Tải bản đầy đủ
Open anodier tab in die web browser, and surf anonymosly using diis proxy.

Open anodier tab in die web browser, and surf anonymosly using diis proxy.

Tải bản đầy đủ

Module 03 - Scanning Networks

p ro x y
r lc

Edit y ie *

History

Bookmark:

Tools

Ottecbngyour location..

| p r a y i c ‫־‬. « - C e r a c o n G oogle

< 9 wvw* g c o g k .it ?hb(t& g5_nf=1& pq-prcr)■ w r ‫^־‬rc?cr>- 0&g?_f-taq-pro>fy‫»־‬scfvcr& pt-p8b 1»-

^
*Tu

R ic e r c a

Google
0 3 After the anonymous
proxy servers have become
available for switching you
can activate any one to
become invisible for die sites
you visit.

server Cerca con Google - Mozilla Firefox

fcWp

I m m a g in i

M aps

P la y

Y ouT ube

M ew s

G m a il

D o cu m e n t!

C a le n d a r

C

‫ ־‬G ccgfc

P

*

U ttio

proxy server

Ricerca

P ro xy
Immagini

Maps

Wikipodia

it w k jp e d ia .o tg A v ik n 'P ro x y
In in fo rm atica e te le c o m u n ic a ^ o w u n p r o x y 6 un prog ram m a c h e s i ml e i pone tra un
c lie nt ed un s e r v e r fa re n d o d a tr a m r e o n e e rfa c c ia tra 1 d u e h ost ow ero ...
A ltri u si d e l term rne P r o x y

P io x y H T T P

Note

V o a correlate

V id e o
M oaze
S h o pp in g

Public Proxy Servers - Free Proxy Server List
ivwiv p u b lic p r o x y s e r v e r s c o n V

T ia C u a q u e s ta pagina

P u b lic P r o x y S e r v e r * is a free a n d *!dependent proxy c h e c k in g s y s le m . O u r service
h elps you to protect y ou r K te n tly and b y p a s s surfing re strictio n s s in c e 2 002.

Ptu contanuti

P r o x y S ervers - S o r e d B y R a tin g - P r o x y S ervers S orted B y C o u n try - U s e fu l L in k s

ItaHa

w v w p r o x y s e r v e r c o m ‫ • '׳‬T ra d u c i q u e s ta pagm a

Cemtm locnKtA

Thn boet fi!!*‫ י‬P io x y S e r v e r out thar®' S lo p s e a rc h in g a proxy list (or p roxies that are
never taut or do n o i even get anl* 1e P r o x y S e r v e r c o m h as you covered from ...

Proxy Server - Pest Secure, rree. Online Proxy

Proxoit - Cuida alia naviaazione anonima I proxy server

FIGURE 1214: Surf using Proxy server

Lab Analysis
Document all die IP a d d r esses of live (SSL) proxy servers and the connectivity
you discovered during die lab.
T o o l/U tility

In fo rm atio n C o llected /O b jectiv es A chieved
Server: List o f available Proxy servers
S elected Proxy Server IP A ddress: 95.110.159.54

Proxy Sw itcher
S elected Proxy C o u n try N am e: ITALY
R esulted Proxy server IP A ddress: 95.110.159.67

PL E A S E TA LK T O Y O U R I N S T R U C T O R IF Y OU H A V E Q U E S T I O N S
R E L A T E D T O T H I S LAB.

Questions
1. Examine which technologies are used for Proxy Switcher.
2. Evaluate why Proxy Switcher is not open source.

C E H L ab M an u al P ag e 209

E th ica l H a c k in g an d C o u n term easu res Copyright O by E C ‫־‬Counc11
All Rights Reserved. Reproduction is Strictly Prohibited

Module 03 - Scanning Networks

In te rn e t C o n n ectio n R eq u ired
0 Y es

□ No

P latform S u p p o rted
0 C lassroom

C E H L ab M an u al P ag e 210

□ iLabs

E thical H a c k in g an d C o u n term easu res Copyright © by EC-Council
All Rights Reserved. Reproduction is Strictly Prohibited.

Module 03 - Scanning Networks

Lab
w

1

3

i

Daisy Chaining using Proxy
Workbench
Proxy Workbench is a uniquepivxy server, idealfor developers, security experts, and
twiners, which displays data in real time.
ICON

KEY

2 3 ‫ ־‬Valuable
information
Test your
knowledge
‫ס‬

Web exercise

m

W orkbook review

Lab Scenario
You have learned in the previous lab how to h id e your a ctu a l IP using a Proxy
Switcher and browse anonymously. Similarly an attacker with malicious intent
can pose as someone else using a proxy server and gather inform ation like
account or bank details o f an individual by performing so c ia l en gin eerin g.
Once attacker gains relevant information he or she can hack into that
individual’s bank account for online shopping. Attackers sometimes use
multiple proxy servers for scanning and attacking, making it very difficult for
administrators to trace die real source o f attacks.
As an administrator you should be able to prevent such attacks by deploying an
intrusion detection system with which you can collect network inform ation for
analysis to determine if an attack or intrusion has occurred. You can also use
Proxy W orkbench to understand how networks are scanned.

Lab Objectives
This lab will show you how networks can be scanned and how to use Proxy
W orkbench. It will teach you how to:


Use the Proxy W orkbench tool



Daisy chain the Windows H ost Machine and Virtual Machines

Lab Environment
To carry out the lab, you need:


Proxy Workbench is located at D:\CEH-Tools\CEHv8 Module 03 Scanning
Networks\Proxy Tools\Proxy Workbench

C E H L ab M an u al P ag e 211

E th ica l H a c k in g an d C o u n term easu res Copyright © by EC-Council
AB Rights Reserved. Reproduction is Strictly Prohibited

Module 03 - Scanning Networks

You can also download die latest version o f Proxy W orkbench from
this link h ttp://proxyw orkbench.com

ZZ7 Tools
dem onstrated in
this lab are
available in
D:\CEHTools\CEHv8
Module 03
Scanning
Netw orks

I f you decide to download the latest version, then screenshots shown in
the lab might differ
A computer running W indows Server 2012 as attacker (host machine)
Another computer running Window Server 2008, and W indows 7 as
victim (virtual machine)
A web browser widi Internet access
Follow Wizard-driven installation steps to install Proxy Workbench
Administrative privileges to run tools

Lab Duration
Time: 20 Minutes

Overview of Proxy Workbench
Proxy Workbench is a proxy server diat displays its data in real time. The data
flowing between web browser and web server even analyzes FTP in passive and
active modes.

Lab Tasks
C Security: Proxy
servers provide a
level of security
within a
network. They
can help prevent
security a ttack s
a s th e only w ay
into th e network
from th e Internet
is via th e proxy
server

\

Install Proxy Workbench on all platforms o f die Windows operating system
‫׳‬W indows Server 2012. W indows Server 2008. and W indows 7)

-

Proxy W orkbench is located at D:\CEH-Tools\CEHv8 M odule 03
S can n in g N etw orks\P roxy T ools\Proxy W orkbench

‫ ר‬You can also download the latest version o f Proxy W orkbench from

this link h ttp ://proxyworkbench.com
4. Follow the wizard-driven installation steps and install it in all platforms
o f W indow s operatin g s y s te m
_

6.

C E H L ab M an u al P ag e 212

This lab will work in the CEFI lab environment - on W indow s S erver
2 0 1 2 , W indow s S erver 2 0 0 8 ‫ י‬and W indow s 7
O pen Firefox browser in your W indow s S erver 2012, and go to T ools
and click op tion s

E th ica l H a c k in g an d C o u n term easu res Copyright O by EC •Council
AU Rights Reserved. Reproduction is Strictly Prohibited.

Module 03 - Scanning Networks

Google Moiillo Firefox
colt | HtJp

CW-I
a<*SM»A

Downloads
moderns

S e a r ch

Im a g es

fi

e •!1• -■cc9u

St*UpS^K.
♦You

D ocu m en ts

Web Developer

C alendar

*

M ote •

Page Info

5‫«ז‬1£‫ו‬1*«)‫ז‬6 ‫ ״זי הי‬9
Cle«r Recent Ustsr.

Sign n
01+“ Sh1ft*W

Google
Google Search

I'm feeling Lucky

AtfM«t1«M1g P io g a m m e i

Bu sin ess Soltiion*

P ir a c y t Te

• Google

About Google

Google com

FIGURE 13.1: Firefox options tab

7.

Go to Advanced profile in die Options wizard o f Firefox, and select die
Network tab, and dien click Settings.
Options

‫§י & ם‬

G e n e ra l

f t The sockets panel
shows the num ber o f Alive
socket connections that
Proxy W orkbench is
managing. During periods
o f n o activity this will drop
back to zeroSelect

Tabs

G e n e ra l | M e tw o rV

C o n te n t

%
A p p l ic a t io n s

j U p d a t e | E n c r y p t io n

p
P ii v a c y

S e c u r it y

3

S> nc

A dvanced

j

C o n n e c tio n
|

C o n f ig u r e h o w h r e f o i c o n n e c t s t o t h e I n te r n e t

S g t n g i.

C a c h e d W e b C o n te n t
C le a r N o w

Y o u r v r e b c o n t e n t c a c h e >s c u r r e n t ly u s in g 8 .7 M B o f d i s k s p a c e
I

I O v e r r id e a u t o m a t e c a c h e r r a n a g e m e n t

Limit cache to | 1024-9] MB of space
O f f lin e W e b C o n t e n t a n d U s e r D a ta
You

1 a p p lic a t io n

M

T e ll m e w h e n a * refccit* a c lr t t o s t o r e H a t* f o r o f f l in e u c e

C le a r N o v /

c a c h e i s c j i i e n t l / u s in g 0 b y t e s o f d is k s p a c e

Exceptions..

T h e f o llo v / in g t v e b s it e s a t e a lo w e d t o s to r e d a ta f o r o f f lin e u s e

Bar eve..

OK

Cancel

H e lp

FIGURE 13.2 Firefox Network Settings

C E H L ab M an u al P ag e 213

E th ica l H a c k in g an d C o u n term easu res Copyright O by E C ‫־‬Counc11
All Rights Reserved. Reproduction is Strictly Prohibited

Module 03 - Scanning Networks

S The sta tu s bar
sh o w s th e d etails
o f Proxy
Workbench*s
activity. The first
panel displays th e
am ount of data
Proxy Workbench
currently h as in
memory. The
actual am ount of
m emory that
Proxy Workbench
is consum ing is
generally much
more than this
due to overhead
in m anaging it.

8. Check Manual proxy configuration 111 the C onnection S ettin gs wizard.
9. Type HTTP Proxy a s 127.0.0.1 and enter die port value as 8 0 8 0 ‫ י‬and check
die option o f U se th is proxy server for all protocols, and click OK.
Connection Settings
Configure Proxies to Access the Internet
O No prox^
O Auto-detect proxy settings for this network
O iis * system proxy settings
(§) Manual proxy configuration:
HTTP Proxy:

Port

127.0.0.1
@ Use this proxy server for all protocols

SSL Proxy:

127.0.0.1

Port

8080—

£TP Proxy:

127.0.0.1

Port

8080y |

PorJ:

8080v

SO£KS Host

127.0.0.1
D SOCKS v4

No Proxy fo r

(S) SOCKS ^5

localhost, 127.0.0.1
Example .mozilla.org, .net.nz, 192.168.1.0/24

O Automatic proxy configuration URL
Rgload

OK

Cancel

Help

FIGURE 13.3: Firefox Connection Settings

10. While configuring, if you encounter any port error p le a se ignore it
11. Launch the S tart menu by hovering die mouse cursor in the lower-left
corner o f the desktop.
Scan computers by IP
range, by domain, single
com puters, or computers,
defined by the Global
N etw ork Inventory host
file

4 Windows Server 2012
WaoomW1PiW
2(dentCjiCkttr0HiKtTr
baLMcncowtuidMO.

g. - ?•
FIGURE 13.4: Windows Server 2012 - Desktop view

12. Click die Proxy Workbench app to open die Proxy Workbench window

C E H L ab M an u al P ag e 214

E th ica l H a c k in g an d C o u n term easu res Copyright O by E C ‫־‬Counc11
All Rights Reserved. Reproduction is Strictly Prohibited