The OpenSSL is based on SSLeay library developed by Eric A. Young and Tim J.
Hudson and licensed under an Apache-style license. OpenSSL has lots of
features but I will cover encoding, checksums, encryption, passwords and pass
phrases.
Many Linux distributions have OpenSSL as part of the bundled packages and is
most likely located in /usr/bin. To find it on your system type:
$ which openssl
/usr/bin/openssl
$ openssl version
OpenSSL 1.0.0a 1 Jun 2010
Versions may vary and currently openssl-1.0.0d Feb 8 is the current version.
Most of the examples that are found in this document should work on most
versions.
Base64 encoding and decoding can be performed alone or used in conjunction
with encryption and decryption. Below we are encoding a file with base64:
$ openssl base64 -in text.txt -out text.3634
Now we are decoding it:
$ openssl base64 -d -in text.3634 -out text.tx... (more)
The Microsoft Remote Desktop Protocol (RDP) provides remote display and input
capabilities over network connections for Windows-based applications running
on a server. RDP is designed to support different types of network
topologies and multiple LAN protocols. Remote Desktop Services formerly
know as Terminal Services on Windows 2000 Server allow a server to host
multiple, simultaneous client sessions. Remote Desktop uses Remote Desktop
Services technology to allow a single session to run remotely. Thus a user
can connect to a Remote Desktop Session Host server by using Remot... (more)
The goal of the scanning phase is to learn more information about the target
environment and discover openings by interacting with that target
environment. This article will look at some of the most useful scanning tools
freely available today and how to best use them. During this process we'll
perform a number of scans.
Scan Types
Network sweeping - Basic technique used to determine which of a range of IP
addresses map to live hosts. Network tracing – A facility for tracing the
route of a computer that is connected to the Internet. Port scanning –
software application designed... (more)
In a switched network environment packets are sent to their destination port
by MAC address. This requires that hardware be able to create and maintain a
table associating MAC addresses to ports. In a switched environment packets
are only sent to devices that they are meant for. Even in this switched
environment there are ways to sniff other devices' packets. One such way is
to spoof your MAC address and poison the arp table. Since there is no state
information about ARP traffic kept, as it's a simple protocol, the arp cache
can be overwritten (unless the entry was explicitly mar... (more)
The Metasploit Framework is a penetration testing toolkit, exploit
development platform, and research tool. The framework includes hundreds of
working remote exploits for a variety of platforms. Payloads, encoders, and
nop slide generators can be mixed and matched with exploit modules to solve
almost any exploit-related task. You can download metasploit from here.
A very nice feature in metasploit is the ability to pivot through a
meterpreter session to the network on the other side. This tutorial walks you
through how this is done once you have a meterpreter session on a foreign ... (more)