The National Cyber Security Centre του Ηνωμένου Βασιλείου και οι δυτικοευρωπαίοι φίλοι τους κυκλοφόρησαν σήμερα μια έκθεση που επικεντρώνεται στα πιο συχνά χρησιμοποιούμενα εργαλεία hacking.
The study presents five classes of available hacking tools widely used by criminals, spies and hacktivists worldwide. Your list below will not surprise those involved in penetration testing but is valuable to the public who wants the security of their systems.
PDF lists some of the tools most likely to be used in targeted networks.
Remote Access Trojans (RATs): "invisible" programs for planting backdoors and exfiltrating data
Web Shells: scripts planted on servers to provide remote administrator control
Mimikatz: It intercepts passwords and other credentials stored on μνήμη
PowerShell Empire: This framework allows hackers to enter sensitive systems
Locating tools and control and tools of destruction: Utilities used to hide the location of a hacker.
Of course, they are also popular penetration-testing kits.
Often these tools are not inherently malicious and can be used legitimately for penetration testing that aims to detect vulnerable points. But they can also be used for malicious network hacking. The NCSC reports that the parallel use of the above tools can bring impressive results, but also make them more difficult to detect.
"Many are used in combination with each other, posing a huge challenge for the network's defender," says GCHQ.
The NCSC states that some simple steps could greatly help to prevent possible attacks. Basic defenses include two or multiple agent authentication, network partitioning, and many more that you can read in the PDF below.
__________________________
- Internet Archive the first decentralized Web is online
- Chrome restore of WWW and HTTP
- Tails 3.9.1 ISO has just been released from the Tails Project
- Google's DeepMind: dopamine use from neural networks