DEV Community: Rahul Varma

Simple Wap Scraper for Sensitive Information

Rahul Varma — Tue, 17 Dec 2024 08:25:59 +0000

This python project will show how web scrapers can be designed for grabbing sensitive information from public websites. The script, in short, looks for keywords relevant to personal information.

Example Code:

import requests

from bs4 import BeautifulSoup

def scrape_sensitive_data(url):

response = requests.get(url)

soup = BeautifulSoup(response.text, 'html.parser')

for element in soup.find_all(text=True):

if "password" in element.lower():

print(f"Sensitive data found: {element.strip()}")

url=input("Enter URL to scrape: ")

scrape_sensitive_data(url)

Use Case: this script could be used for penetration testing website security for sensitive information exposure such as passwords or emails.

Note: Scraping has legal implications, so always ask permission from the website owners.

Basic Network Scanner

Rahul Varma — Tue, 17 Dec 2024 08:23:43 +0000

This script written with Python scans the local network for identifying active devices. Useful for network monitoring to check the unapproved device on your network.

Code Example:

import os

def scan_network(network):

print("Scanning network : " + network)

response = os.popen("ping -c 1 " + network).read()

if response.find('1 packets transmitted, 1 received') >= 0:

print("The network is online-" + network)

else:

print("The network is offline-" + network)

for i in range(1, 255):

scan_network("192.168.1." + str(i));

Use Case: This can be used further in the audit of networks to identify unauthorized devices that may have connected to your system.

Tip: You can modify the script to scan your entire subnet and produce an inventory of devices connected to your network.

Two-Factor Authentication System

Rahul Varma — Tue, 17 Dec 2024 08:20:11 +0000

This project implements a basic TOTP (Time-Based One-Time Password) generator using Python's pyotp library.

Code Example:

import pyotp

import time

key = pyotp.random_base32()

totp = pyotp.TOTP(key)

print("Generated OTP:", totp.now())

time.sleep(30)

print("Next OTP:", totp.now())

Use Case: Useful for understanding the workings of two-factor authentication and how time-based codes are generated.

Tip: Integrate this with a login system to simulate 2FA in action.

Password Hashing in Python

Rahul Varma — Tue, 17 Dec 2024 08:18:38 +0000

One must never store passwords plainly. Let's learn the technique of hashing passwords securely using Python:

import hashlib

password = "securepassword"

hashed = hashlib.sha256(password.encode()).hexdigest()

print(f"Hashed password: {hashed}")

Hashing means that even if someone manages to break into the database, they will not get to know what the plaintext passwords are. Now, most modern systems use advanced algorithms like bcrypt, which also include salting.

Pro tip: Never ever roll out your own cryptographic stuff; it will lead you nowhere. Just use proven libraries like bcrypt or argon2.

This builds trust and makes the user secure.

AI in Fighting Phishing

Rahul Varma — Tue, 17 Dec 2024 08:13:38 +0000

Phishing is an attack that is usually aimed at manipulating users into giving away sensitive information. AI plays an active role in countering these scams.

How AI helps:

Email Filtering: A machine learning model can identify a phishing email by tracing suspicious patterns and links and even sender behavior.
Real-time alerts: Phishing warning from an AI-powered browser alerting a user browsing a known phishing site is based on the real-time threat database.
Example:
For example, Gmail from Google uses AI on their backend to block nearly 99.9% visiting phishing emails.

But now the attackers have come up with another method with the aid of AI, which personalizes phishing emails to an extent that they can be difficult to detect. For instance, they can generate extremely sophisticated emails based on social media profiles, making detection almost impossible.

Take Away: While AI makes defenses more robust against phishing attacks, the human element of vigilance cannot be overemphasized. Don't click on links or attachments from untrustworthy sources!

AI in Cybersecurity - The Double-Edged Sword

Rahul Varma — Tue, 17 Dec 2024 08:12:31 +0000

Despite revolutionizing cybersecurity, artificial inteligence is not entirely free of challenges. One set of problems arises from the fact that, on the one hand, it helps people accelerate their searches for threats by sifting through huge datasets and identifying anomalies in behavior, while, on the other hand, it enables attackers to innovate more intelligent versions of their malware and phishing threats.

Positive Effects:

Threat Detection: AI in SIEM systems, for example, can easily detect any unusual behavior using machine learning, thus flagging possible threats in real time.

Predictive Analytics: AI can forecast the probable vulnerabilities and attacks that might occur based on past events.

Automation: Reduces manual workload through automation of repetitive tasks, such as log analysis.

Negative Effects:

AI-Based Attacks: Various social engineering attacks using deepfake generators and automated phishing kits create more believable attacks.

Bias and False Positives: Ill-trained AI causes false alarms or may even fail to alert about serious threats.

This is the support that AI gives to security; however, as defenders innovate, so do attackers. Finding the right balance between these two is very important to ensure that a safer digital future is possible.

Aircrack-ng: Assessing Wi-Fi Security

Rahul Varma — Mon, 16 Dec 2024 11:29:28 +0000

Aircrack-ng is a range of utilities used for penetration testing on WiFi networks. It enables the ethical hackers to discover the weak areas of WPA/WPA2 encrypted security thus making wireless security strong.

Practical Example:
Now, if you are assigned to implement a Wi-Fi audit on a company, assume the following. With Aircrack-ng you can also challenge their password strength.

Start with airodump-ng wlan0 in order to start sniffer process. It monitors Wi-Fi Traffic and gathers handshake packets during connection string attempts.
Use Aircrack-ng to perform a dictionary attack with:

aircrack-ng capturefile.cap –w wordlist.txt

The tool tries to resolve the password as per the options existing in the wordlist.txt.

Output: In case the password is compromised to be a simple one, say ‘password123’ you can suggest that the user use complicated and long passwords.

It also assist in identifying misconfigured or rogue access point which is crucial towards creating a secure wireless network.

Tip: Always get a permission to conduct wireless testing. Using Aircrack-ng is prohibited and wrong when performed by any party other than the owner of the network being tested.

Takeaway: Specifically to prevent unauthorized access, frequent password changes, strong encryptions are crucial for the safety of Wi-Fi grounds.

Hydra: Password Cracking with Ethical Purpose

Rahul Varma — Mon, 16 Dec 2024 11:28:29 +0000

Hydra is a form cracker which can be used to crack Web applications, ftp and telnet, pop3 and imap accounts that include positive results by ethical hackers on systems with weak passwords. The equities’ speed and flexibility make it the list’s favourite for spot vulnerability weak accounts.

Practical Example:
Suppose you’re to check whether an organization’s SSH server’s credentials are vulnerable. By means of Hydra, one can launch an unauthorized password cracking on approved systems.

Gather potential usernames and passwords into text files (users.txt and pass.txt).

Run the following command:

hydra -L users.txt -P passwords.txt ssh://192.168.1.10

Hydra doesn’t work randomly but it tries all possible combinations of a username with passwords of the server with great systematic.

Output: If it detects a working credential like admin:password123then you can show your audience the dangers of using such phrases as passwords.

Hydra has the capability to handle lots of protocols such as FTP, HTTP, and even MySQL and hence will be appropriate for various systems. The insights assist organizations rise the bar and regain control over lax password policies and use of two-factor authentication.

Tip: Use Hydra ethically. It’s useful, but if used inappropriately it could result to legal ramifications. Testing should only be done after getting permission to do so.

Lesson: As for the brute force attacks, the users need to be informed about the complexity of passwords and need to update passwords more often.

Nessus: Mastering Vulnerability Assessment

Rahul Varma — Mon, 16 Dec 2024 11:24:25 +0000

Nessus is an open source vulnerability scanner that is intended to scan for security threats in systems, networks and applications. Many organizations apply it to achieve a competitive edge by fixing problems before they become threats toattackers.

Example: A company performs Nessus scan on an internal network of the company. What IS(Information Security) identifies is that some hosts may contain applications with old versions, and misconfigurations which can be used by the attackers to get into the network.

Key features of Nessus:

Comprehensive scanning: Mostly addresses operations systems, database, and applications.

Custom policies: To, through a specification of the scan, develop an understanding of how the same can be provided to match the certain requirement.

Detailed reporting: It gives analysis and recommendations that can be taken to resolve the issues obtaining in the classes.

Real-world case: An example is a retail chain that was able to identify and correct Penetration Testing in their POS systems in 2020 to curb a likelihood of a data breach using Nessus.

Tip: Nessus should be used for assessment on a regular basis in any security maintenance plan. However, it should be used in conjunction with manual testing so as to get all the necessary test conditions.

Reminder: Warying a network without asking for permission is unlawful. Nessus should also always be run with permission and according to accepted security policies.

Burp Suite: The Web Application Security Powerhouse

Rahul Varma — Mon, 16 Dec 2024 11:23:25 +0000

Burp Suite is definitely a number one tool when it comes to web application testing. It provides the features for spotting threats such as SQL injection, cross-site scripting (XSS), and broken authentication scheme.

Example: Suppose you are to perform a web usability test with an e-commerce website. You proceed to use Burp Suite and there you find that the site is not validating user input at all. This could may lead to injecting of other scripts from the attackers.

Key features of Burp Suite:

Proxy: Traficks and interprets web data.

Scanner: Automatically detects recognizable weaknesses.

Intruder: Uses the payload to take advantage of possible
vulnerabilities as it delivers them automatically.

Real-world case: An IT security firm was able to identify and report fundamental authentication vulnerabilities on a healthcare application using Burp Suite to prevent leakage of confidential patients’ information.

Tip for Beginners: First there is the Community Edition that will give you the fundamentals of the software. If you want more features for scanning and to automate the document process, try the Professional version. To cover as many vulnerabilities as possible integrate Burp Suite with OWASP’s guidelines.

Reminder: Do not forget to check web applications with authentic accounts, if available. Burp Suite’s strength requires its stewardship to be ethical.

Wireshark: A Window into Your Network Traffic

Rahul Varma — Mon, 16 Dec 2024 11:19:15 +0000

Wireshark is a network protocol analyzer that captures the communication’s data in real-time across a network. It is a very useful tool in identifying a number of network problems, identifying suspect traffic, and getting an understanding of protocols.

Example: While performing a security check, you will use Wireshark in analyzing the strange traffic originating from a workstation. They found that the tool shows that the system is communicating with another server, thereby suggesting malware infection.

Wireshark’s capabilities include:

Scoping through packet information on HTTP, DNS, TCP, and other protocols getting full information.
Restricting the traffic in order to study particular eventualities or abnormities.

Identifying the presence of attack such as ARP spoofing, DDoS and other related attack symptoms.

Real-world case: An IT team of one of the universities was able to catch internal data leakage occurring by a breached device and stop it with the help of Wireshark.

Wireshark isn’t difficult to install and use, but as with many tools that deal with massive amounts of data, analyzing results takes work. This lets you find out what is a normal traffic behavior at your site and focus on seeing when there is a sudden increase or when the source is an IP address that is not normally used.

Tip: Wireshark is a two edged sword. Even though it is very useful for diagnostics, it may be employed for spying. Ideally, packet capture should be done on networks that you are allowed to capture packets on.

Introduction to Metasploit: A Hacker's Toolkit

Rahul Varma — Mon, 16 Dec 2024 11:09:42 +0000

Metasploit is a powerful tool one of the widely used tools in the world for carrying out penetration testing by the ethical hackers. Therefore it makes it easier to discover, manipulate and ultimately confirm these weaknesses another tool crucial for securing networks.

Example: Let’s say you are in a position where you have to carry out vulnerability assessment of a specific company’s network security.

Metasploit shows you a target that is a server which has a weak application and needs an update. When performing a faux exploit you merely illustrate how a bad guy might be able to gain unauthorized access.

Key features of Metasploit:

Exploitation: Start with canned attacks in order to determine which of the vulnerabilities works.

Payloads: Create your own payload such as reverse shell in order to mimic real attack scenarios.

Post-exploitation: Scanning the systems that have been penetrated to identify other weaknesses.

Real-world case: The hospital was targeted by the ethical hackers who were able to spot a severe flaw in the hospital system using Metasploit and also rectify the same before being exploited and used to cause a data breach in 2021.

Any novice to the Metasploit Framework can begin their journey with the Metasploit Community Edition. It is often used in cooperation with tools that scan networks like Nmap, or those which analyze traffic like Wireshark for example.

Tip: However, Metasploit is a tool that should be used with precautions and strict permission from around it. It is quite a relevant note, as knowledge of the enemy’s ways is the best defense strategy.