lab 3 - basic secure
DESCRIPTION
Basic Security TrainingTRANSCRIPT
![Page 1: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/1.jpg)
www.cis.com.vn
LAB 3
![Page 2: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/2.jpg)
NỘI DUNG
Cain & Abel
Wireshark
Giải pháp
![Page 3: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/3.jpg)
NỘI DUNG
Cain & Abel
![Page 4: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/4.jpg)
Man hinh băt đâu cai đăt
![Page 5: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/5.jpg)
Sau khi Next > Next > Next .. Finish
![Page 6: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/6.jpg)
Next > I Agree > Install > Finish
![Page 7: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/7.jpg)
• Sau khi cai đăt các bạn sẽ thấy giao diện tổng
quan:
![Page 8: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/8.jpg)
Chon Card mạng
![Page 9: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/9.jpg)
Tiếp theo chon tab Sniffer va scan MAC address:
![Page 10: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/10.jpg)
Chon dai IP, Host trong mang LAN
![Page 11: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/11.jpg)
Tiếp theo ta chon sang tab APR rôi chon Add đia chi,
thương ta sẽ chon chinh đia chi gateway (192.168.1.1)
đê ánh xạ các host IP trong LAN
![Page 12: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/12.jpg)
Bươc nay chinh la bươc tấn công, ta click vao biêu
tương nho cua APR đê băt đâu Poisoning
![Page 13: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/13.jpg)
Chung ta sẽ chuyên qua tab Password đê thấy đươc kết
quả tấn công sẽ hiện ra ơ đây.
![Page 14: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/14.jpg)
Lab: Trên máy tấn công ta băt đâu sử dụng Cain & Abel khai thác
![Page 15: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/15.jpg)
Trên máy nạn nhân, ta tiến hành đăng nhập trên website
www.tinhte.vn
![Page 16: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/16.jpg)
Giao diện sau khi đăng nhập thành công
![Page 17: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/17.jpg)
Và ngay lập tức, trong máy tấn công Cain & Abel đã băt
đươc user và password
![Page 18: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/18.jpg)
NỘI DUNG
Wireshark
![Page 20: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/20.jpg)
Sau khi Next > I Agree > Next > Next > Install .. > Finish
![Page 21: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/21.jpg)
Giao diện sau khi cai đăt
![Page 22: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/22.jpg)
Chon Interface Card va băt đâu quet
![Page 23: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/23.jpg)
Kêt qua quet
• Mau xanh lá cây -
traffic TCP
• Xanh da trơi đậm -
traffic DNS
• Xanh da trơi nhạt -
traffic UDP
• Màu đen - gói TCP
đang có vấn đề
![Page 24: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/24.jpg)
Lab: Trên máy tấn công ta băt đâu sử dụng Wireshark khai thác
![Page 25: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/25.jpg)
Trên máy nạn nhân, ta tiến hành đăng nhập trên website
www.vn-zoom.com
![Page 26: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/26.jpg)
Giao diện sau khi đăng nhập thành công
![Page 27: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/27.jpg)
Trong máy tấn công ta loc trong wireshark giao thức “http”,
chú ý đia chi IP cua nạn nhân và thông tin POST và GET
![Page 28: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/28.jpg)
Từ gói tin ta băt đươc chon Follow TCP Stream
![Page 29: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/29.jpg)
Ta tìm đươc mật khẩu đươc mã hóa MD5
![Page 30: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/30.jpg)
Sử dụng các công cụ online đê giải mã: www.md5online.org
md5decryption.com
www.md5decrypter.co.uk
![Page 31: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/31.jpg)
NỘI DUNG
Giải pháp
![Page 32: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/32.jpg)
Phong chông tân công
• Bảo mật LAN
• Mã hóa ARP Cache
• Kiêm tra lưu lương ARP vơi chương trình cua
hãng thứ ba
• Giảm tấn công gia mạo: DHCP Snooping, DAI
và IP Source Guard
• Sử dụng giao thức HTTPS, mật khẩu mạnh
![Page 33: Lab 3 - Basic Secure](https://reader034.vdocuments.mx/reader034/viewer/2022052315/54c355204a795986658b4613/html5/thumbnails/33.jpg)