CSS

CLUB

2021-22 Semester 2 (Theme: Hacking Basics)

11th February 2022

We came together to explore and solve practical exercises on online and offline password cracking (tool used: Xhydra, John the Ripper). Participants created user accounts for their neighbors who then need to crack the account.

25th February 2022

This week we had fun with taking full control over a Windows machine using the Metasploit framework and Armitage. We managed to "crack for root " and took screenshot of the victim machine and browse the file system looking for sensitive information.

11th March 2022

This time, together, we explored the bind shell and reverse shell attack approaches and tried some firewall settings to protect against bind shell attacks. Afterwards, we bypassed the firewall protection using the reverse shell approach.

25th March 2022

We played with vulnerability scanners to identity vulnerbilities in victim machines. Besides, we also attempted to attack a Windows machine via Metasploit command line.

8th April 2022

This week we changed from the Windows target to a Linux target and carried out command line based exploitation.

29th April 2022

In the last session of the Semester 2, we will explore different techniques for web application and web server attacks and defence.