Workshop presentatie - nve - 31 -01-2017
-
Upload
jochen-den-ouden -
Category
Science
-
view
149 -
download
1
Transcript of Workshop presentatie - nve - 31 -01-2017
![Page 1: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/1.jpg)
H A C K E N VA N H E T E X A M E N
J O C H E N D E N O U D E N V E T E R I S I T S E R V I C E
![Page 2: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/2.jpg)
/ W H O I S :
• Jochen den Ouden
• IT Security Specialist
• Ethical Hacker
• Adviseur o.a. security testing, ISO27001 en elke vorm van informatie beveiliging
• Trainer informatiebeveiliging en hacking
• Docent IT Security
• Certified Ethical Hacker
• Secure Programmer
![Page 3: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/3.jpg)
![Page 4: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/4.jpg)
![Page 5: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/5.jpg)
![Page 6: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/6.jpg)
W AT I S E E N H A C K E R ?
hac·ken (hackte, heeft gehackt)
1. inbreken in een computer
Bron. Van Dale
![Page 7: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/7.jpg)
W AT I S E E N H A C K E R ?
hac·ken (hackte, heeft gehackt)
1. iemand die (computer) techniek anders gebruikt om aan te tonen dat er mogelijk misbruik gemaakt kan worden van het systeem
2. ethical hacker; iemand die zaken laat zien die niet zouden mogen kunnen met de bedoelde (computer)techniek. Op contractbasis.
Bron. Jochen den Ouden
![Page 8: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/8.jpg)
N I E U W S
![Page 9: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/9.jpg)
![Page 10: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/10.jpg)
![Page 11: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/11.jpg)
![Page 12: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/12.jpg)
![Page 13: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/13.jpg)
![Page 14: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/14.jpg)
“ Een achttienjarige jongen uit Rotterdam hackte in 2013 vanaf zijn zolderkamer zo’n tweeduizend computers. “
![Page 15: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/15.jpg)
“Een hackende havoleerling kraakte vorig jaar het account van het Alvinus in Sneek. Hij kreeg daardoor toegang tot een natuurkundetoets en deelde die met
zeker vijf andere scholieren.”
![Page 16: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/16.jpg)
“Twee jongens van 15 en 16 jaar voerden vorige zomer een reeks DDoS-aanvallen uit op hun hun school in
Amstelveen. Door middel van een speciaal programmaatje vuurden ze zo veel verzoeken af op het
netwerk, dat het hele systeem eruit lag.”
![Page 18: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/18.jpg)
![Page 19: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/19.jpg)
DEMO
![Page 20: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/20.jpg)
U bent een hacker
![Page 21: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/21.jpg)
![Page 22: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/22.jpg)
![Page 23: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/23.jpg)
W AT W A S H E T W A C H T W O O R D ?
![Page 24: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/24.jpg)
W E D O E N PA S S W O R D S D U S A L F O U T V O O R M E E R D A N 3 0 J A A R
![Page 25: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/25.jpg)
T O P 1 0 PA S S W O R D S
• 123456
• password
• 12345678
• qwerty
• abc123
• 123456789
• 111111
• 1234567
• Welkom01
• Welkom123
![Page 26: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/26.jpg)
W I E G E B R U I K T E E N PA S S W O R D M E E R D E R E K E R E N ?
![Page 27: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/27.jpg)
P H I S H I N G M A I L S
![Page 28: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/28.jpg)
P H I S H I N G M A I L S M A A R D A A R K L I K T T O C H N I E M A N D O P ?
![Page 29: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/29.jpg)
T O C H ?
![Page 30: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/30.jpg)
W I E K L I K T E R E I G E N L I J K O P P H I S H I N G M A I L ?
![Page 31: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/31.jpg)
![Page 32: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/32.jpg)
7 VA N 4 0
![Page 33: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/33.jpg)
![Page 34: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/34.jpg)
1 1 VA N 4 0
![Page 35: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/35.jpg)
1 8 VA N 4 0
![Page 36: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/36.jpg)
W AT V O O R G E V O L G E N H E E F T D I T V O O R D E O R G A N I S AT I E ?
![Page 37: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/37.jpg)
W AT V O O R G E V O L G E N H E E F T D I T V O O R D E O R G A N I S AT I E ?
• Core business ligt op straat
• Examens zijn te downloaden zonder dat iemand dit weet
• Correspondentie is in te zien
• Ik kan aankopen doen op bol.com :)
![Page 38: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/38.jpg)
G E W O O N V R A G E N …
![Page 39: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/39.jpg)
![Page 40: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/40.jpg)
T E C H N I E K
![Page 41: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/41.jpg)
W I F I P I N E A P P L E
![Page 42: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/42.jpg)
U S B R U B B E R D U C K Y
![Page 43: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/43.jpg)
W AT I S E R N O G M E E R T E K O O P ?
• Creditcardgegevens $4
• 300 ip adressen $6
• Persoonlijke informatie $0,16 per mb
• Inloggegevens voor e-mailaccounts $160
• Reeks mobiele nummer $250
![Page 44: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/44.jpg)
![Page 45: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/45.jpg)
![Page 46: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/46.jpg)
W AT I S D I T ?
![Page 47: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/47.jpg)
M A A R W AT M O E T E N W E D O E N ?
![Page 48: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/48.jpg)
B E W U S T W O R D I N G I S D E S L E U T E L
![Page 49: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/49.jpg)
B E W U S T W O R D I N G I S D E S L E U T E L
• Opleiding en training
• Weet wat er mis kan gaan
• Wees bewust van ICT gevaren
• Denk drie stappen vooruit
• Meten, weten, ontzorgen
![Page 50: Workshop presentatie - nve - 31 -01-2017](https://reader034.fdocument.pub/reader034/viewer/2022051507/589a45501a28ab8c588b6f19/html5/thumbnails/50.jpg)
B E W U S T W O R D I N G I S D E S L E U T E L
• Jij, u, jezelf en je collega
• De mens is altijd de zwakste schakel
• Software is altijd true or false
• Jij niet