Downloaded 288 times
Uploaded bySayantan Sur
Ethical Hacking
Ethical hacking involves using the same tools and techniques as criminal hackers but with authorization to find vulnerabilities. It involves preparation, footprinting, enumeration and fingerprinting, vulnerability identification, and controlled attacks. Ethical hackers are trusted security professionals who apply hacking skills defensively under contract. They have strong technical skills and keep knowledge updated to detect and prevent real attacks. Certification is available to validate ethical hackers' qualifications. The process helps organizations strengthen security by finding weaknesses before criminals can exploit them.
In this document
Powered by AI
Introduction to ethical hacking, defining hacking, and distinguishing between hackers.
Discussion of black hat, white hat, and gray hat hackers. Their roles and legality.
Explanation of black box, white box, and gray box testing models for penetration testing.
Definition of ethical hacking as penetration testing with permission, using the same strategies as malicious hackers.
Description of ethical hackers, their traits, skills, and importance in cybersecurity.
Key skills needed for ethical hackers including knowledge of routers, Microsoft, Linux, and firewalls.
Overview of the ethical hacking process, including preparation, footprinting, and vulnerability identification.
Details on the preparation phase of ethical hacking including target identification and legal agreements.
Importance of footprinting in ethical hacking for collecting information about the target.
Focus on OS enumeration and identifying services/open ports as part of the ethical hacking process.
Vulnerability identification addressing insecure configurations, weak passwords, and access control.
Mention of the certification for Certified Ethical Hackers (CEH) provided by the EC-Council.
Benefits of ethical hacking including offering legitimate security measures for businesses.
Reflective conclusions on ethical hacking's role in security and the need for awareness of cyber threats.
Acknowledgement of the presenter and a thank you note, ending the presentation.
More Related Content
![Catálogo - Per-Form - Cómo hacer cosas con [sin] palabras](https://cdn.slidesharecdn.com/ss_thumbnails/13771312-d74c-444c-9013-80197f0d550f-160929031012-thumbnail.jpg?width=600ounds&width=560&fit=bounds)
Similar to Ethical Hacking
![VIVEK_JADHAV[1].pptx this ppt is based on ethical hacking](https://cdn.slidesharecdn.com/ss_thumbnails/vivekjadhav1-241129030736-5c237771-thumbnail.jpg?width=600ounds&width=560&fit=bounds)
Ethical Hacking
- 1. ETHICAL HACKING A LICENCE TO HACK
- 2. HACKING: Hacking isunauthorized use of computer and network resources. According to Computer Crime Research Center: “It is act of gaining access without legal authorization to computer or computer network.”
- 3. HACKER: Someone whotries to break into computer systems for any illegal purpose. Someone who maliciously breaks into systems for personal gain. These are criminals.
- 4. TYPES OF HACKERS Black hat hacker. White hat hacker. Gray hat hacker.
- 5. BLACK BOX MODEL Black box model Company staff does not know about the test. Tester is not given details about the network. ▪ Burden is on the tester to find these details It is tested, if security personnel are able to detect an attack.
- 6. WHITE BOX MODEL White box model Tester is told everything about the network topology and technology. Network diagram is given. Tester is authorized to interview IT personnel and company employees. Makes the tester’s job a little easier.
- 7. GRAY BOX MODEL Gray box model Hybrid of the white and black box models. Company gives tester partial information.
- 8. WHAT IS ETHICALHACKING ? Ethical hacking ,also known as penetration testing or white-hat hacking involves the same tools, tricks, and techniques that hackers use, i.e, by duplicating the intent and actions of malicious hackers. Ethical hacking is performed with the target’s permission.
- 9. WHO ARE ETHICALHACKERS? An Ethical Hacker, also known as a whitehat hacker, or simply a whitehat, is a security professional who applies their hacking skills for defensive purposes on behalf of the owners of information systems. They are completely trustworthy. They have strong programming and computer networking skills. They should have more patience. Continuous updating of their knowledge on computer and network security is required. They should know the techniques of the criminals, what their activities would be, how to detected them and how to stop them.
- 10. REQUIRED SKILLS OFAN ETHICAL HACKER Routers: knowledge of routers, routing protocols, and access control lists. Microsoft: skills in operation, configuration and management. Linux: knowledge of Linux/Unix; security setting, configuration, and services. Firewalls: configurations, and operation of intrusion detection systems.
- 11. ETHICAL HACKING PROCESS 1. Preparation 2. Foot printing 3. Enumeration and fingerprinting 4. Identification of vulnerabilities 5. Attack-exploit the vulnerabilities.
- 12. PREPARATION: Identification oftarget –company website, mail server, extranet. Signing of contract Agreement on protection against any legal issue. Contracts to clearly specify limits and dangers of the test. Total time for testing. Key people made aware of testing.
- 13. FOOTPRINTING Collecting required information about target: DNS server. IP ranges. Administrative contacts. Problem reveled by administrator.
- 14. ENUMERATION AND FINGERPRINTING Operating system enumeration. Identification of services/open port.
- 15. IDENTIFICATION OF VULNERABILITIES: Vulnerabilities Insecure configuration. Weak passwords. Insecure programming. Weak access control.
- 16. CERTIFICATION The International Councilof E-Commerce Consultants (EC-Council) provides a professional certification for Certified Ethical Hackers (CEH). A certified ethical hacker is an ethical hacker who has obtained the certification provided by the EC-Council.
- 17. ADVANTAGES These aregood hackers Have genuine license to hack Generally owned by companies for security designing Provides security to banking and financial establishments
- 18. CONCLUSIONS Always securityprofessionals are one step behind the hackers and crackers. Plan for the unplanned attacks. The role of ethical hacking in security is to provide customers with awareness of how they could be attacked and why they are targeted.
- 19. PRESENTED BY SAYANTAN SUR BCA(H) – 2 THANK YOU