Difference between revisions of "Forensic: IT"

From OnnoWiki
Jump to navigation Jump to search
Line 78: Line 78:
 
* [[Forensic: nmap mysql-brute.nse attack]]
 
* [[Forensic: nmap mysql-brute.nse attack]]
 
* [[Forensic: nmap ssh2-enum-algos attack]]
 
* [[Forensic: nmap ssh2-enum-algos attack]]
 
+
* [[Forensic: msfconsole use auxiliary/scanner/smb/smb_login attack]]
TEORI: Penggunaan Metasploitable
+
* [[Forensic: msfconsole use auxiliary/scanner/smb/smb_enumshares attack]]
Penggunaan SQLMap untuk SQL Injection
+
* [[Forenisc: msfvenom attack]]
Penggunaan nmap untuk payload attack
 
Log yang relevan dengan payload attack
 
DEMO: Misc. Attack & Forensic
 
FORENSIC:
 
nmap --script smb-enum-users.nse -p445 <host>
 
sudo nmap -sU -sS --script smb-enum-users.nse -p U:137,T:139 <host>
 
nmap --script=mysql-brute <target>
 
Nmap  -sT -p3306 --script mysql-brute.nse --script-args userdb=/root/user.txt --script-trace  192.168.0.100
 
Nmap  -sT -p3306 --script mysql-brute.nse --script-args userdb=/root/user.txt,passdb=/root/pass.txt --script-trace 192.168.0.100
 
msfconsole use auxiliary/scanner/smb/smb_login
 
msfconsole use auxiliary/scanner/smb/smb_enumshares
 
msfvenom
 
MITIGATION:
 
Firewall
 
Access Control List
 
PAM
 
  
 
==PERTEMUAN: Laporan Forensic==
 
==PERTEMUAN: Laporan Forensic==

Revision as of 09:07, 19 October 2024

PERTEMUAN: Pengenalan IT Forensik

PERTEMUAN: Proses Akuisisi Data

PERTEMUAN: Analisis Data

PERTEMUAN: Investigasi Sistem Operasi

PERTEMUAN: Investigasi Jaringan

PERTEMUAN: Forensic eMail

PERTEMUAN: Forensic SQL Injection Attack

PERTEMUAN: Forensic Command Injection Attack

PERTEMUAN: Forensic Backdoor via Command Injection Attack

PERTEMUAN: Forensic File System Linux


PERTEMUAN: Investigasi Perangkat Mobile

PERTEMUAN: Misc Attack & Forensic

PERTEMUAN: Laporan Forensic