文章目录
- 前言
- 一、社会工程学的概念
- 二、Kali Linux 2 中的社会工程学工具包(SET)
- 三、用户名和密码的窃取
- 四、自动播放文件攻击
-
- 1、 选择:Social-Engineering Attacks(社会工程学攻击)-- Infectious Media Generator(感染式媒介生成器) 首先选择Social-Engineering Attacks
- 2、选择攻击模块
- 3、这里我们选择一个要使用的攻击载荷,然后设置攻击载荷的IP地址和端口 选择Windows Reverse_TCP Meterpreter攻击载荷,然后设置攻击载荷的IP地址和端口
- 4、系统会根据你的输入生成U盘自动运行程序。这需要一段时间,等一会儿会生成两个文件即payload.exe和autorun.inf文件
- 5、随后SET会询问是否创建一个监听器
- 6、将/root/.set/autorun/目录下的两个文件复制到外部,在tmp下创建一个test目录 首先切换到tmp目录下,在tmp目录下创建一个test目录,随后将/root/.set/autorun/目录下的两个文件复制到外部
- 7、将上面的文件复制到U盘上,然后将U盘插入另一台计算机 将文件复制到U盘上
- 8、当计算机执行了Autorun.inf,就会加载payload.exe. 运行payload.exe文件
- 9、收集目标系统数据
- 10、清除踪迹
- 11、创建持久后门
- 五、快捷HID攻击工具USB橡皮鸭
- 六、通过计划任务实现持续攻击
- 总结
前言
大多数人心目中的黑客往往是这样一种形象,他们不修边幅,挥金如土,工作的时候只需要一台联网的计算机。如果愿意,他们只要坐在家里就可以攻击别人的网络。所以每次我向客户提出要他们建立并严格执行完善的网络安全管理制度时,他们总是很惊讶地问:“这有什么用,难道这能拦得住你们?”虽然这个问题很常见,但是我可以很负责任地告诉大家,确实“拦得住”。
绝大多数的黑客入侵并不是单纯依靠技术手段实现的。在现实中,往往是用户的一点疏忽导致了网络中的所有防御手段形同虚设。因此,人是网络安全中一个远比设备和程序更重要的因素。在网络安全中,社会工程学所攻击的目标就是人。本章将围绕以下主题展开对社会工程学的概念和一些常见手段的讲解。
一、社会工程学的概念
按照百度上的说法:社会工程学(Social Engineering,又被翻译为:社交工程学)在上世纪60年代左右作为正式的学科出现,广义社会工程学的定义是:建立理论并通过利用自然的、社会的和制度上的途径来逐步地解决各种复杂的社会问题,经过多年的应用发展,社会工程学逐渐产生出了分支学科,如公安社会工程学(简称公安社工学)和网络社会工程学。
社会工程学是一个通过研究受害者心理,并以此诱使受害者做出配合,从而达到自身目的的学科。我一直觉得社会工程学和中国古代的“千术”十分类似,二者都是“欺骗的艺术。”黑客米特尼克(Mitnick)在他的作品《反欺骗的艺术》中第一次提到社会工程学,他认为长期以来在网络安全领域中,社会工程学指的就是利用受害者的心理弱点、本能反应、好奇心、信任、贪婪等心理陷阱的手段,一些犯罪分子通过欺骗等手段来谋取利益。近年来,利用社会工程学谋取利益的人越来越多,这给网络安全带来了极大的隐患。
二、Kali Linux 2 中的社会工程学工具包(SET)
在Kali Linux 2 中包含一个非常流行的工具包——社会工程学工具包(Social Engineer Toolkit,SET).利用这个工具包,再加上使用者的“演技”,非常会让受害者在不知不觉中就掉入陷阱。限于当地法律和法规的限制,这里我们探讨的范围仅限于SET的使用方法。
SET由黑客David Kennedy(ReL1k)编写。需要注意的是,这并不只是一个单独的工具,而是常用的社会工程学工具的集合,其中包含许多渗透测试工具。
1.社会工程学(SET)启动的二种方法:
(1)菜单:
在菜单栏中启动SET
(2)命令行:
在命令行中启动SET
执行setoolkit命令运行终端后,将输出如下所示的信息:
[-] New set_config.py file generated on: 2014-05-06 18:05:41.766123
[-] Verifying configuration update…
[*] Update verified, config timestamp is: 2014-05-06 18:05:41.766123
[*] SET is using the new config, no need to restart
Copyright 2013, The Social-Engineer Toolkit (SET) by TrustedSec, LLC
All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
* Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
* Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer
in the documentation and/or other materials provided with the distribution.
* Neither the name of Social-Engineer Toolkit nor the names of its contributors may be used to endorse or promote products derived from
this software without specific prior written permission.
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
The above licensing was taken from the BSD licensing and is applied to Social-Engineer Toolkit as well.
Note that the Social-Engineer Toolkit is provided as is, and is a royalty free open-source application.
Feel free to modify, use, change, market, do whatever you want with it as long as you give the appropriate credit where credit
is due (which means giving the authors the credit they deserve for writing it). Also note that by using this software, if you ever
see the creator of SET in a bar, you should give him a hug and buy him a beer. Hug must last at least 5 seconds. Author
holds the right to refuse the hug or the beer.
The Social-Engineer Toolkit is designed purely for good and not evil. If you are planning on using this tool for malicious purposes that are
not authorized by the company you are performing assessments for, you are violating the terms of service and license of this toolset. By hitting
yes (only one time), you agree to the terms of service and that you will only use this tool for lawful purposes only.
Do you agree to the terms of service [y/n]:
启动SET之后的界面
2.社会工程学(SET)的主菜单:
SET是一个菜单驱动的工具包,我们只需要选择对应的序号就可以使用指定的测试方法。分别是:
(1)Social-Engineering Attacks(社会工程学攻击)
(2)Penetration Testing (Fast-Track)(渗透测试)
(3)Third Party Modules(第三方模块)
(4)Update the Social-Engineer Toolkit(升级软件)
(5)Update SET configuration(升级SET配置)
(6)Help,
最低0.47元/天 解锁文章
4767
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
