dr_binks
asked on
how would one know if one has been 'hacked'?
ok, this is a pretty weird question ;)
how would somone know if they have been 'hacked' (besides the obvious accounts mysertously being craeted.. file being created/going missing) etc
I have only been a net admin for this company for about 8 months and although before then I did read as much as I could on computer security.. but because im not an expert im pretty sure one day if not already this network will be hijacked... but how would I knwo if somone on the outside has already been in the network?
ive never seen anythjing out of the ordinary.. not even in the security logs. Its the same at home.. I dont think my home network has ever been 'hacked', but im not at careful about doing things as I am at work (i.e. I log in as admin and do all my work on that account at home :/ )
but in saying this.. I am not a moron.. I dont go around clicking on suspicious things and I know about social engineering (watich TakeDown and reading Mitnicks book).. so maybe thats why ive never expericenced a 'hacking'
I dunno.. your opinions are most welcome :)
~Binks
how would somone know if they have been 'hacked' (besides the obvious accounts mysertously being craeted.. file being created/going missing) etc
I have only been a net admin for this company for about 8 months and although before then I did read as much as I could on computer security.. but because im not an expert im pretty sure one day if not already this network will be hijacked... but how would I knwo if somone on the outside has already been in the network?
ive never seen anythjing out of the ordinary.. not even in the security logs. Its the same at home.. I dont think my home network has ever been 'hacked', but im not at careful about doing things as I am at work (i.e. I log in as admin and do all my work on that account at home :/ )
but in saying this.. I am not a moron.. I dont go around clicking on suspicious things and I know about social engineering (watich TakeDown and reading Mitnicks book).. so maybe thats why ive never expericenced a 'hacking'
I dunno.. your opinions are most welcome :)
~Binks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
And, if you do stop by Robert Hensing excellent blog - here's some more articles that
you may find interesting:
http://blogs.msdn.com/robert_hensing/archive/2005/01/10/350344.aspx
http://blogs.msdn.com/robert_hensing/archive/2005/02/22/378363.aspx
http://blogs.msdn.com/robert_hensing/archive/2005/01/14/353156.aspx
Some long reads, but worth it. :)
Regards!
RF
you may find interesting:
http://blogs.msdn.com/robert_hensing/archive/2005/01/10/350344.aspx
http://blogs.msdn.com/robert_hensing/archive/2005/02/22/378363.aspx
http://blogs.msdn.com/robert_hensing/archive/2005/01/14/353156.aspx
Some long reads, but worth it. :)
Regards!
RF
ASKER
hehe, thanks :)
ill wait for some more comments then ill see about giving out points
cheers
~Binks
ill wait for some more comments then ill see about giving out points
cheers
~Binks
No problem! :)
Here's some more useful tools to help find things that try to hide (free):
{Silent Runners} http://www.aaronoff.com/silent_runners/
{EScan-mwav} http://www.mwti.net/antivirus/free_utilities.asp (free version)
{GetService} http://www.bleepingcomputer.com/files/spyware/getservice.zip
{DLLCompare} http://www.gatesofdelirium.com/ee/tools/
{Startdreck} http://www.niksoft.at/_data/startdreck.zip
Good luck!
RF
Here's some more useful tools to help find things that try to hide (free):
{Silent Runners} http://www.aaronoff.com/silent_runners/
{EScan-mwav} http://www.mwti.net/antivirus/free_utilities.asp (free version)
{GetService} http://www.bleepingcomputer.com/files/spyware/getservice.zip
{DLLCompare} http://www.gatesofdelirium.com/ee/tools/
{Startdreck} http://www.niksoft.at/_data/startdreck.zip
Good luck!
RF
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks for your info guys :)
Your welcome! :)
By the way - I do agree with the concepts that PA comments about above.
Having to use these tools is like "closing the barn door after the horeses have escaped"!
Here's an interesting bit of info on "Social Engineering" and security:
http://infosecpotpourri.blogspot.com/
OucH!!! :)
RF
By the way - I do agree with the concepts that PA comments about above.
Having to use these tools is like "closing the barn door after the horeses have escaped"!
Here's an interesting bit of info on "Social Engineering" and security:
http://infosecpotpourri.blogspot.com/
OucH!!! :)
RF
well, I guess you don't have to worry about renaming it - that has been taken care of.
See here:
http://blogs.msdn.com/robert_hensing/archive/2005/03/23/400934.aspx
Good luck!
RF