Anonymous Security Scanning and Browsing

Post on 23-Feb-2017

436 views 2 download

Preview:

Click to see full reader
Report this document
SHARE

transcript

Anonymous Scan

Topics to be Covered• Why to be Anonymous – Scans and Browsing• What is TOR• Socks Proxy , DNS Leaks• Using TOR – Browser Level , Terminal (config)• Proxy chains ( config)• Using Nmap, nikto, burp with Tor

Why to be Anonymous

• Privacy reasons – Citizens • Business need to keep Trade Secrets, Network

security • Govt – for its security• Military, Law enforcement orgs needs

anonymity to get their job done • Anonymity isn't cryptography, steganography

Operating Systems and Applications leak your info

Info. Getting leaked via

• Browser Plug-in, Cookies, Extensions, • Shockwave/Flash, Java, QuickTime and even

PDF

TOR “The onion router”

• online anonymity software and network• open source, freely available• active research environment

Estimated 3,00,000 daily Tor users

Works on Relay Principle

Each node knows only the previous hop and the next hop. No node in the path can discover the full path

• TOR uses Onion Routing • Onion Routing technique for anonymous

communication over a network. • Messages are encapsulated in layers of

encryption.

Socks Proxy

• It’s a Protocol / Socks – Socket Secure• A SOCKS server is a general

purpose proxy server that establishes a TCP connection to another server on behalf of a client

TOR Browser Level

• Download TOR• Run

Steps to Install1. Install TORsudo apt-get install tor2. Install proxychainssudo apt-get install proxychains3. Open /etc/proxychains.conf & add

[ProxyList] # add proxy here ... # meanwile # defaults set to "tor" socks4 127.0.0.1 9050

Start and Test TOR

1. sudo service tor start (llly, stop and restart)2. sudo tor status (to check the status)3. sudo proxychains firefox www.ipchicken.com

DNS Leaks

• traffic leaks outside of the secure connection to the network

• Under certain conditions, • OS will continue to use its default DNS servers

instead of the anonymous DNS servers • Results in DNS Leaks

Nmap, nikto

• sudo proxychains nmap -sT –PN < IP address>• sudo nikto proxychains <host>• For all command line scans…..

Scan on abc.com

IP belongs china’s ISP

Burp suite

• Install TOR• Go to <OPTIONS> • Set SOCKS as 127.0.0.1 9050• NOTE : – Proxy settings in foxy proxy and burp suite will

same as 127.0.0.1 8080

Top related

On Identifying Anomalies in Tor Usage with Applications in ...Tor [12] is an approach to anonymous web-browsing that offers realistic compromises between latency, usability, and the
Documents
Large Scale Anonymous Port Scanning - MIS … Scale Anonymous Port Scanning By ... Table 2 Nmap flags used ... Nmap was the chosen port scanning tool as it is both accurate
Documents
Open and Dark Web Research: Tips and Techniques · 2021. 7. 9. · 1 Table of Contents Silo for ResearchIntroduction Silo for Research (Toolbox) is a secure and anonymous web browsing
Documents
Web Browsing and Searching
Documents
Private Browsing v0.2.4
Documents
Genome Browsing
Documents
Browsing Internet [Compatibility Mode]
Documents
Decoder-modem Browsing Manual
Documents
Browsing Security
Documents
User-Curated Browsing
Documents
Profile Stitching for Marketers & GDPR - Infosys€¦ · anonymous user logs into the company’s website and performs search/browsing activity. Later, when he registers with the
Documents
1 smart browsing
Documents
Browsing the Web
Documents
Internet browsing
Internet
Trustworthy Browsing
Documents
ASSOCIATIVE BROWSING
Documents
Browsing International Style
Documents
UCognito: Private Browsing without Tearsucognito...Problem: Different Definitions of Private Browsing 5 Use of persistent data in private browsing mode Firefox Chrome Incognito Opera
Documents
03 browsing the filesystem
Technology
Anonymous Microblogging Browsing Privacy-Preserving Twitter …users.ics.forth.gr/~panpap/thesis/panpap_msc_thesis... · 2019-05-20 · Why not N-tuples? Whenever a user is interested
Documents

Copyright © 2018 DOCUMENTS