Network security - vulnerabilities and Trojans

The goal is ：

         Restore the scene through the classic Trojan attack , To make a Trojan horse , And the implementation of the implanted Trojan to fully control the target host .

  Trojan overview ：

• Trojans are often called hacker programs , Malicious code , Also known as Trojans
• Hacker tools based on remote control

The characteristics of Trojans ：

• Concealment
• Latency
• Regeneration

The composition of the Trojan ：

• Client program

         The client program is installed on the attacker （ hackers ） Fang's console , It's in charge of remote control command

• Server program

         The server program is a Trojan horse program , It is hidden installed in the attacked （ Victimization ） Fang's computer , The target host is also called broiler

The harm of Trojans ：

• Embezzle user information

         Such as ： Online game account 、 Online banking information 、QQ Password etc.

• Spread the virus
• Occupy system resources , Reduce computer performance
• Use this machine as a tool to attack other devices

Signs of being hit by a Trojan ：

• The hard disk keeps reading and writing
• The mouse and keyboard don't work
• The window suddenly closes
• The new window opened inexplicably

Trojans spread through ：

• When browsing a web page, exploit the browser vulnerability or the browser plug-in （flash、 Thunderbolt etc. ） Loophole
• adopt QQ、MSN And other instant messaging software , Send malicious links or Trojan files
• Use U Disk and other removable storage media
• Open a strange email , Through malicious code in email or attachments containing trojan virus
• Application software disguised as multimedia audio-visual file or implanted Trojan , utilize P２P Platform and website dissemination
• Take advantage of operating system vulnerabilities or weak passwords to directly put them remotely
• Download programs from unknown sources

Introduction to the environment ：

Virtual machine software ：VMWare

virtual machine ：

        Windows10－ Simulated hacker attack machine

        windoｗｓserver　2008　－　 Simulation is controlled by Trojan

Tools ：

         Grey dove software

        NTscan

Experimental process ：

  Turn on two virtual machines ：

  Configure two computers IP And test connectivity ：

  Make a Trojan ：

         Use grey dove Trojan horse to make software

  Brute force ：

         Aim to get the other party's account and password

  Successful control of target host ：

  Reference video ：

【 Qian Feng 】 Network security 300 A complete set of video tutorials (web Security / Penetration test / Hacker attack and defense / Information security / Code audit ), Introduction to the basics of network security to mastery _ Bili, Bili _bilibili

【 Qian Feng 】 Network security 300 A complete set of video tutorials (web Security / Penetration test / Hacker attack and defense / Information security / Code audit ), Introduction to the basics of network security to mastery _ Bili, Bili _bilibili