Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Hacking 101

Anugrah SR
October 17, 2022

Hacking 101

Talk was part of INITCREW : DISHA MARK II
https://initcrew.com/

Anugrah SR

October 17, 2022
Tweet

More Decks by Anugrah SR

Other Decks in Technology

Transcript

  1. HACKING 101
    Slides 01
    Anugrah SR

    View Slide

  2. Slides 03
    Agenda
    What is hacking
    Type of hacking
    Steps in hacking
    How to get started
    How to get better at it
    Findings your first job internship
    Importance of community

    View Slide

  3. Slides 04
    Security Consultant @The SecOps Group
    Synack Red Team member
    Passive bugbounty Hunter
    Twitter: @cyph3r_asr
    LinkedIn: anugrah-sr
    Web: anugrahsr.in
    Blog: p1boom.com
    initcrew Core team Member

    View Slide

  4. Slides 05
    This slides and talks are just overview of
    the large spectrum of cyber Secuity...
    swasha kosham sponge pole aan...
    Cautions

    View Slide

  5. Slides 06
    Hacking refers to activities that seek to compromise
    digital devices, such as computers, smartphones,
    tablets, and even entire networks.
    nowadays most references to hacking, and hackers,
    characterize it/them as unlawful activity by
    cybercriminals
    What is hacking?

    View Slide

  6. Many think that “hacker” refers to some self-taught whiz
    kid or rogue programmer skilled
    Who are
    hackers?
    Slides 10

    View Slide

  7. Just for fun
    Show off
    Spy someone
    Cybercrimes
    Steal information
    Money
    Power
    Ego
    Breakup Glow?
    Why
    Hackers
    Hack?
    Slides 09

    View Slide

  8. Bad!
    White Hat Grey Hat Black Hat
    The Good one!
    ( Nanmayulla lokame.mp3)
    Mix of Good and Bad!
    Type of Hacker
    Slides 11
    Great power comes with great responsibility

    View Slide

  9. Slides 17
    Cybercrime up 600% Due to COVID-19
    Pandemic
    It is estimated that, worldwide, cyber crimes will
    cost $10.5 trillion annually by 2025.
    Cybercrime cost makes up a value worth 1% of
    the Global GDP.
    71.1 million people fall victim to cyber crimes
    yearly.
    It costs $180 per record with PII that was
    breached.
    So What?

    View Slide

  10. Slides 08
    Recent Hacks

    View Slide

  11. Slides 07
    Reconnaissance
    Scanning
    Gaining Access
    Maintaining Access
    Clearing Tracks
    How Hacker's Hack?

    View Slide

  12. Slides 06
    Network
    Host
    People Involved
    First step of Hacking, Information gathering phase
    Collect as much info as possible
    Active and Passive Recon
    Reconnaissance

    View Slide

  13. Slides 06
    Port Scanning: Open ports, Services running etc
    Vulnerability Scanning: Check target's vulnerability
    Network Mapping: Get of overview of connected
    systems
    Scanning

    View Slide

  14. Slides 06
    Password attacks
    Social engineering
    Malwares
    Gaining Access
    Phase where attacker breaks into system/Network

    View Slide

  15. Slides 06
    Trojan
    Rootkits
    Malicious files
    Maintaining Access
    Phase where attacker wants persistence connection
    without user's knowledge

    View Slide

  16. Slides 06
    Modifying/corrupting/deleting logs, registry
    Uninstall and delete applications and file
    Clearing Tracks
    Not getting trapped

    View Slide

  17. Slides 12
    How to get started
    How internet works
    What happens behind the browser
    SCRIPTING AND PROGRAMMING
    Bash, Python, GO (No need to be an
    expert)
    HOW APPS/Devices WORKS
    Try Everything and Select!

    View Slide

  18. Offensive vs Defensive
    Slides 15
    Security Operations Center (SOC)
    Threat Intelligence
    Digital Forensics and Incident Response (DFIR)
    Penetration Tester
    Red Teamer - Plays the role of an adversary
    Security Engineer


    View Slide

  19. Slides 06
    Googling most of the time
    Reading Reading Reading
    Videos [Talks, POCs]
    Vulnerable Labs
    Where should i learn?
    https://github.com/sbilly/awesome-security

    View Slide

  20. Slides 06
    Where should i learn?
    https://github.com/sbilly/awesome-security
    Infosec Twitter
    Bugbounty Tips
    Direct access to experts
    Giveaways
    Youtube
    Stok
    Nahamsec
    InsiderPhD
    ...
    Labs
    Tryhackme
    Hackthebox
    WebSec Acadamy
    Pentesterlab
    hacker101 ctf
    Blogs
    Medium! Special shoutout to
    Infosec Write-ups
    Pentesterland
    Hackerone disclosed Reports

    View Slide

  21. How I Started?
    Slides 13

    View Slide

  22. What I learnt after 100days?
    Slides 13
    Learn to google
    Learn to ask the right question.
    Don't expect someone will spoon feed you, You have to do your work.
    Engage with the community, gather people around you having the same mindset.
    Network as much as you can.
    Give back to the community.
    Persistence is the key.
    There is no overnight success.

    View Slide

  23. Slides 13
    "To follow the path:
    Look to the master.
    Follow the master.
    Walk with the master.
    See through the master.
    Become the master."
    - Zen Proverb

    View Slide

  24. Slides 13
    Internship/Job Hunting?
    Skills
    Up skill yourself
    Portfolio
    Make a strong portfolio for
    yourself. Be a contributor,
    curator or a builder.
    Apply
    Raw Application or
    Referral
    Good Resume/CV
    The ultimate aim in this
    competitive field is that you
    need to stand out in the crowd
    https://www.p1boom.com/2022/01/how-to-find-your-first-cyber-security-internship.html.html

    View Slide

  25. Slides 13
    Make a strong portfolio for yourself.
    Be a contributor, curator or a builder.


    Blogs, Tools, Tweets, Repos, Newsletter,
    Talks etc..
    You lose nothing by sending a “Hi”
    message, but can gain much more.

    View Slide

  26. Slides 14
    Importance of Community
    Likeminded peoples
    More Opportunity to grow and
    improve
    Chance to meet your future
    cofounder, hacking buddy,
    partner!
    Unimaginable support
    Infosec Twitter, LinkedIn, Discord.

    View Slide

  27. Slides 15
    https://initcrew.com

    View Slide

  28. Slides 16
    Learn More!

    View Slide

  29. Thank You For
    Attention
    Slides 19
    You lose nothing by
    sending a “Hi”, but can
    gain much more.


    YES NO
    Twitter: @cyph3r_asr
    LinkedIn: anugrah-sr
    Web: www.anugrahsr.in

    View Slide