAN
HTTP
browser PERL
HTTP
SATAN
hosts
hosts
SATAN
host
SATAN
patch
3.1.2.2. Nveis de Pesquisa
SATAN
hosts
showmount
tcpscan WWW Gopher FTP udpscan
finger rusers boot Yellow Pages
tcpscan udpscan NFS rsh
ypbind xhost FTP.
SATAN host
Remote Procedure Call
Domain Name System
hosts
e-mail HINFO
showmount
hosts host
rlogin
anonymous FTP WWW Gopher e-mail
SATAN
SATAN
daemon ruserd
rpcinfo rpcinfo
bootparam boot
diskless
Network Information Service
finger
3.1.2.3. Estrutura de Funcionamento
SATAN kernel
kernel
HTTP
SATAN
hosts
hosts
satan.cf
SATAN
hosts
hosts
hosts
HTML browser
PERL
HTML
SATAN
Network File System Network Information
Service
3.1.2.4. Arquivos de Regras
.satan
Hosttype banners
telnetd ftpd sendmail
Drop
Services hosts
SATAN
Todo
script PERL
script
Trust hosts
SATAN
3.1.2.5. Scripts de Teste
scripts SATAN
scripts PERL
boot.satan
bootparam
diskless boot
dns.satan
nslookup
finger.satan daemon
hosts
hosts
ftp.satan anonymous FTP
.forward
nfs-chk.satan portmapper
rex.satan daemon rexd
rpc.satan portmapper rcpinfo p
rsh.satan host host SATAN
.rhosts
hosts.equiv
rusers.satan
hosts
showmount.satan
tcpscan.satan
tcp_scan
tftp.satan hosts /etc/passwd
udpscan.satan
udp_scan
xhost.satan
yp-chk.satan
ypbind.satan
3.1.2.6. A Descoberta dos Alvos
nslookup
fping, ping
fping hosts
Fping ping
fping hosts
host request
timeout fping ping HOST1
robin-round host
host
host
unreachable
SATAN fping hosts
fping
hosts
broadcast
3.1.2.7. Subsistema de Aquisio de Dados
hosts
host
host
TCP_SCAN UDP_SCAN
host
banner
SATAN
host
host
tftpd rexd
Assigned Numbers
backdoors hacker
Resource For Crackers
3.1.2.8. Relaes de Confiana
SATAN
hosts
host
login root
3.1.3. Implementao Prtica
3.1.3.1. Instalao do Aplicativo
Passo 1:
login saint-3.0.1.beta1.tar.gz
saint /home/seguranca
home/seguranca saint-3.0.1,
prompt shell
Observao 1:
saint-3.0.1
README
Passo 2: saint-3.0.1
Passo 3:
saint-3.0.1
prompt
3.1.3.2. Execuo
Passo 7:
SAINT
Passo 8: data-base
Data Management
Figura 3.1-1 Data Management Saint
Passo 9: host
Target Selection
Observa o 2:
heavy
Start Scan
Figura 3.1-2 Target Selection Saint
Passo 10: SAINT host
Continue with Report and Analysis
Figura 3.1-3 Saint Data Collection Saint
Passo 11:
host
hosts
Figura 3.1-4 Data Analysis Tabela of Contents Saint
Passo 12:
host
data-base
Data Management
Figura 3.1-5 Data Analysis Host Tabelas Saint
Passo 13: host
host
Figura 3.1-6 Data Analysis Results Saint
Passo 14:
host
Figura 3.1-7 Vulnerability Solutions Saint
3.2. Nessus
3.2.1. Objetivo:
3.2.2. Teoria Introdutria:
Nessus
nessusd kernel
plug-ins
rules
scanner
Smart Service Recognition
Internet Assigned Number
Authority
3.2.3. Implementao Prtica
3.2.3.1. Instalao do Aplicativo
Passo 1:
login nessus.tar nessus
/home/seguranca
home/seguranca nessus,
prompt shell
Observao 1:
nessus
README
Passo 2: nessus
Observao 2:
Passo 3: root
/root/nessus/lib
Passo 4: /sbin/ldconfig
3.2.3.2. Execuo
Passo 5:
Passo 6: daemon
Passo 7:
Observao 3:
./nessusd,
./nessus
Passo 8:
Observao 4:
/etc/*nessus.keys /etc/*nessus.ssr
Passo 9:
Figura 3.2-1 Informaes do Servidor
Passo 10:
Figura 3.2-2 Tipos de Plug-ins - Nessus
Passo 11: Prefs
Figura 3.2-3 Customizao de determinados Servios - Nessus
Passo 12: Scan Options
port scanner
Figura 3.2-4 Nessus Setup Scan Options - Nessus
Passo 13: Target Selection
DNS zone transfer
Start the scan
Observao 5: Read File...
Figura 3.2-5 Nessus Setup Target Selection - Nessus
Passo 14: User
passphrase
Observao 6: Credits
Figura 3.2-6 Nessus Setup User - Nessus
3.2.3.3. Resultados
Passo 15:
Observao 6: Nessus Report
Observao 7:
Figura 3.2-7 Nessus Report Summary - Nessus
Figura 3.2-8 Nessus Report Security Holes - Nessus
3.3. Sniffer
3.3.1. Objetivo:
3.3.2. Teoria Introdutria:
switch hub
sniffing
sniffer
ifconfig -a
netstat -r
sniffer
one-time password
one-time password
one-time password
3.3.3. Implementao Prtica
3.3.3.1. Instalao do Aplicativo
Passo 1:
login sniffit_0_3_5.tar
saint /home/seguranca
home/seguranca sniffit_0_3_5,
prompt shell
tar -xvf sniffit_0_3_5.tar
Observao 1:
sniffit_0_3_5
README.FIRST
Passo 2: sniffit_0_3_5
./configure
Observao 2:
configure.in.
makefile
Passo 3:
sniffit_0_3_5
prompt
make
3.3.3.2. Execuo
Passo 3:
./sniffit i
Observao 3:
README.FIRST
3.4. COPS
3.4.1. Objetivo:
3.4.2. Teoria Introdutria:
Bourne shell
shell scripts
/etc/rc* cron(tab)
/home
alias sendmail
3.4.3. Implementao Prtica
3.4.3.1. Instalao do Aplicativo
Passo 1:
login cops_104.tar saint
/home/seguranca
home/seguranca cops_104,
prompt shell
Observao 1:
cops_104
README
Passo 2: cops_104
Observao 2:
README.FIRST, README.1, README.2.SH e
README 3.
makefile
Passo 3:
cops_104
prompt
Observao 3: cops
script
3.4.3.2. Execuo
Passo 3:
Passo 4: suid.cnk
./suid.cnk
You might also like
- Penetration Test Report for G-neric Corp Gains Unauthorized AccessDocument27 pagesPenetration Test Report for G-neric Corp Gains Unauthorized AccessKnowhereDLNo ratings yet
- Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security GuideFrom EverandAdvanced Penetration Testing for Highly-Secured Environments: The Ultimate Security GuideRating: 4.5 out of 5 stars4.5/5 (6)
- Pentesting With MetasploitDocument43 pagesPentesting With MetasploitBakri Shutta MohammedNo ratings yet
- 20 Linux System Monitoring Tools Every SysAdmin Should KnowDocument13 pages20 Linux System Monitoring Tools Every SysAdmin Should KnowNnaemeka OkafoNo ratings yet
- Implementing Cisco IP RoutingDocument1,320 pagesImplementing Cisco IP Routingnsellers89No ratings yet
- Pentest Cheat SheetsDocument28 pagesPentest Cheat SheetsDimy Neves XavierNo ratings yet
- Hackthebox Backdoor: Prepared by Imamrahman15Document17 pagesHackthebox Backdoor: Prepared by Imamrahman15Mochamad FarizNo ratings yet
- CCIE Enterprise Infrastructure v1 Learning MatrixDocument38 pagesCCIE Enterprise Infrastructure v1 Learning Matrixhogad100% (1)
- Overview of Some Windows and Linux Intrusion Detection ToolsFrom EverandOverview of Some Windows and Linux Intrusion Detection ToolsNo ratings yet
- OSCP Notes NagendranGSDocument58 pagesOSCP Notes NagendranGSzargham.razaNo ratings yet
- L2DC Linux Server GuideDocument11 pagesL2DC Linux Server GuidenekysnemiaNo ratings yet
- NMAP Commands Cheat Sheet and Tutorial With Examples (Download PDFDocument10 pagesNMAP Commands Cheat Sheet and Tutorial With Examples (Download PDFjaveeed0401No ratings yet
- DoLAB - Ice TryHackMe WalkthroughDocument7 pagesDoLAB - Ice TryHackMe WalkthroughSECURITY 365No ratings yet
- Digitalworld - Local Mercy Walkthrough SOG - ReDocument1 pageDigitalworld - Local Mercy Walkthrough SOG - RegytuNo ratings yet
- Monitor Network Devices and Services with SNMP and NagiosDocument70 pagesMonitor Network Devices and Services with SNMP and NagiosLuis Mejia Garcia100% (1)
- Comparison of The SD-WAN Vendor Solutions - NETMANIASDocument5 pagesComparison of The SD-WAN Vendor Solutions - NETMANIASaurumstar2000No ratings yet
- Penetration Testing With Kali Linux - 5 DaysDocument9 pagesPenetration Testing With Kali Linux - 5 DaysAshish KolambkarNo ratings yet
- PowerShell Transcript - Joe PC.Q7C6UoSE.20170406230647Document58 pagesPowerShell Transcript - Joe PC.Q7C6UoSE.20170406230647ss ssNo ratings yet
- Penetration Testing (Oleh Desmond) : Nmap Scanning SwitchesDocument5 pagesPenetration Testing (Oleh Desmond) : Nmap Scanning SwitchesSrinelvia EdwitriNo ratings yet
- Dataserver: User GuideDocument12 pagesDataserver: User GuideMehdi RahmatiNo ratings yet
- Quick HOWTO: Ch1: Network Backups With Rancid: Forums - Corrections - About - (C) Peter HarrisonDocument19 pagesQuick HOWTO: Ch1: Network Backups With Rancid: Forums - Corrections - About - (C) Peter Harrisonnaveenvarmain100% (1)
- ns3 Week1Document50 pagesns3 Week1Cheonu Park100% (1)
- Snort ProjectDocument12 pagesSnort ProjectChandana MallagundlaNo ratings yet
- Snort ProjectDocument12 pagesSnort ProjectOumaima KaoukabiNo ratings yet
- Troubleshooting A Netscreen Site 2 Site VPN - NetscreenDocument3 pagesTroubleshooting A Netscreen Site 2 Site VPN - NetscreenLuis RodriguezNo ratings yet
- SNMP Monitoring and ManagementDocument8 pagesSNMP Monitoring and ManagementMarialis Vasquez JimenezNo ratings yet
- Scan Nexpose Gestor de BD Postgresql y Ubuntu ServerDocument32 pagesScan Nexpose Gestor de BD Postgresql y Ubuntu ServerMirla MuñozNo ratings yet
- An Express Guide SNMP For Secure Rremote Resource MonitoringDocument5 pagesAn Express Guide SNMP For Secure Rremote Resource MonitoringAbhishekKrNo ratings yet
- Juniper Netscreen - VPN TroubleshootingDocument8 pagesJuniper Netscreen - VPN TroubleshootingrubinbrittoNo ratings yet
- Auditarea Securitatii Retelelor: Descoperirea VulnerabilitatilorDocument11 pagesAuditarea Securitatii Retelelor: Descoperirea Vulnerabilitatilorscama313No ratings yet
- E.104 131 56 232 50 247 103 121 38 142 77 171 38 142 77 172 38 106 42 13 Fzah3vDocument227 pagesE.104 131 56 232 50 247 103 121 38 142 77 171 38 142 77 172 38 106 42 13 Fzah3vNirdesh RayaNo ratings yet
- Cacti On Windows Using Wamp A1Document41 pagesCacti On Windows Using Wamp A1bagassafaNo ratings yet
- Analyzing RAC PerformanceDocument33 pagesAnalyzing RAC PerformanceprasadramalaNo ratings yet
- 20 Linux System Monitoring Tools Every SysAdmin Should KnowDocument14 pages20 Linux System Monitoring Tools Every SysAdmin Should Knownareshram469No ratings yet
- Networks Basic CommandsDocument6 pagesNetworks Basic CommandsSrija KondruNo ratings yet
- 20 Linux System Monitoring Tools Every SysAdmin Should KnowDocument35 pages20 Linux System Monitoring Tools Every SysAdmin Should KnowJin ZoongNo ratings yet
- Create SAP RouterDocument8 pagesCreate SAP Routerbarun581No ratings yet
- Practicals 3Document5 pagesPracticals 3Tarik AmezianeNo ratings yet
- Modern HackDocument257 pagesModern HackDarkDant HerGaNo ratings yet
- (Report) PACN Lab Assignment - 3Document10 pages(Report) PACN Lab Assignment - 3Sandeep Nathuram KundalwalNo ratings yet
- Bangalore Institute of Technology K. R. Road, V. V. Pura, Bangalore - 560004Document16 pagesBangalore Institute of Technology K. R. Road, V. V. Pura, Bangalore - 560004jayanthNo ratings yet
- Examining Snort IDS System Configuration and OperationDocument11 pagesExamining Snort IDS System Configuration and OperationghazellaNo ratings yet
- CH 03Document57 pagesCH 03andrewiles88No ratings yet
- Practical: 5Document19 pagesPractical: 520DCS138 MEET VAGAHNINo ratings yet
- Lab 3. AuthenticationDocument3 pagesLab 3. AuthenticationAnh Phú NguyễnNo ratings yet
- Opening Firewall Ports: Amazon - EC2Document4 pagesOpening Firewall Ports: Amazon - EC2Nikhitha ThotaNo ratings yet
- Neurosurgery With MeterpreterDocument21 pagesNeurosurgery With MeterpreterfhfhjfjNo ratings yet
- Snort RuleDocument22 pagesSnort RuleQuang NguyenNo ratings yet
- Scanning Phase 2 Eh 4Document25 pagesScanning Phase 2 Eh 4api-224615605No ratings yet
- NetHSM Quick Start GuideDocument4 pagesNetHSM Quick Start GuidegoldminerNo ratings yet
- MRTG Used For Basic Server Monitoring: SANS Institute Masters Presentation by T. Brian GranierDocument15 pagesMRTG Used For Basic Server Monitoring: SANS Institute Masters Presentation by T. Brian GranierknowmyroleNo ratings yet
- Active DirectoryDocument10 pagesActive DirectoryKindraNo ratings yet
- Linux Installation Guide: System Installation & CustomizationDocument37 pagesLinux Installation Guide: System Installation & CustomizationPratyushNo ratings yet
- 20 Linux System Tool MonitorDocument19 pages20 Linux System Tool MonitorBắp NgọtNo ratings yet
- OpenStack Pike Volet 3Document12 pagesOpenStack Pike Volet 3IRIENo ratings yet
- Instructor Packet Tracer Manual v1.1Document54 pagesInstructor Packet Tracer Manual v1.1Luis SanchezNo ratings yet
- How To Install and Configure Flow Tools and Flowviewer On A Fresh DebianDocument11 pagesHow To Install and Configure Flow Tools and Flowviewer On A Fresh DebianNabil SedoudNo ratings yet
- Wai Phyo Aung - DNSDocument112 pagesWai Phyo Aung - DNSMyo Zin Aung0% (1)
- Linux Starce & TopDocument8 pagesLinux Starce & Topsafe agileNo ratings yet
- Cisco IOS Security TemplateDocument10 pagesCisco IOS Security TemplateshankerunrNo ratings yet
- Maintenance KPDNDocument7 pagesMaintenance KPDNHazim ZuhuriNo ratings yet
- Evaluation of Some Windows and Linux Intrusion Detection ToolsFrom EverandEvaluation of Some Windows and Linux Intrusion Detection ToolsNo ratings yet
- Evaluation of Some Intrusion Detection and Vulnerability Assessment ToolsFrom EverandEvaluation of Some Intrusion Detection and Vulnerability Assessment ToolsNo ratings yet
- Lab 04Document33 pagesLab 04senthil kumarNo ratings yet
- Secure Network ArchitectureDocument30 pagesSecure Network Architectureblackberry7130gNo ratings yet
- EX300.exam: Number: EX300 Passing Score: 800 Time Limit: 120 Min File Version: 1Document50 pagesEX300.exam: Number: EX300 Passing Score: 800 Time Limit: 120 Min File Version: 1srinuNo ratings yet
- Computer Network HierarchyDocument8 pagesComputer Network HierarchyrazarodolfoNo ratings yet
- The Verification ExpertsDocument12 pagesThe Verification ExpertsMarvin HernandezNo ratings yet
- Amsdu Vs AmpduDocument3 pagesAmsdu Vs AmpduAntonNo ratings yet
- Attacking WCF Web Services-Holyfield-Shmoocon 2010Document45 pagesAttacking WCF Web Services-Holyfield-Shmoocon 2010king_kong11No ratings yet
- FactSheet - Ports For CucmDocument3 pagesFactSheet - Ports For Cucmtimbrown88No ratings yet
- Dokumen - Tips - Sip Trunking ManualDocument20 pagesDokumen - Tips - Sip Trunking ManualFajar HariantoNo ratings yet
- Dynamic Routing Protocols I RIP: Relates To Lab 4Document36 pagesDynamic Routing Protocols I RIP: Relates To Lab 4DarwinNo ratings yet
- 802.1X Configuration GuideDocument28 pages802.1X Configuration Guidepero27No ratings yet
- SCC Project Success PlanDocument88 pagesSCC Project Success PlanArup SarkarNo ratings yet
- Aci 3545Document110 pagesAci 3545Phuwanart PhiNo ratings yet
- Advantage of Osi LayerDocument4 pagesAdvantage of Osi Layerchimena1No ratings yet
- Freescale MQX™ RTCS™ User's Guide: Document Number: MQXRTCSUG Rev. 8 06/2012Document420 pagesFreescale MQX™ RTCS™ User's Guide: Document Number: MQXRTCSUG Rev. 8 06/2012fredpradoNo ratings yet
- Ejemplo de configuración de 1564 generador y reflectorDocument13 pagesEjemplo de configuración de 1564 generador y reflectorHola ManNo ratings yet
- Implemetation of Snort Ips Using Pfsense As Network Forensic in SMK XyzDocument7 pagesImplemetation of Snort Ips Using Pfsense As Network Forensic in SMK XyzSentot AprntNo ratings yet
- Aws Csa VPC R 1.0Document20 pagesAws Csa VPC R 1.0RobinNo ratings yet
- Ccnpv6 Route Lab2-1 Eigrp Config StudentDocument13 pagesCcnpv6 Route Lab2-1 Eigrp Config Studentadncl2No ratings yet
- 040-57101-02 FLEX4G-LITE ANSI Datasheet - WebDocument2 pages040-57101-02 FLEX4G-LITE ANSI Datasheet - WebEze Alexander IkNo ratings yet
- How To Add A Static Route To The Windows Routing Table - FixedDocument4 pagesHow To Add A Static Route To The Windows Routing Table - FixedOwaisNo ratings yet
- WAN StandardsDocument23 pagesWAN Standardsmanderin87No ratings yet
- ENC28J60 Ethernet ModuleDocument7 pagesENC28J60 Ethernet ModuleNeha MahoreNo ratings yet
- NCC Output 2023 06 11 1686461970Document14 pagesNCC Output 2023 06 11 1686461970uglyface007No ratings yet
- Basic Config Router-CDP-LLDPDocument47 pagesBasic Config Router-CDP-LLDPdu vanNo ratings yet
- Used Cars from USA show framing SDH Multiplexing hierarchyDocument4 pagesUsed Cars from USA show framing SDH Multiplexing hierarchyAshvini JainNo ratings yet
