30-09-2016, 04:32 PM
1457098019-ethicalhackingppt.pptx (Size: 196.53 KB / Downloads: 10)
Introduction
Ethical hacking also known as penetration testing or white-hat hacking, involves the same tools, tricks, and techniques that hackers use,but with one major difference that Ethical hacking is legal.
Ethical Hacking
Independent computer security Professionals breaking into the computer systems.
Neither damage the target systems nor steal information.
Evaluate target systems security and report back to owners about the vulnerabilities found.
Types of Hackers
Black Hat Hacker
White Hat Hacker
Grey Hat Hacker
Black-Hat Hacker
A black hat hackers or crackers are individuals with extraordinary computing skills, resorting to malicious or destructive activities.
That is black hat hackers use their knowledge and skill for their own personal gains probably by hurting others.
White-Hat Hacker
White hat hackers are those individuals professing hacker skills and using them for defensive purposes.
This means that the white hat
hackers use their knowledge
and skill for the good of others and for the common good.
Grey-Hat Hackers
These are individuals who work both offensively and defensively at various times.
We cannot predict their behavior.
Sometimes they use their skills for the common good while in some other times he uses them for their personal gains.
Ethical hacking – defines as “a methodology adopted by ethical hacker to discover the vulnerabilities existing in information system operating environments.”
With the growth of the Internet, computer security has become a Major concern for business and governments. On their search for a way to approach the problem, organization came
To realize that one of the best ways to evaluate the intruder threat to their interest would be to have independent computer security professional attempt to break into their computer system.
ETHICAL HACKING COMMENDMENTS
Working Ethically
The word ethical in this context can be defined as working with high professional moral and principles. Everything you do as an ethical hacker must be aboveboard and must support the company’s goals. No hidden agendas are allowed! Trustworthiness is the ultimate tenet. The misuse of information is absolutely forbidden.
Respecting privacy:
Treat the information gathered with the most respect. All information you obtain during your testing from Web-application log files to clear-text password must be kept private. If you sense that someone should know there’s a problem, consider sharing that information with the appropriate manager.
Not Crashing your systems.
One of the biggest mistakes hacker try to hack their own system is inadvertently crashing their systems. The main reason for this is poor planning. The testers have not read documents of misunderstand the usage and power of the security tools and techniques.
Required Skills of an Ethical Hacker
Microsoft: skills in operation, configuration and management.
Linux: knowledge of Linux/Unix; security setting, configuration, and services.
Firewalls: configurations, and operation of intrusion detection systems.
Routers: knowledge of routers, routing protocols, and access control lists
Mainframes
Network Protocols: TCP/IP; how they function and can be manipulated.
Project Management: leading, planning, organizing, and controlling a penetration testing team.
Advantages
’To catch a thief you have to think like a thief”
Helps in closing the open holes in the system network
Provides security to banking and financial establishments
Prevents website defacements
An evolving technique
Disadvantages
All depends upon the trustworthiness of the ethical hacker
Hiring professionals is expensive.
Future Enhancements
As it an evolving branch the scope of enhancement in technology is immense.
No ethical hacker can ensure the system security by using the same technique repeatedly.
More enhanced software’s should be used for optimum protection.
Conclusion
In the preceding sections we saw the methodology of hacking, why should we aware of hacking and some tools which a hacker may use.
Now we can see what can we do against hacking or to protect ourselves from hacking.
The first thing we should do is to keep ourselves updated about those software’s we and using for official and reliable sources.
Educate the employees and the users against black hat hacking.