Avădănei Andrei, profile picture
Uploaded byAvădănei Andrei
PPT, PDF1,328 views

How you can become a hacker with no security experience

This document discusses how someone with no security experience can become a hacker. It begins with short biographies of the author and defines hackers. It distinguishes between white hat and black hat hackers and provides examples of security exploits like password resets, phishing, malware, wifi sniffing, and hacking websites. It notes many tools are available for free or cheaply and warns that these simple hacks can compromise accounts and websites. The document advises readers on safety measures like using strong passwords, antivirus software, and VPNs. It concludes by asking if the reader has any questions.

Embed presentation

Downloaded 17 times
How You Can Become a Hacker With No Security Experience Andrei Avădănei President at CCSIR contact@ccsir.org
Summary ● Short Bio ● What is a Cyber Hacker ● White Hat vs Black Hat Briefly ● Examples of Security Bypasses by 1337 Hackers ● Why They Matter? ● Are YOU Safe? ● Questions & Conclusions
Short Bio ● President at CCSIR ● Founder & Coordinator of DefCamp ● Coordinator of Sparks ● Ambassador of Talks by Softbinator ● Blogger @worldit.info
What is a Cyber Hacker ● seeks and exploits weaknesses in IT infrastructures ● motivated by profit, protest, or challenge ● computer programmers argues that they should be called crackers ● security culture is often referred to underground hacking
White Hat vs Black Hat ● white-hat breaks security for non-malicious reasons ● black-hat violate computer security for personal benefits BUT - no phishing/spam/credit card stealling ... ● grey-hat may surf the net in order to find and report bugs ● 1337 hackers use various tools to steal or destroy
#1 Password Reset Services ● What is Your Mother's Name? ● Where is Your Birthday Place? ● Your Favorite Movie? ● Your Loved One? Yeah, this still works. Don't believe me?
But Now?
#2 Phishing & Scams
#3 Malware ● Tons of Malware Kits free or cheap ● Tons of FUD Crypters for AV bypass ● Tons of Spreading Methods ● Citadel, Zeus, Blackhole Means Something? ● 1337++
#4 Wifi Sniffing ● Be The MAN (in the Middle) ● Session Hijacking ● Credentials Sniffing ● Traffic Alteration ● Aircrack-ng sounds friendly to you? ● 1338++
#5 Hacking Websites ● Free & Easy to use Applications Scanners ● Nmap – old school (but awesome) port scanner ● SQLMap, Havij, Nessus, Acunetix, w3af for web security ● Metasploit – the Honey for Exploitation ● Many more third parties apps based on those above ● + Tons of Others That You Can Discover ● 1339++
#6 - The Insiders ● Do You Trust Your Gf/Bf? You shouldn't! :-) 1339.1++
Why They Matter ● these are really simple examples ● most of the „hackers“ of this kind are 14-20 ● they are irresponsible, destructive ● you will see private conversation leaked ● if you have a website they will probably deface it ● if somebody is MitM you might have the chance to see some porn ● if your password is guessed you might loose your accounts (Fb, Y!, GM, Tw, Ppl) ● PLEASE TRY THIS AT HOME, NOT ON YOUR „FRIENDS“!
Are You Safe? ● #1 – Hard to Guess and unrelated answers ● #2 – Don't click on any suspicious stuff ● #3 – Use an AV licensed and updated + forgot Windows ● #4 – VPN Tunnels ● #5 – Firewalls, Code Review, Pentest, Audit ● #6 – Trust nobody, even you + LastPass or others
Questions?

More Related Content

ODP
A journey through an INFOSEC labyrinth
byAvădănei Andrei
 
PDF
My Bug Hunting With Open Source
byMadhu Akula
 
PDF
Fun & profit with bug bounties
byn|u - The Open Security Community
 
PPTX
Online Privacy & Computer Security Basics (September 2017)
byKit O'Connell
 
PDF
Understanding and implementing website security
byDrew Gorton
 
PDF
Android "Fight Club" : In pursuit of APPiness -- null Humla Delhi Chapter
byAbhinav Mishra
 
PDF
Security for Data Scientists
byDavid Arcos
 
ODP
Negative Unemployment and Great Job Satisfaction? Why infosec is AWESEOME
byjeffmcjunkin
 
A journey through an INFOSEC labyrinth
byAvădănei Andrei
 
My Bug Hunting With Open Source
byMadhu Akula
 
Fun & profit with bug bounties
byn|u - The Open Security Community
 
Online Privacy & Computer Security Basics (September 2017)
byKit O'Connell
 
Understanding and implementing website security
byDrew Gorton
 
Android "Fight Club" : In pursuit of APPiness -- null Humla Delhi Chapter
byAbhinav Mishra
 
Security for Data Scientists
byDavid Arcos
 
Negative Unemployment and Great Job Satisfaction? Why infosec is AWESEOME
byjeffmcjunkin
 

Similar to How you can become a hacker with no security experience

PPTX
Hacking (cs192 report )
byElipeta Sotabento
 
PPT
001.itsecurity bcp v1
byMohammad Ashfaqur Rahman
 
PPT
Hacking 1224807880385377-9
byGeoff Pesimo
 
PPT
ETHICAL HACKING
bySweta Leena Panda
 
PPT
Introduction to hackers
byHarsh Sharma
 
PDF
What is a Hacker (part 1): Types, tools and techniques
byKlaus Drosch
 
PPTX
Ethical hacking
byRishabha Garg
 
PPTX
Ethical Hacking Redefined
byPawan Patil
 
PDF
Hackers and cyber crimes
bySweta Kumari Barnwal
 
PDF
Unit ii-hackers and cyber crimes
bySweta Kumari Barnwal
 
PPT
All about Hacking
byMadhusudhan G
 
PPTX
Introduction To Hacking
byRaghav Bisht
 
PPTX
Inetsecurity.in Ethical Hacking presentation
byJoshua Prince
 
PPT
Hackers are innocent
bydanish3
 
PPTX
Hacking
byVipinYadav257
 
PPTX
Hackers: Who Are They? | Types of Hackers & Ethical Hacking Explained
bySunipa Bera
 
PPTX
hacking
byADAIKKAPPANS1
 
PPTX
Hacking (1)
byDeepu Näñí
 
PPT
Sit presentation
bycchoi02
 
PDF
Real life hacking101
byFlorent Batard
 
Hacking (cs192 report )
byElipeta Sotabento
 
001.itsecurity bcp v1
byMohammad Ashfaqur Rahman
 
Hacking 1224807880385377-9
byGeoff Pesimo
 
ETHICAL HACKING
bySweta Leena Panda
 
Introduction to hackers
byHarsh Sharma
 
What is a Hacker (part 1): Types, tools and techniques
byKlaus Drosch
 
Ethical hacking
byRishabha Garg
 
Ethical Hacking Redefined
byPawan Patil
 
Hackers and cyber crimes
bySweta Kumari Barnwal
 
Unit ii-hackers and cyber crimes
bySweta Kumari Barnwal
 
All about Hacking
byMadhusudhan G
 
Introduction To Hacking
byRaghav Bisht
 
Inetsecurity.in Ethical Hacking presentation
byJoshua Prince
 
Hackers are innocent
bydanish3
 
Hacking
byVipinYadav257
 
Hackers: Who Are They? | Types of Hackers & Ethical Hacking Explained
bySunipa Bera
 
hacking
byADAIKKAPPANS1
 
Hacking (1)
byDeepu Näñí
 
Sit presentation
bycchoi02
 
Real life hacking101
byFlorent Batard
 

More from Avădănei Andrei

PDF
Honeypots - The Art of Building Secure Systems by Making them Vulnerable
byAvădănei Andrei
 
ODP
Wordpress Plugins Scanner
byAvădănei Andrei
 
PPT
DefCamp 2012 @Bucharest
byAvădănei Andrei
 
ODP
Polish the Wheel
byAvădănei Andrei
 
PPT
Virtual Anonimity – What? Why? When? How?
byAvădănei Andrei
 
PPT
SmartFender
byAvădănei Andrei
 
PPT
SYDO - Secure Your Data by Obscurity
byAvădănei Andrei
 
PPT
Xss is more than a simple threat
byAvădănei Andrei
 
PPT
Arta de a susţine o prezentare
byAvădănei Andrei
 
ODP
Spaghetti Code vs MVC
byAvădănei Andrei
 
Honeypots - The Art of Building Secure Systems by Making them Vulnerable
byAvădănei Andrei
 
Wordpress Plugins Scanner
byAvădănei Andrei
 
DefCamp 2012 @Bucharest
byAvădănei Andrei
 
Polish the Wheel
byAvădănei Andrei
 
Virtual Anonimity – What? Why? When? How?
byAvădănei Andrei
 
SmartFender
byAvădănei Andrei
 
SYDO - Secure Your Data by Obscurity
byAvădănei Andrei
 
Xss is more than a simple threat
byAvădănei Andrei
 
Arta de a susţine o prezentare
byAvădănei Andrei
 
Spaghetti Code vs MVC
byAvădănei Andrei
 

How you can become a hacker with no security experience

  • 1.
    How You CanBecome a Hacker With No Security Experience Andrei Avădănei President at CCSIR contact@ccsir.org
  • 2.
    Summary ● Short Bio ● What isa Cyber Hacker ● White Hat vs Black Hat Briefly ● Examples of Security Bypasses by 1337 Hackers ● Why They Matter? ● Are YOU Safe? ● Questions & Conclusions
  • 3.
    Short Bio ● President atCCSIR ● Founder & Coordinator of DefCamp ● Coordinator of Sparks ● Ambassador of Talks by Softbinator ● Blogger @worldit.info
  • 4.
    What is aCyber Hacker ● seeks and exploits weaknesses in IT infrastructures ● motivated by profit, protest, or challenge ● computer programmers argues that they should be called crackers ● security culture is often referred to underground hacking
  • 5.
    White Hat vsBlack Hat ● white-hat breaks security for non-malicious reasons ● black-hat violate computer security for personal benefits BUT - no phishing/spam/credit card stealling ... ● grey-hat may surf the net in order to find and report bugs ● 1337 hackers use various tools to steal or destroy
  • 6.
    #1 Password ResetServices ● What is Your Mother's Name? ● Where is Your Birthday Place? ● Your Favorite Movie? ● Your Loved One? Yeah, this still works. Don't believe me?
  • 7.
  • 8.
  • 9.
    #3 Malware ● Tons ofMalware Kits free or cheap ● Tons of FUD Crypters for AV bypass ● Tons of Spreading Methods ● Citadel, Zeus, Blackhole Means Something? ● 1337++
  • 11.
    #4 Wifi Sniffing ● BeThe MAN (in the Middle) ● Session Hijacking ● Credentials Sniffing ● Traffic Alteration ● Aircrack-ng sounds friendly to you? ● 1338++
  • 13.
    #5 Hacking Websites ● Free& Easy to use Applications Scanners ● Nmap – old school (but awesome) port scanner ● SQLMap, Havij, Nessus, Acunetix, w3af for web security ● Metasploit – the Honey for Exploitation ● Many more third parties apps based on those above ● + Tons of Others That You Can Discover ● 1339++
  • 14.
    #6 - TheInsiders ● Do You Trust Your Gf/Bf? You shouldn't! :-) 1339.1++
  • 15.
    Why They Matter ● theseare really simple examples ● most of the „hackers“ of this kind are 14-20 ● they are irresponsible, destructive ● you will see private conversation leaked ● if you have a website they will probably deface it ● if somebody is MitM you might have the chance to see some porn ● if your password is guessed you might loose your accounts (Fb, Y!, GM, Tw, Ppl) ● PLEASE TRY THIS AT HOME, NOT ON YOUR „FRIENDS“!
  • 16.
    Are You Safe? ● #1– Hard to Guess and unrelated answers ● #2 – Don't click on any suspicious stuff ● #3 – Use an AV licensed and updated + forgot Windows ● #4 – VPN Tunnels ● #5 – Firewalls, Code Review, Pentest, Audit ● #6 – Trust nobody, even you + LastPass or others
  • 17.