SlideShare a Scribd company logo

comp security lab.ppsx

Download as PPSX, PDF
D
DesuWajana

The document discusses OpenSSL commands for encryption and decryption. It covers symmetric encryption techniques like AES-256 and asymmetric encryption with RSA key pairs. It provides examples of encrypting and decrypting a file using OpenSSL commands like openssl enc and openssl dec. It also discusses hashing algorithms like MD5 and SHA1 for generating hashes of files.

Technology
1 of 19
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
comp security lab.ppsx
• Lab 1: Installing and configuring OpenSSL • Lab 2: Introduction and commands used in openSSL • Lab 3: Encryption using conventional algorithms • Lab 4: Symmetric encryption with OpenSSL • Lab 5: Encrypting file using RSA • Lab 6: Asymmetric encryption with OpenSSL
• Run OpenSSL Installer • using CMD paste the following command • set OPENSSL_CONF=C:Program FilesOpenSSL-Win64binopenssl.cfg • set Path=%Path%;C:Program FilesOpenSSL-Win64bin
First steps • Open cmd and type openssl • For commands: type help • description of some commands  ca To create certificate authorities.  dgst To compute hash functions.  enc To encrypt/decrypt using secret key algorithms. It is possible to generate using a password or directly a secret key stored in a file.  genrsa This command permits to generate a pair of public/private key for the RSA algorithm.  password Generation of “hashed passwords”.  rsa RSA data management.  rsautl To encrypt/decrypt or sign/verify signature with RSA.
AES cipher-commands • cipher-commands • aes-128-cbc • aes-128-ecb • aes-192-cbc • aes-192-ecb • aes-256-cbc • aes-256-ecb • base64 • Cbc stands for Cipher Blocker Chaining • Ecb stands for Electronic Codebook
example • Let us create text document named TEST.txt • Write the message that you want To encrpt the test.txt • Open cmd write openssl >enter • Openssl enc -aes-256-ecb -a -salt -in TEST.txt - out cipher.txt • Enter password and verify it
To decrypt • enc -d -aes-256-ecb -a -salt -in cipher.txt -out plain.txt • Enter the pass word that entered before • Done
• Conventional Encryption involves transforming plaintext messages into cipher text messages that are to be decrypted only by the intended receiver. Both sender and receiver agree upon a secrete key to be used in encrypting and decrypting. Usually the secrete key is transmitted via public key encryption methods. .
• Triple DES(Data Encryption Standard) Encryption: • RSA Encryption. ... • Advanced Encryption Standards (AES) • Twofish encryption algorithm. • Blowfish encryption algorithm. • IDEA encryption algorithm. • MD5 encryption algorithm. • HMAC encryption algorithm etc
• Symmetric encryption is a means of protecting data using a secret key to encrypt (lock) and decrypt (unlock) it. • The sender and recipient share the key or password to gain access to the information. • AES, RC4, DES, RC5, and RC6 are examples of symmetric encryption.
comp security lab.ppsx
• Asymmetric encryption is also a process of encrypting data between two parties — but instead of using a single key (as with conventional cryptographic systems), • it uses two unique yet mathematically related keys to do so. • The first key, known as the public key, encrypts your data before sending it over the internet; the other private key decrypts the data on the recipient’s end of the exchange.
comp security lab.ppsx
• GENERATING A RSA PRIVATE KEY • Openssl genpkey -algorithm RSA -pkeyopt rsa_keygen_bits:2048 -out private-key.pem • TO GENERATE A PASSWORD PROTECTED PRIVATE KEY Openssl genpkey -aes256 -algorithm RSA -pkeyopt r • sa_keygen_bits:2048 -out private-key.pem
• Openssl> pkey -in private-key.pem -out public- key.pem –pubout • TO SEE THE PUBLIC KEY • Openssl> pkey -in public-key.pem -pubin –text
• example, I will be hashing an arbitrary file on my system using the MD5, SHA1, and SHA384 algorithms. • OpenSSL dgst -md5 use.mp4 • OpenSSL dgst -sha1 use.mp4 • OpenSSL dgst -sha384 use.mp4 Encrypting video file • Openssl enc -aes-256-cbc -e -iter 1000 -salt -in use.mp4 -out unuse.enc
• Openssl enc -aes-256-cbc -d -iter 1000 -in unuse.enc -out prime.mp4
Hashing vs Encryption Differences • Hashing is a digital signature orignally designed to check if data was modified Password hashing is a mathematical algorithm that maps data of arbitrary size (often called the "message") to a bit array of a fixed size (the "hash value", "hash", or "message digest"). It is a one-way function, that is, a function which is practically infeasible to invert or reverse the computation
Cracking • Cracking file passwords using passfab • Cracking windows passwords using usb • Cracking rar passwords using kraken

More Related Content

PPTX
SSL Primer
Mahadev Gaonkar
 
PDF
Computer Security Laboratory Manual .pdf
DebebeKebede
 
PPTX
501 ch 10 understanding cryptography and pki
gocybersec
 
PPTX
Cryptography for the mere mortals
M A Hossain Tonu
 
PDF
Basic Cryptography.pdf
Setiya Nugroho
 
PPTX
Cryptography for the mere mortals - for phpXperts Seminar 2011 by Hasin and Tonu
Hasin Hayder
 
PPT
CISSP EXAM PREPARATION FOR A PASSED SCORE
rinelaam
 
ODP
Applying Security Algorithms Using openSSL crypto library
Priyank Kapadia
 
SSL Primer
Mahadev Gaonkar
 
Computer Security Laboratory Manual .pdf
DebebeKebede
 
501 ch 10 understanding cryptography and pki
gocybersec
 
Cryptography for the mere mortals
M A Hossain Tonu
 
Basic Cryptography.pdf
Setiya Nugroho
 
Cryptography for the mere mortals - for phpXperts Seminar 2011 by Hasin and Tonu
Hasin Hayder
 
CISSP EXAM PREPARATION FOR A PASSED SCORE
rinelaam
 
Applying Security Algorithms Using openSSL crypto library
Priyank Kapadia
 

Similar to comp security lab.ppsx (20)

PPTX
501 ch 10 cryptography
Toyeeb Onimole
 
PDF
Intro to Cryptography
Michael Soltys
 
PDF
Introduction to Cryptography
Seema Goel
 
PPT
OpenPGP/GnuPG Encryption
Tanner Lovelace
 
PPT
(Crypto) DES And RSA Algorithms Overview
EL Bachir Nouni
 
PDF
Fundamentals of Cryptography: Securing Data in the Digital Age
avengersimran16
 
PPT
Cryptography in Human computer interaction powerpoint
ramlaabdikarim001
 
PDF
Go paranoid
Nisheed KM
 
PPT
Cryptography
PPT4U
 
PPT
Java Crypto
phanleson
 
PPTX
Data encryption
Aman Jain
 
PPT
Introduction to cryptography and Network Security
DhanapalM8
 
PPSX
Linux for Cybersecurity CYB110 - Unit 7.ppsx
BrenoMeister
 
PPTX
Cryptography
Sandip kumar
 
PDF
Classic Cryptography
UTD Computer Security Group
 
PPT
Pki by Steve Lamb
Information Security Awareness Group
 
PPT
BCS_PKI_part1.ppt
UskuMusku1
 
PDF
Encryption Recap: A Refresher on Key Concepts
thomashtkim
 
PPTX
Cryptography and network security
Nagendra Um
 
PPT
What is Encryption
Israel Marcus
 
501 ch 10 cryptography
Toyeeb Onimole
 
Intro to Cryptography
Michael Soltys
 
Introduction to Cryptography
Seema Goel
 
OpenPGP/GnuPG Encryption
Tanner Lovelace
 
(Crypto) DES And RSA Algorithms Overview
EL Bachir Nouni
 
Fundamentals of Cryptography: Securing Data in the Digital Age
avengersimran16
 
Cryptography in Human computer interaction powerpoint
ramlaabdikarim001
 
Go paranoid
Nisheed KM
 
Cryptography
PPT4U
 
Java Crypto
phanleson
 
Data encryption
Aman Jain
 
Introduction to cryptography and Network Security
DhanapalM8
 
Linux for Cybersecurity CYB110 - Unit 7.ppsx
BrenoMeister
 
Cryptography
Sandip kumar
 
Classic Cryptography
UTD Computer Security Group
 
Pki by Steve Lamb
Information Security Awareness Group
 
BCS_PKI_part1.ppt
UskuMusku1
 
Encryption Recap: A Refresher on Key Concepts
thomashtkim
 
Cryptography and network security
Nagendra Um
 
What is Encryption
Israel Marcus
 
Ad

Recently uploaded (20)

PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Ad

comp security lab.ppsx

  • 2. • Lab 1: Installing and configuring OpenSSL • Lab 2: Introduction and commands used in openSSL • Lab 3: Encryption using conventional algorithms • Lab 4: Symmetric encryption with OpenSSL • Lab 5: Encrypting file using RSA • Lab 6: Asymmetric encryption with OpenSSL
  • 3. • Run OpenSSL Installer • using CMD paste the following command • set OPENSSL_CONF=C:Program FilesOpenSSL-Win64binopenssl.cfg • set Path=%Path%;C:Program FilesOpenSSL-Win64bin
  • 4. First steps • Open cmd and type openssl • For commands: type help • description of some commands  ca To create certificate authorities.  dgst To compute hash functions.  enc To encrypt/decrypt using secret key algorithms. It is possible to generate using a password or directly a secret key stored in a file.  genrsa This command permits to generate a pair of public/private key for the RSA algorithm.  password Generation of “hashed passwords”.  rsa RSA data management.  rsautl To encrypt/decrypt or sign/verify signature with RSA.
  • 5. AES cipher-commands • cipher-commands • aes-128-cbc • aes-128-ecb • aes-192-cbc • aes-192-ecb • aes-256-cbc • aes-256-ecb • base64 • Cbc stands for Cipher Blocker Chaining • Ecb stands for Electronic Codebook
  • 6. example • Let us create text document named TEST.txt • Write the message that you want To encrpt the test.txt • Open cmd write openssl >enter • Openssl enc -aes-256-ecb -a -salt -in TEST.txt - out cipher.txt • Enter password and verify it
  • 7. To decrypt • enc -d -aes-256-ecb -a -salt -in cipher.txt -out plain.txt • Enter the pass word that entered before • Done
  • 8. • Conventional Encryption involves transforming plaintext messages into cipher text messages that are to be decrypted only by the intended receiver. Both sender and receiver agree upon a secrete key to be used in encrypting and decrypting. Usually the secrete key is transmitted via public key encryption methods. .
  • 9. • Triple DES(Data Encryption Standard) Encryption: • RSA Encryption. ... • Advanced Encryption Standards (AES) • Twofish encryption algorithm. • Blowfish encryption algorithm. • IDEA encryption algorithm. • MD5 encryption algorithm. • HMAC encryption algorithm etc
  • 10. • Symmetric encryption is a means of protecting data using a secret key to encrypt (lock) and decrypt (unlock) it. • The sender and recipient share the key or password to gain access to the information. • AES, RC4, DES, RC5, and RC6 are examples of symmetric encryption.
  • 12. • Asymmetric encryption is also a process of encrypting data between two parties — but instead of using a single key (as with conventional cryptographic systems), • it uses two unique yet mathematically related keys to do so. • The first key, known as the public key, encrypts your data before sending it over the internet; the other private key decrypts the data on the recipient’s end of the exchange.
  • 14. • GENERATING A RSA PRIVATE KEY • Openssl genpkey -algorithm RSA -pkeyopt rsa_keygen_bits:2048 -out private-key.pem • TO GENERATE A PASSWORD PROTECTED PRIVATE KEY Openssl genpkey -aes256 -algorithm RSA -pkeyopt r • sa_keygen_bits:2048 -out private-key.pem
  • 15. • Openssl> pkey -in private-key.pem -out public- key.pem –pubout • TO SEE THE PUBLIC KEY • Openssl> pkey -in public-key.pem -pubin –text
  • 16. • example, I will be hashing an arbitrary file on my system using the MD5, SHA1, and SHA384 algorithms. • OpenSSL dgst -md5 use.mp4 • OpenSSL dgst -sha1 use.mp4 • OpenSSL dgst -sha384 use.mp4 Encrypting video file • Openssl enc -aes-256-cbc -e -iter 1000 -salt -in use.mp4 -out unuse.enc
  • 17. • Openssl enc -aes-256-cbc -d -iter 1000 -in unuse.enc -out prime.mp4
  • 18. Hashing vs Encryption Differences • Hashing is a digital signature orignally designed to check if data was modified Password hashing is a mathematical algorithm that maps data of arbitrary size (often called the "message") to a bit array of a fixed size (the "hash value", "hash", or "message digest"). It is a one-way function, that is, a function which is practically infeasible to invert or reverse the computation
  • 19. Cracking • Cracking file passwords using passfab • Cracking windows passwords using usb • Cracking rar passwords using kraken