Ethical Hacking For Beginner.

                     Hacking Over-View

Que:  What is Ethical Hacking?

Ans: Hacking will never happen. be ethical while some expert says performing with all required permission of the owner is called "Ethical Hacking".

If we don't assume that ethical hacking exists then it is called penetration. Hacking simple means is "Illegal intrusion".

 

> Phases of Ethical Hacking 

There are six phases of ethical hacking:

1. Reconnaissance,

2. Scanning,

3. Gaining Access,

4. Maintaining  Access,

5. Clearing Tracks.

~ RECONNAISSANCE:

It is also called "Foot Printing", footprinting means gathering information about your target as possible. we can collect the information in 3 ways;

a). Host

b). Network 

c). People  Involved

foot-printing is two ways;

 1. Active footprinting

2. Passive footprinting

~  ACTIVE FOOTPRINTING:

Directly in tracking with your target and collecting all the information. Active footprinting involves the use of tools and techniques that can aid you in gathering more information about your target. Unlike passive footprinting where the process never 'touches' the target, active footprinting involves tasks that may be logged by the target's systems so being stealth is key

eg: we can use some tools like n-map to scan our target.

~  PASSIFOOTPRINTINGNIG:

To collect information about your target but without direcinteractingract or without directly accessing the target. 

~  SCANNING:

Mainly three types of scanning:

1. Port Scanning,

2. Network Mapping,

3. Voilarability Scanning.

~  PORT SCANNING:

Scanning the target like open port, life system and vit operation system running. Port scanning is a method of determining which ports on a network are open and could be receiving or sending data. It is also a process for sending packets to specific ports on a host and analyzing responses to identify vulnerabilities.

~  VULNERABILITY SCANNING:

It means checking our target for the website. A vulnerability scan detects and classifies system weaknesses in computers, networks and communications equipment and predicts the effectiveness of countermeasures.

~  NETWORK SCANNING:

To find out the network of the topology of the network, we will inbound the information like firewall, server, etc. Network scanning refers to the process of obtaining additional information and performing a more detailed reconnaissance based on the collected information in the footprinting phase.

~  GAINING ACCESS:

Entry into your target system or system website.

Password Cracking: 

There are a few basic methods of password cracking:

1. Bruteforce: Trying all possible combinations until the password is cracked.

2. Dictionary attack: This is a compiled list of meaningful words, compared against the password field till a match is found.

3. Rule-based attack: If some details about the target are known, we can create rules based on the information we know.

4. Rainbow table: Instead of comparing the passwords directly, taking the hash value of the password d, and comparing them with a list of pre-computed hash values until a match is found.

The rainbow table method gives an advantage to the attacker since no account lockout is enabled for wrong hashes against the password. To prevent rainbow table attacks, salting can be used. Salting is a process of adding random numbers to the password so the attacker will not be able to crack the hash without that salt added.

Types of Password Attacks 

1. Passive online attacks:

A passive attack is an attack on a system that does not result in a change to the system in any way.

The attack is to purely monitor or record data.

• Wire Sniffing

• Man in the middle

• Replay attack

2. Active online attack:

An active online attack is the easiest way to gain unauthorized administrator-level access to the system

• Password guessing

• Trojan/spyware/keyloggers

• Hash injection

• Phishing

3. Offline attacks:

Offline attacks occur when the intruder checks the validity of the passwords. Offline attacks are often time to consume. 

• Pre-computed hashes

• Distributed Network

• Rainbow

4. Non-electronic attacks

Non-electronic attacks are also known as non-technical attacks. This kind of attack doesn't require any technical knowledge about the methods of intruding into another system.

• Social engineering

• Shoulder surfing

• Dumpster Diving

~  MAINTAIN ACCESS: 

It is essential because long we are in the target PC (personal computer) system more you can get information, and you can steal information from the target. we can do this using triggers, rootkits and malicious files.

~  CLEARING TRACKS:

No thief wants to cough too more important to clear all the pieces of evidence. we'll clear logs we'll modify some registry value or we can uninstall the application we have installed in order to maintain access for we can hide such applications, we can do this in two ways;

a). Manually,

b). Automatic tools like audit tools etc.

> TYPES OF ETHICAL HACKERS"

There are three types of hackers are:

1. White Hat Hackers,

2. Black Hat Hackers,

3. Gray Hat Hackers.

~ WHITE HAT HACKERS:

These types of hackers will be doing work with the permission of the owner. They just protect the organization for black hat hackers or some illegal activity from the virtual world or we can say that in the computer world.

~ BLACK HAT HACKERS:

These types of hackers are performing the hacking to harm someone or steal confidential information from some organization or company. They just want to steal the information and then to return that information they demand a huge amount from the respected company or organization.

~ GRAY HAT HACKERS:

This type of hacker combines white and black hackers because they are not working with some organization or company. if the company want to steal some information from its rival companies then they hire this type of hacker. This type of hacker works for only money.