Ανάπτυξη αρθρώματος για το εργαλείο Ncrack
Module development for the Ncrack tool
View/
Keywords
Ncrack ; Couchbase ; Brute force ; Modules ; Password dictionaryAbstract
The main goal of this thesis is to study the extensibility of Ncrack, a well known open source network security tool. The thesis is structured in two parts. In the first and most important part, the architecture of Ncrack is analysed and an Ncrack module for the couchbase protocol is developed and integrated into Ncrack software. The second part deals with the implementation of a minimal web application, that will be used for the purpose of collecting username, password and other basic information for IoT devices, in order to “feed” this information to Ncrack (i.e. it will help us to enrich the Ncrack password dictionary). For the first part of the thesis, Ncrack and the Couchbase protocol are first described. Then the methodology and the concept we followed to succeed in implementing the couchbase module are presented. The first part ends with illustrative examples by attacking a couchbase server using the couchbase module (always via Ncrack) to find the credentials. For the second part of the thesis, examples are presented during the operation of the web application. The security mechanisms that are implemented in the web application are described, along with the protection measures for various web attacks, as well as for the password attacks which are the main goal of Ncrack. The thesis concludes with proposals for future extensions of the proposed Couchbase module.
Postgraduate Studies Programme
Προηγμένα Συστήματα ΠληροφορικήςDepartment
Σχολή Τεχνολογιών Πληροφορικής και Επικοινωνιών. Τμήμα ΠληροφορικήςNumber of pages
42Language
GreekCollections
Except where otherwise noted, this item's license is described as
Attribution-NonCommercial-NoDerivatives 4.0 Διεθνές
Attribution-NonCommercial-NoDerivatives 4.0 Διεθνές