National Cyber Security Center of the United Kingdom and their Western European friends today released a report focusing on the most commonly used hacking tools.
The study presents five classes of available hacking tools widely used by criminals, spies and hacktivists worldwide. Your list below will not surprise those involved in penetration testing but is valuable to the public who wants the security of their systems.
PDF lists some of the tools most likely to be used in targeted networks.
Remote Access Trojans (RATs): “αόρατα” προletterτα για εμφύτευση backdoors και απομάκρυνση δεδομένων
Web Shells: scripts planted on servers to provide remote administrator control
Mimikatz: Stalks passwords and other credentials stored in memory
PowerShell Empire: This framework allows hackers to enter sensitive systems
Detection and control tools and extermination tools: Utilities used to hide the location of a hacker.
Of course, they are also popular penetration-testing kits.
Often these tools are not inherently malicious and can be used legitimately for penetration testing that aims to detect vulnerable points. But they can also be used for malicious network hacking. The NCSC reports that the parallel use of the above tools can bring impressive results, but also make them more difficult to detect.
"Many are used in combination with each other, posing a huge challenge for the network's defender," says GCHQ.
The NCSC states that some simple steps could greatly help to prevent possible attacks. Basic defenses include two or multiple agent authentication, network partitioning, and many more that you can read in the PDF below.
__________________________
- Internet Archive the first decentralized Web is online
- Chrome restore of WWW and HTTP
- Tails 3.9.1 ISO has just been released from the Tails Project
- Google's DeepMind: dopamine use from neural networks