Monthly Archives: February 2012

Security Programing Techniques

Posted on by
Reply

INTRODUCTION

The main goal of this post is to introduce the reader with the security programing techniques into deferent program languages and operating system security models. The post is introducing four following topics:

  1. Session storage’s in Ruby on Rail
  2. Parameterized statements into Java with JDBC, C# with ASP.NET, PHP5, php-mysqli, Perl, Python and Hibernate Query Language (HQL)
  3. Unix permission model, Unix ACL and Windows 7 security
    model
  4. Finding all the security vulnerabilities in bash script

Each topic will be divided into own section, where at the end of each topic we stated the reference and additional reading material. The source code, scrips and the additional task were given by the lecture. However this will help the readers and people interesting into programing for further work and involvement with the above topics.

Continue reading

Honeypot document

Posted on by
Reply

INTRODUCTION

The main goal of laboratory report is to identify possible leaked/stolen information,
documents from our system without recognising that attacker had an access. Thus access of the document will inform us immediately with the information of the burglar. The report should highlight the following aspects:

 

  • Constructed an document as non malicious code, for instance honey document that will help us to track from where, who, information about the system, etc. is using our document.
  • Detail description of process, how did we build the document and the idea behind the tracking system.
  • Description of needed infrastructure that is tracking the document. Continue reading

Identify Possible Infection of Malware Into the Wireshark Capture File

Posted on by
Reply

INTRODUCTION

The main goal of laboratory report is to identify possible infection of malware into the
wireshark capture file. The report should highlight the following aspects:
• Download https://sim.cert.ee/hw/download.pcap
• Find malware download in this pcap and extract malware or malwares find out
where malware was downloaded from.
• What malware, malwares changes in system.
• C&C Names and address.
• Document the process also where You found hints and how exactly You did it (you
need to show Your thought and communication process – please write a summary of
it.)
• Write an incident report. Continue reading

Virtual Machine Malware / Malicious Analysis

Posted on by
2

INTRODUCTION

The main goal of laboratory report is to identify possible infection of two Windows 7 virtual
machine. Virtual machines presented by the lecture:

  • Win 1
  • Win 2

The assignment is following:

Find out what is infecting the machine win1

  • Understand which way is the current malware dangerous to “your organisation”
  • If possible, do clean win1
  • Is win2 clean or it has problems, too?
  • If needed, do clean win2 Continue reading