Preface

• Blog home page ： Huacheng bag
• Welcome to focus on the likes collection ️ Leaving a message.
• This article is included in the full stack column of hacker attack and defense technology ： Intranet Security . It will be updated in the future , Coming soon ！
• This column is specifically aimed at Xiaobai who wants to get started in the field of network security , Plan to finish in a month ！
  - One can walk very fast , A group of people can go further ！ Join me and study with me ！
• Only by continuous learning can we not be submerged by the vast sea of people ！
• If an error is found , Please leave me a message in the comment area , Thank you very much ！

🥦 One 、 Hacking methods commonly used by hackers

The common penetration methods of hackers can be divided into 6 class ： Get password intrusion 、 Remote control intrusion 、 Trojans invade 、 System vulnerability intrusion 、 Email intrusion 、 Network monitoring, intrusion, etc .

1. Get password intrusion

seeing the name of a thing one thinks of its function , Is to get the account of the administrator or user 、 password , And steal system information . There are several ways to obtain the password ：

• Get the user password through network monitoring
  This kind of method has some limitations , But the harm is great , The listener can often get the account and password of the user in the network segment , It is a big threat to LAN security .
• Blow up the account number 、 password
• Get the user password file on a server Shadow After the document , Crack the user password with a brute force cracking program .

2. Remote control intrusion

Remote control is on the network , By a computer ( Main control end / client ） Remote departure control another computer （ Charged end / Server side ） Technology And remote control generally refers to the control of remote computers through the network . Intrusion methods through remote control , You can get the following contents of the target host :

• Get the target computer screen image 、 List of windows and processes ;
• Record and extract remote keyboard events ;
• open 、 Close any directory of the target computer and realize resource sharing ;
• Activate 、 Terminate the remote program process ;
• Manage files and folders on remote computers
• Shut down or restart the operating system in the remote computer
• modify Windows The registry ;
• Download Text, capture audio and video signals and other operations on the remote computer .
  Remote control generally supports LAN、WAN、 dial 、 Internet and other network methods . Besides , Some remote control software also supports serial port 、 Control the remote host through parallel port .

3. Trojans invade

Trojan horse program can directly invade the user's computer and destroy it , It is often disguised as a tool program or game to induce users to open mail attachments with Trojan horse programs or download them directly from the Internet , Once the user opens the attachments of these emails or executes these programs , These Trojan viruses 🦠 The program will remain on the user's computer , And hide it in the user's computer system , When Windows Qi Dynamic time , these muma Was quietly executed . When users connect their computers to the Internet , This Trojan will notify the attacker , Report the user's IP Address and preset port . After receiving this information, the attacker , Then use this hidden program , You can arbitrarily modify the user's computer parameter settings , Copy file , Peeping at the contents of the user's entire hard disk , So as to control the user's computer .

4. System vulnerability intrusion

at present , Most computers have Windows operating system , although Windows operation The stability and security of the system are continuously improved with the improvement of its version , But there will still be different security risks , Namely vulnerability . Attackers can use professional tools to discover these vulnerabilities , After understanding the vulnerabilities and shortcomings of the target computer , Attackers can take advantage of buffer overflow and test the user's account and password , To achieve the purpose of exploratory attack on the host .

5. Email intrusion

E-mail intrusion is mainly manifested in two ways , The details are as follows : One is . E-mail bombing That is commonly referred to as the mail bomb , It refers to the use of forged IP Address and email address to the same mailbox 、 Thousands or even countless times of spam with the same content , Causing the victim's mailbox to be “ Fried ”, In serious cases, it may bring danger to the e-mail server operating system , Even paralysis . The second is electronic Email spoofing . An attacker can pretend to be a system administrator , Send an email to the user asking the user to change the password or load in a seemingly normal attachment bingdu🦠 Or other Trojan horse programs , Such deception requires users to be vigilant , Generally, the harm is not too great .

6. Network monitoring intrusion

Network monitoring is a working mode of the host , In this mode , The host can receive all information transmitted on the same physical channel , No matter who the sender and receiver of this information are . here , If the information communicated between two hosts is not encrypted , Just use network monitoring tools , Such as SpyNet Sniffer、SRSniffer etc. , You can easily intercept information including passwords and accounts .

🥦 Two 、 Conclusion

What else do you have to add , Welcome to comment area ！