recreating the nsa s mitm attack
play

Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? - PowerPoint PPT Presentation

Nov 08, 2023 •194 likes •1.02k views

create your own exercise Christoph Schmidt, Team 1 Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how the NSA uses its access to the Backbone Goal 2: Understanding how MITM attacks can be done

  1. create your own exercise Christoph Schmidt, Team 1 Recreating the NSA's MITM Attack 1

  2. Why Should This Topic be Chosen? • Goal 1: Understanding how the NSA uses its access to the Backbone • Goal 2: Understanding how MITM attacks can be done in practice (and in large scale) 2

  3. Learning Goals The Following Learning Goals are Covered in the Lecture PreLab Lab Understand how the NSA's MITM attack works X X X Understanding why the NSA uses this attack X X Understanding the relations between NSA and telcoms X X 3

  4. create your own exercise Janosch Maier & Christoph Schmidt, T eam 1 Evil Twins Wii SSID Spooing & More 1

  5. Why Should This T opic be Chosen? Attacking Wiis can be so easy: • Spoof SSIDs • Create Evil T wins • Deliver Google yourself 2

  6. What Will Your Students Learn? The Following Learning Goals are Covered Lectu PreLa Lab in the re b Get to know SSID spooing X X Understand how evil twins work X X Spoof requested SSIDs X X Create an evil twin X X Reroute web traic X X Develop counter measures X 3

  7. Evil T win at work Wii AP Evil T win Unsuspicious User 4

  8. create your own exercise Kshitija Nagaraj (Team2) MULTIPATH TCP 1

  9. Why Should This Topic be Chosen? • Multipath TCP enables to use more than one available path for a TCP/IP session. • Get to understand how using multiple paths, throughput increases and failure can be handled. • We have been using TCP in lab,MPTCP is extension of it. 2

  10. What Will Your Students Learn? The Following Learning Goals are Covered in the Lecture PreLab Lab An overview of Multipath TCP X X Create � subflows � for all available paths X X X Understand the transfer of data in Multipath TCP X X X Scenario if a subflow fails X X X Understanding the security concerns X X 3

  11. Teaser Practical Part 4

  12. create your own exercise T anmay Chaudhry – T eam 2 Traditional vs Software Deined Networking 1

  13. Why Should This T opic be Chosen? • Primarily about learning how Software Deined Networking works • Students will : – T wo parallel topologies : One Traditional, One using an SDN enabled device. – Develop a simple SDN application. – Observe advantages on both sides (Possibly measure performance trade of). • My background : Worked primarily with the Ryu SDN Controller Framework in my IDP . 2

  14. What Will Your Students Learn? The Following Learning Goals are Covered Lectu PreLa Lab in the lab re b Understand the Basic Diference X X X SDN introduction X X Creating a simple SDN application X X X Examine advantages and disadvantages X X Some performance measurement to compare X 3

  15. T easer Practical Part SDN T opology T raditional T opology SDN Controller VS 4

  16. create your own exercise David Gaßmann, Marco Eggersmann || Team 3 RADIUS - One Service to rule them all 1

  17. Why Should This Topic be Chosen? • Use same credentials for WLAN and VPN • Use RADIUS for central authentication management • Setup OpenVPN, FreeRADIUS and hostapd • Combine them 2

  18. What Will Your Students Learn? The Following Learning Goals are Covered in the Lecture PreLab Lab Understand what RADIUS is used for X X Understand WPA2-Enterprise X X X Configure RADIUS on a PC X X Configure hostapd and OpenVPN to use RADIUS X X Examine security aspects X X X Configure a complex scenario X X 3

  19. Bind them! RADIUS-Server VPN-Client Access-Point WLAN-Client VPN-Server 4

  20. create your own exercise Marco Eggersmann & David Gaßmann (T eam 3) VLAN – Let your switch have fun with multiple partners! 1

  21. Choose this topic!!! • Connect separated LANs to a single switch • Learn about diferent ways to achieve this • Learn about things you normally wouldn't care about because they don't sound as awesome as 'Evil Blackhat Network Hacking like NSA' 2

  22. Learn a lot!!!! The Following Learning Goals are Covered Lectu PreLa Lab in the re b Understand what VLANs are used for X X Conigure multiple VLANs on a single switch X X Understand diferent types of VLAN X X X Examine security aspects X X X Increase experience with switches X X X 3

  23. Do something!!! VLAN 1 VLAN 2 VLAN 3 4

  24. create your own exercise Johannes Straßer, Team 4 IPv6 Multicast or How to save bandwidth 1

  25. Why Should Stundents Learn About IPv6 Multicast? • Ipv6 is the future • Ipv6 features are commonly not well known • IPv6 Multicast saves bandwidth – Is used by IPTV providers – Can also be used for private streaming, file transfer, bittorrent-like networks, ... 2

  26. What Will Students Learn In This Lab? The Following Learning Goals are Covered in the Lecture PreLab Lab Understand how IPv6 Multicast works X X Learn about PIM X X Configure PIM on the cisco routers X X Use sockets for subscribing / providing multicast streams X Test IPv6 Multicast in a probable secnario X Examine security aspects X X 3

  27. Teaser Practical Part Streaming Viewer Group 2 Source Viewer Group 1 4

  28. create your own exercise Dominique d’Argent, Team 4 Build your own Content Delivery Network (CDN)! 1

  29. Why should you learn about CDNs? • CDNs power high-profile web sites (Facebook, etc.) • Variety of CDN providers (Akamai, CloudFlare, etc.) • CDNs boost performance and save money • distribute load • save bandwidth • reduce existing hosting costs 2

  30. What will you learn? The Following Learning Goals are Covered in the Lecture PreLab Lab Understand what CDNs are used for X X Get to know different CDN providers X X Understand how CDNs work X X X Learn about caching and request routing mechanisms X (X) Configure a complex scenario X X 3

  31. Lab Setup Webserver PoP 1 PoP 2 Client 1 Client 2 4

  32. create your own exercise Alexander Güssow and François Blondel - Team 5 AIRHOPPER : BRIDGING THE AIR-GAP 1

  33. Why Should This Topic be Chosen? • Leaking data out of isolated (or not) systems • Use radio frequencies and simple hardware – EM radio : FM/AM, etc. – Passive listening – Sound waves or Light waves • Using common software and get aware of risks • Our backgrounds : SDR 2

  34. What will YOU learn? The Following Learning Goals are Covered in the Lecture PreLab Lab Some physics: different physical channels and their ranges X X Learn the actual state of the art: what is already possible X X X Leaking data in a nonconventional way: audio transmission X X Protection : How to detect and prevent this ? X X 3

  35. Teaser Practical Part 4

  36. create your own exercise Alexander Güssow and François Blondel - Team 5 CONFIGURATION MANAGEMENT SYSTEMS : MANAGE YOUR MACHINE HERD 1

  37. Why Should This Topic be Chosen? • Configuration management Tools - Goal : easily manage lots of machines - Puppet, SaltStack, Ansible • Using configuration management tools and understang why and when they are usable • Use of Active Directory group policies 2

  38. What Will Your Students Learn? The Following Learning Goals are Covered in the Lecture PreLab Lab Understand why it is needed and when X X Set up a CMS (puppet, SaltStack) server and clients X X Concrete use-case: scalable architecture and load-balancer X X X Security aspects: What if a server get compromised ? X X X Configure a complex scenario X X 3

  39. Teaser Practical Part Clients and load-balanced web servers CMS repository Web Client load-balancer 4

  40. create your own exercise Christoph Hielscher ‐ Team 7 REDUNDANT SERVERS 1

  41. Why Should This Topic be Chosen? • What is the topic about? – 2 servers, 1 client – Client sends/receives messages from servers – Client does not know the IP‐addresses of the servers – Router should duplicate incoming packets and forward them to the servers 2

  42. Why Should This Topic be Chosen? • What content will your students learn? – Concept of redundant systems – Configure the servers and the client – Configure a Cisco router 3

  43. Why Should This Topic be Chosen? • What is your background in the topic? – Similar scenario in my company of light control – Therefore: Improve the used setup by working on a new setup 4

  44. What Will Your Students Learn? The Following Learning Goals are Covered in the Lecture PreLab Lab Understand what the scenario is used for X X Configure the client & the servers on PCs X X Configure a Cisco router X X What happens if one server becomes inoperaQve X X 5

  45. PracQcal Part PC6 PC2 Monitoring Server 2 PC1 Cisco Router PC4 Server 1 Remote Client 6

  46. create your own exercise Pranav Jagdish Team 7 POISONING NETWORKS 1

  47. Why Should This Topic b e Chosen? • What is the topic about? – Poisoning a Network or Hosts for MITM, Session Hijacking and other attacks. – ARP, DNS and DHCP Poisoning 2

  48. Why Should This Topic be Chosen? • What content will your students learn? – How to poison a network using ARP Spoofing – How to perform known attacks by spoofing to a host as a target system. – Redirecting user traffic to your system or routing it through you – Use of the efficient python based tool called ZARP – Securing against these attacks using various methods 3

Recommend

MiTM Attack MiTM Attack Edri Guy Edri Guy May 29 ,2013 May 29 ,2013 PC-Labs May 29 2013

MiTM Attack MiTM Attack Edri Guy Edri Guy May 29 ,2013 May 29 ,2013 PC-Labs May 29 2013

MiTM Attack - Haifa-Sec MiTM Attack MiTM Attack Edri Guy Edri Guy May 29 ,2013 May 29 ,2013 PC-Labs May 29 2013 MiTM Attack - Haifa-Sec MiTM Attack - Haifa-Sec DISCLAIMER DISCLAIMER 1 The following discussion is for informational

552 views • 33 slides
MitM attacks on sessions t attac s o sess o s sws2 1 MitM (Man-in-the-Middle)attacks ( )

MitM attacks on sessions t attac s o sess o s sws2 1 MitM (Man-in-the-Middle)attacks ( )

Software and Web Security 2 MitM attacks on sessions t attac s o sess o s sws2 1 MitM (Man-in-the-Middle)attacks ( ) MitM attack: attacker gets between the browser and the web server, eg eg by setting up a wifi access point

345 views • 9 slides
MitM attacks on HTTPS sessions Much of this material can also be seen in DEFCON 2009 presentation

MitM attacks on HTTPS sessions Much of this material can also be seen in DEFCON 2009 presentation

Software and Web Security 2 MitM attacks on HTTPS sessions Much of this material can also be seen in DEFCON 2009 presentation by Moxie Marlinspike; see URL on course page sws2 1 MitM (Man-in-the-Middle) attacks MitM attack: attacker

971 views • 38 slides
Automa utomation tion of of Mit MitM M Attac Attack k on on WiFi iFi Netw Networ orks

Automa utomation tion of of Mit MitM M Attac Attack k on on WiFi iFi Netw Networ orks

Automa utomation tion of of Mit MitM M Attac Attack k on on WiFi iFi Netw Networ orks ks Martin Vondrek Author: Supervisor: Ing. Jan Pluskal Foreign supervisor: Dr Johann A. Briffa ) ) ) ) ) ) ) ) ) wifimitm Brno

332 views • 21 slides
s c a l e When Hardware Attacks Hardwear.io 27 September 2019 1 Attack exploitation space:

s c a l e When Hardware Attacks Hardwear.io 27 September 2019 1 Attack exploitation space:

s c a l e When Hardware Attacks Hardwear.io 27 September 2019 1 Attack exploitation space: time vs distance Remote key brute software protocol force relay attack side Fast Slow mitm channel Hardware attacks require: Hardware

360 views • 24 slides
P3- 60 Recreating Spaces for Making richly designed, pedestrian oriented and economically

P3- 60 Recreating Spaces for Making richly designed, pedestrian oriented and economically

P3- 60 Recreating Spaces for Making richly designed, pedestrian oriented and economically sustainable Places Michigan Municipal League Conference Grand Rapids, Michigan October 6, 2011 614.678.0214 Recreating Spaces for

558 views • 30 slides
s c a l e Marc Witteman Croatian Summer school 2017 Attack exploitation space: time vs distance

s c a l e Marc Witteman Croatian Summer school 2017 Attack exploitation space: time vs distance

When Hardware Attacks s c a l e Marc Witteman Croatian Summer school 2017 Attack exploitation space: time vs distance Remote key brute software protocol force relay attack side Fast Slow mitm channel Hardware attacks require:

688 views • 25 slides
Meet in the Middle Attack Using Output Truncation in 3 Pass HAVAL Yu Sasaki NTT

Meet in the Middle Attack Using Output Truncation in 3 Pass HAVAL Yu Sasaki NTT

Meet in the Middle Attack Using Output Truncation in 3 Pass HAVAL Yu Sasaki NTT Corporation 07/Sep/2009 ISC2009@Pisa 1/22 Yu Sasaki, MitM using output truncation of 3 Haval Summary HAVAL is a hash function that can produce

507 views • 23 slides
Campus Plan Recreating Ourselves in Place How much should we build? Where

Campus Plan Recreating Ourselves in Place How much should we build? Where

Campus Plan Recreating Ourselves in Place How much should we build? Where should it be sited and what should they look like? How much open space should be protected or created? Transportation system and utility system

552 views • 39 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
Neither Snow Nor Rain Nor MITM... Real World Email Delivery Security Zakir Durumeric

Neither Snow Nor Rain Nor MITM... Real World Email Delivery Security Zakir Durumeric

Neither Snow Nor Rain Nor MITM... Real World Email Delivery Security Zakir Durumeric University of Michigan How is your everyday email protected? Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security

943 views • 44 slides
Safety - Co Recreating Human Trust Life In Lockdown What if we are in a lockdown situation for

Safety - Co Recreating Human Trust Life In Lockdown What if we are in a lockdown situation for

Safety - Co Recreating Human Trust Life In Lockdown What if we are in a lockdown situation for more than a year? 18-May-2020, Bangalore. Stage 1 | Submission Safety Soldiers Govardhan Kunchapu Varun Jaiswal Profile Profile Team Leader

507 views • 18 slides
Recreating the Physical World 3D Modeling, Virtual Reality and Printing and Make Spaces to Power

Recreating the Physical World 3D Modeling, Virtual Reality and Printing and Make Spaces to Power

Recreating the Physical World 3D Modeling, Virtual Reality and Printing and Make Spaces to Power Teaching and Learning http://tinyurl.com/mnscuboard3d O VERVIEW Introductions The promise of replicated, 3-dimensional resources(what might

554 views • 14 slides
Automatically Recreating Probabilistic History through Genealogy Robert Ball and Patrick Beck

Automatically Recreating Probabilistic History through Genealogy Robert Ball and Patrick Beck

Automatically Recreating Probabilistic History through Genealogy Robert Ball and Patrick Beck School of Computing Weber State University What is the importance of non-religious genealogy? People form identities based on their genealogy.

319 views • 6 slides
Personal Inventory Art by Sierra Ellis Made You Look Installation October 2017 Recreating

Personal Inventory Art by Sierra Ellis Made You Look Installation October 2017 Recreating

Personal Inventory Art by Sierra Ellis Made You Look Installation October 2017 Recreating peace Installation December 2016 Feelings in Colour acrylics on brick September 2017 Safe Place Installation Fabric, Spray paint, found

428 views • 23 slides
ECHO: Recreating Network Traffic Maps for Datacenters with Tens of Thousands of Servers Christina

ECHO: Recreating Network Traffic Maps for Datacenters with Tens of Thousands of Servers Christina

ECHO: Recreating Network Traffic Maps for Datacenters with Tens of Thousands of Servers Christina Delimitrou 1 , Sriram Sankar 2 , Aman Kansal 3 , Christos Kozyrakis 1 1 Stanford University 2 Microsoft 3 Microsoft Research IISWC November 5 th

394 views • 38 slides
Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Zakir

Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Zakir

Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Zakir Durumeric, David Adrian, Ariana Mirian, James Kasten, Kurt Thomas, Vijay Eranti, Nicholas Lidzborski, Elie Bursztein, Michael Bailey, J. Alex

522 views • 33 slides
Neither Snow Nor Rain Nor MITM ... An Empirical Analysis of Email Delivery Security by Zakir

Neither Snow Nor Rain Nor MITM ... An Empirical Analysis of Email Delivery Security by Zakir

Neither Snow Nor Rain Nor MITM ... An Empirical Analysis of Email Delivery Security by Zakir Durumeric, David Adrian, Ariana Mirian, James Kasten Elie Bursytein, Nicolas Lidzborski, Kurt Thomas, Vijay Eranti, Michael Bailey, J. Alex Champaign

357 views • 17 slides
Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Nicolas

Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Nicolas

Neither Snow Nor Rain Nor MITM... An Empirical Analysis of Email Delivery Security Nicolas Lidzborski, Elie Bursztein, Kurt Thomas, Vijay Eranti ( Google ) Zakir Durumeric, David Adrian, Ariana Mirian, James Kasten, J. Alex Halderman ( University

432 views • 25 slides
Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet Server Client Attack vectors MAN DNS LAN Client Internet Back Bone Router Networking WWW overview MITM (Man In The Middle) 3 2 4 5 LAN

244 views • 23 slides
KCI-based MitM Attacks against TLS Prying Open Pandoras Box Clemens Hlauschek, Markus Gruber,

KCI-based MitM Attacks against TLS Prying Open Pandoras Box Clemens Hlauschek, Markus Gruber,

KCI-based MitM Attacks against TLS Prying Open Pandoras Box Clemens Hlauschek, Markus Gruber, Florian Fankhauser, Christian Schanes BS(l)idesVienna 0x7df whoami [ haku@bsidesbox ] % getent passwd whoami | awk F :

684 views • 33 slides
Phishing By: Joanna Georgiou Dhamija, R., Tygar, J. D., & Hearst, M. (2006, April 22). Why

Phishing By: Joanna Georgiou Dhamija, R., Tygar, J. D., & Hearst, M. (2006, April 22). Why

Phishing By: Joanna Georgiou Dhamija, R., Tygar, J. D., & Hearst, M. (2006, April 22). Why Phishing Works. Gelernter, N., Kalma, S., Magnezi, B., & Porcilan, H. (2017). The Password Reset MitM Attack. What is Phishing? Dhamija, R.,

528 views • 50 slides
A Proof of MITM Vulnerability in Public WLANs Guarded by Captive Portal Author: Wei-Lin Chen

A Proof of MITM Vulnerability in Public WLANs Guarded by Captive Portal Author: Wei-Lin Chen

A Proof of MITM Vulnerability in Public WLANs Guarded by Captive Portal Author: Wei-Lin Chen Po-Kang Chen Quincy Wu Outline Introduction Motivation Related Works Authentication of Public WLAN Implementation &

426 views • 30 slides
ATTACK: Learning the Distributions of Adversarial Examples for an Improved Black-Box Attack on

ATTACK: Learning the Distributions of Adversarial Examples for an Improved Black-Box Attack on

ATTACK: Learning the Distributions of Adversarial Examples for an Improved Black-Box Attack on Deep Neural Networks Yandong Li* 1 Lijun Li* 1 Liqiang Wang 1 Tong Zhang 2 Boqing Gong 3 *Equal Contribution 1 University of Central Florida 2 Hong

440 views • 11 slides

More recommend