Ethical Hacking: Hacking GMail. Teaching Hacking

  • View
    238

  • Download
    2

Embed Size (px)

Transcript

  • Ethical Hacking:Hacking GMail

    Hands-On Ethical Hacking and Network Defense

  • Teaching Hacking

    Hands-On Ethical Hacking and Network Defense

  • What do Hackers Do?Get into computer systems without valid accounts and passwordsOpen encrypted files without the keyTake over Web serversCollect passwords from Internet trafficTake over computers with remote access trojansAnd much, much more

    Hands-On Ethical Hacking and Network Defense

  • Ethical HackersEthical Hackers do the same thing criminal hackers do, with one differenceEthical Hackers have permission from the owner of the machines to hack inThese "Penetration Tests" reveal security problems so they can be fixed

    Hands-On Ethical Hacking and Network Defense

  • Two Hacking ClassesCNIT 123: Ethical Hacking and Network DefenseHas been taught since Spring 2007 (four times)Face-to-face and Online sections available Fall 2008CNIT 124: Advanced Ethical HackingTaught for the first time in Spring 2008

    Hands-On Ethical Hacking and Network Defense

  • Certificate in Network Security

    Hands-On Ethical Hacking and Network Defense

  • Associate of Science Degree

    Hands-On Ethical Hacking and Network Defense

  • Student AgreementRequired for every student in CNIT 123: Ethical Hacking and Network Defense or CNIT 124: Advanced Ethical Hacking

    Hands-On Ethical Hacking and Network Defense

  • Sniffing Plaintext Passwords

    Hands-On Ethical Hacking and Network Defense

  • Insecure Login PagesHTTP does not encrypt dataAlways look for HTTPS on login pages

    Hands-On Ethical Hacking and Network Defense

  • Tool: CainClick NIC icon to start snifferClick Sniffer tab, Password tab on bottom

    From http://www.oxid.it/cain.html

    Hands-On Ethical Hacking and Network Defense

  • Authentication Cookies

    Hands-On Ethical Hacking and Network Defense

  • GMail Uses HTTPSSniffing for passwords won't workMost Web mail services now use HTTPS too

    Hands-On Ethical Hacking and Network Defense

  • CookiesThousands of people are using Gmail all the timeHow can the server know who you are?It puts a cookie on your machine that identifies you

    Hands-On Ethical Hacking and Network Defense

  • Gmail's CookiesGmail identifies you with these cookiesIn Firefox, Tools, Options, Privacy, Show Cookies

    Hands-On Ethical Hacking and Network Defense

  • Cross-Site Request Forgery (XSRF)

    Hands-On Ethical Hacking and Network Defense

  • Web-based EmailRouterTarget Using EmailAttacker Sniffing TrafficTo Internet

    Hands-On Ethical Hacking and Network Defense

  • Cross-Site Request Forgery (XSRF)Gmail sends the password through a secure HTTPS connectionThat cannot be captured by the attackerBut the cookie identifying the user is sent in the clearwith HTTPThat can easily be captured by the attackerThe attacker gets into your account without learning your password

    Hands-On Ethical Hacking and Network Defense

  • Demonstration

    Hands-On Ethical Hacking and Network Defense

  • XSRF CountermeasureUse https://mail.google.com instead of http://gmail.comNo other mail service has this option at all, as far as I know

    Hands-On Ethical Hacking and Network Defense

  • ReferencesCainhttp://www.oxid.it/cain.htmlHamsterhttp://erratasec.blogspot.com/2007/08/sidejacking-with-hamster_05.html

    Hands-On Ethical Hacking and Network Defense

  • ContactSam BowneComputer Networking and Information TechnologyCity College San FranciscoEmail: sbowne@ccsf.eduWeb: samsclass.infoLast modified 6-26-08

    Hands-On Ethical Hacking and Network Defense